Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/SdcnPq0BaA3fFa7ybvPl0HIbwwQ.roa
File: SdcnPq0BaA3fFa7ybvPl0HIbwwQ.roa (raw, json)
Hash identifier: ExDvI97AP83IAEzP3IRRDuTa5NSL94UtpIdITw0Ifh4=
Subject key identifier: 49:D7:27:3E:AD:01:68:0D:DF:15:AE:F2:6E:F3:E5:D0:72:1B:C3:04
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 4191E307
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/SdcnPq0BaA3fFa7ybvPl0HIbwwQ.roa
Signing time: Sat 01 Jan 2022 10:06:03 +0000
ROA not before: Sat 01 Jan 2022 10:06:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205275
IP address blocks: 89.44.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1100079879 (0x4191e307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 10:06:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49d7273ead01680ddf15aef26ef3e5d0721bc304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f4:06:0c:f5:52:77:1c:86:45:06:52:0b:51:
7c:4a:5c:91:c9:56:2c:6a:bc:38:8f:82:08:82:70:
d5:35:08:89:8d:c0:b7:29:23:09:f1:0b:61:3d:5d:
11:5c:42:d9:b5:77:82:23:47:e7:bb:dc:29:54:e3:
c0:2e:b7:91:7d:15:1c:d7:f5:05:66:5e:96:6c:99:
62:d2:e4:36:b1:d1:c4:ea:f9:17:4c:41:36:ac:a0:
d5:dc:2a:1e:45:b2:b2:1b:41:30:52:8d:5c:45:44:
06:99:05:0a:d6:39:18:2e:55:ba:0b:66:9e:49:d0:
75:a7:7d:cf:23:ba:43:84:16:7f:8b:fc:20:ea:d6:
4f:11:19:d8:d6:4c:16:ef:a4:40:b0:4f:fd:c4:c7:
3d:76:d7:93:9d:01:0e:b0:a5:38:0d:09:30:85:4c:
33:b1:24:b7:e5:7e:bf:ee:c1:e0:e6:11:70:85:9b:
cf:a8:7c:4a:25:8c:7c:98:12:a8:ea:dc:40:67:1e:
42:c2:53:22:ea:bc:02:a7:2f:4f:96:ab:94:7d:1f:
fd:66:75:51:45:24:63:33:fe:df:a2:1b:43:04:77:
85:13:72:3d:36:fd:dd:28:41:92:b3:3b:97:dc:81:
8c:0e:4a:6f:7f:e2:44:8d:1b:59:a7:11:31:52:f2:
bc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D7:27:3E:AD:01:68:0D:DF:15:AE:F2:6E:F3:E5:D0:72:1B:C3:04
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/SdcnPq0BaA3fFa7ybvPl0HIbwwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.124.0/24
Signature Algorithm: sha256WithRSAEncryption
16:56:e2:82:ea:4c:bc:2a:55:61:87:81:34:23:16:53:d7:80:
d2:3d:78:e4:b2:fc:f8:1a:53:26:c7:4c:03:b5:b9:68:42:af:
e0:38:71:bb:7f:58:43:93:15:59:18:87:76:7b:08:d1:fa:c3:
ca:87:af:14:55:bf:4f:7c:ff:34:7d:dc:56:15:d7:f7:65:c7:
72:91:e7:c9:85:69:a0:27:dd:cd:b5:0e:ce:71:b7:f8:92:20:
5b:57:12:d2:25:8f:9b:40:5f:05:05:9d:93:96:51:7b:05:98:
e0:04:e7:d3:5f:ce:c8:9d:7a:a3:57:4c:7e:53:fc:9d:f4:76:
f3:10:28:dc:11:4a:37:21:95:60:9b:89:05:d7:41:4f:e4:41:
77:94:7b:94:75:71:1a:8a:64:03:4e:c5:ed:be:df:32:30:71:
05:b4:d8:3f:0a:f6:13:f9:df:5d:6d:93:ca:da:fb:b0:05:21:
7d:fa:ad:2f:20:59:ea:40:8f:ff:2e:81:bc:31:a3:6f:e5:ed:
69:ed:6b:0a:ba:d9:66:89:6b:f8:27:c5:61:88:30:81:59:d8:
51:ed:a9:8a:19:54:14:0c:ec:47:f6:7b:18:7d:26:a8:8d:66:
fe:0d:08:62:da:77:d5:d0:ca:6e:5a:d3:df:4c:10:18:4b:1d:
64:a4:20:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org