Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/lP5cnNj0FtdMS13ozXKQb-5ViQM.roa
File: lP5cnNj0FtdMS13ozXKQb-5ViQM.roa (raw, json)
Hash identifier: W0FV+Pbn3e/n2wUSKGzAw/KdTZRolPPz1bDXTU25GAs=
Subject key identifier: 94:FE:5C:9C:D8:F4:16:D7:4C:4B:5D:E8:CD:72:90:6F:EE:55:89:03
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42A3C19E
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/lP5cnNj0FtdMS13ozXKQb-5ViQM.roa
Signing time: Sun 24 Apr 2022 17:50:52 +0000
ROA not before: Sun 24 Apr 2022 17:50:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39802
IP address blocks: 89.39.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118028190 (0x42a3c19e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 24 17:50:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94fe5c9cd8f416d74c4b5de8cd72906fee558903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f8:a4:b9:c7:36:28:a5:b8:9a:f0:1b:1b:f4:
b8:b1:df:98:c8:dc:cd:18:8a:c9:0b:7d:9c:ac:eb:
fd:11:fa:94:27:bc:cd:13:4d:53:d4:2a:a1:2c:ce:
58:6c:7d:83:cc:82:72:1d:88:5a:e4:9e:fb:99:0a:
5f:52:c6:b5:07:a6:08:71:92:a6:b2:80:4e:4f:c1:
b9:f3:6e:d9:5c:df:37:b5:32:14:42:93:a3:ff:e4:
99:7f:27:19:9b:ec:99:5b:46:e0:b1:fb:e5:b0:41:
3c:12:1b:f3:66:ce:23:e4:9f:8b:ab:cc:22:a8:6a:
7c:40:e5:88:b4:3a:e2:18:da:ec:9c:56:2d:03:65:
d8:1a:32:a7:87:04:4c:b9:68:8e:7c:91:9e:7c:b4:
ae:d0:5f:d0:cd:5e:3e:b7:02:b5:08:6d:60:d6:8a:
e4:f7:a0:ba:19:0b:04:6f:4f:2e:70:34:a7:24:c4:
80:c6:b8:6b:70:c7:0e:6f:1b:1f:1f:6a:e1:a1:6c:
f9:b6:79:25:fc:b0:48:8c:38:d5:21:d1:6e:be:dd:
34:5a:50:49:f2:52:b6:d5:9a:27:67:32:12:58:a3:
74:e7:45:e9:30:34:c8:69:89:e5:cd:eb:cf:f4:02:
eb:41:99:61:2d:16:7d:9e:ac:cd:0d:f3:ea:bf:1c:
0e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:FE:5C:9C:D8:F4:16:D7:4C:4B:5D:E8:CD:72:90:6F:EE:55:89:03
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/lP5cnNj0FtdMS13ozXKQb-5ViQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.120.0/23
Signature Algorithm: sha256WithRSAEncryption
38:f8:80:e6:e6:0b:41:2d:21:73:83:81:87:3c:ad:b5:32:ad:
95:1e:76:30:d4:e8:64:2a:ec:df:f3:61:55:15:fd:d2:70:3a:
79:44:a1:c8:e4:e8:7b:07:cc:9c:5b:bf:83:f6:84:75:43:cf:
a0:ae:c0:14:a8:b7:8a:06:47:2f:21:a4:99:15:85:f1:2c:42:
77:26:8d:94:30:8d:b6:60:a5:23:1c:3f:5d:bc:c4:ce:14:48:
7c:83:60:b1:ef:b3:60:e5:5d:63:1e:2e:82:22:9d:ac:ea:8f:
59:7f:db:3a:ca:f0:af:03:48:ee:3f:b9:a0:47:23:c6:5e:1b:
07:a0:54:90:57:dd:95:b2:bd:98:91:cc:1e:6d:85:16:19:1f:
66:ec:f1:d1:8a:a0:9c:66:d0:39:b4:09:84:56:21:5a:56:0c:
eb:b2:f2:78:a8:42:1d:24:c6:6a:30:c4:ab:cb:13:49:4d:1e:
db:3b:7f:84:98:25:a7:8f:5a:39:de:37:ac:5f:ec:80:95:e9:
d1:2a:07:f0:bb:f5:f5:89:20:70:78:01:14:d2:cb:c7:b0:c1:
a8:e3:7c:91:1c:fa:54:03:83:a1:b1:34:d4:17:37:34:c6:5c:
71:6f:f6:70:41:10:55:6a:c2:ed:e9:ad:00:d0:2c:35:df:c0:
ea:e5:c5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org