Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/KE3Rb_GOxKLzCcOGf_2lQM7hMMg.roa
File: KE3Rb_GOxKLzCcOGf_2lQM7hMMg.roa (raw, json)
Hash identifier: 8eyh4BMKoMW37EJ1VfKi55e3ZvCl2r1LGB5MrJ9586I=
Subject key identifier: 28:4D:D1:6F:F1:8E:C4:A2:F3:09:C3:86:7F:FD:A5:40:CE:E1:30:C8
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 431F12DF
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/KE3Rb_GOxKLzCcOGf_2lQM7hMMg.roa
Signing time: Wed 25 May 2022 06:07:13 +0000
ROA not before: Wed 25 May 2022 06:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51909
IP address blocks: 89.47.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1126109919 (0x431f12df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 25 06:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=284dd16ff18ec4a2f309c3867ffda540cee130c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f9:d4:15:53:57:e4:e8:37:2e:73:c5:cf:f1:
c4:c4:8e:d2:fd:cb:f2:32:ee:94:08:1b:4c:1f:b6:
fe:a8:06:ab:95:f3:f1:21:15:e2:bf:cf:ca:c2:27:
2a:6e:99:75:af:d6:fc:49:45:a1:ea:c9:d9:04:c0:
99:aa:ca:9b:b5:dd:c6:cd:8e:9d:2a:b9:20:26:58:
e6:a0:c8:9d:c0:e6:14:aa:f6:a9:a6:07:43:54:59:
ca:68:d5:ee:50:c0:9d:bc:62:e3:c4:ff:2d:52:a3:
11:3b:ed:58:51:d7:28:77:50:61:03:9a:c2:c0:92:
6e:17:dc:3b:ae:4a:58:6c:02:57:4f:07:95:98:ff:
6e:00:57:7a:37:36:09:f6:83:b8:25:ae:4f:58:c9:
f6:34:fb:cb:86:86:9b:6d:c6:8e:a6:da:ae:d2:0d:
5a:f8:79:d8:3f:ec:1e:f8:a7:6d:f9:05:fe:70:63:
36:20:91:64:c4:8f:e5:0f:5d:33:1c:a3:b9:15:42:
dc:39:16:4a:0f:a8:8b:05:23:a0:4d:67:db:6a:fb:
61:4a:90:96:dd:e6:60:73:4f:3c:42:dd:97:b0:7c:
cf:9a:cf:4a:0d:bb:48:15:f2:b8:34:82:bc:06:02:
59:80:25:ab:5d:63:4e:e8:67:c8:5d:a9:c3:0c:30:
67:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4D:D1:6F:F1:8E:C4:A2:F3:09:C3:86:7F:FD:A5:40:CE:E1:30:C8
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/KE3Rb_GOxKLzCcOGf_2lQM7hMMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.192.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:01:d1:87:c5:4c:2f:fc:e6:b8:e1:a5:1a:c6:bf:bf:fb:f0:
e1:a5:fe:96:0b:2e:db:f8:b7:e7:dc:a7:61:f6:fa:62:c3:b9:
83:eb:fc:77:e3:42:cc:1e:95:5d:1a:15:50:74:55:12:7a:93:
e1:3c:3f:f6:69:4e:6d:63:86:f9:e8:6e:54:01:1f:19:77:38:
f8:e3:af:52:f2:3c:8f:4f:3f:92:ca:bb:b9:73:7f:3d:c3:b2:
5e:90:6f:5c:0a:93:0f:1c:9b:9d:29:99:03:47:a4:d6:df:b9:
5a:13:ed:2e:a6:14:fc:03:72:53:0d:ae:dc:cd:dd:46:09:31:
73:19:f1:51:76:66:ca:f3:87:f1:71:0d:68:4f:64:09:cf:00:
1a:5f:4c:67:be:78:0c:ff:7e:e6:14:93:40:d5:36:29:d5:65:
75:d1:19:72:47:4b:d2:90:4d:86:f5:31:5f:da:af:f2:70:5e:
a9:95:6c:f3:1b:e0:8b:8b:7b:b8:e1:34:d4:d7:13:aa:01:5d:
d7:44:12:6b:bc:9d:bf:bd:b4:18:50:7f:72:01:a8:02:b0:34:
f4:b6:05:a8:34:ae:29:6b:d6:65:79:f0:fd:36:e2:76:76:6e:
3b:d3:3c:ae:99:07:ba:8e:0a:3e:1a:30:29:2d:5a:bb:cd:fa:
4e:7a:1d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org