Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/08531b-bd66-4fce-a569-8644c5814c9a/1/mLnudZLT9Yfsv-eI_og7A3ZoRA0.roa
File: mLnudZLT9Yfsv-eI_og7A3ZoRA0.roa (raw, json)
Hash identifier: TTMU5Kyb0NWu4wPUIRTvkLITOgiTvQ9Iyi38TkFFuT4=
Subject key identifier: 98:B9:EE:75:92:D3:F5:87:EC:BF:E7:88:FE:88:3B:03:76:68:44:0D
Certificate issuer: /CN=dc2c2fef9c8caf8f2f08211ef02c3d0ad3474917
Certificate serial: 04E609F0
Authority key identifier: DC:2C:2F:EF:9C:8C:AF:8F:2F:08:21:1E:F0:2C:3D:0A:D3:47:49:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Cwv75yMr48vCCEe8Cw9CtNHSRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/08531b-bd66-4fce-a569-8644c5814c9a/1/mLnudZLT9Yfsv-eI_og7A3ZoRA0.roa
Signing time: Sat 01 Jan 2022 02:57:36 +0000
ROA not before: Sat 01 Jan 2022 02:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56496
IP address blocks: 89.19.52.0/24 maxlen: 24
89.19.52.0/22 maxlen: 24
91.224.210.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82184688 (0x4e609f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc2c2fef9c8caf8f2f08211ef02c3d0ad3474917
Validity
Not Before: Jan 1 02:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98b9ee7592d3f587ecbfe788fe883b037668440d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:d4:f9:7b:6d:9d:52:10:84:3f:36:f0:de:
80:34:45:27:10:05:db:c5:65:58:61:70:2a:00:25:
98:96:1c:05:ce:95:d3:9c:0a:07:d1:87:96:25:8a:
b1:f5:d9:e4:a6:e9:5e:5b:6d:b0:09:2c:54:8e:db:
ba:d0:31:11:fe:a5:be:0a:18:8c:85:b2:a6:64:1c:
37:82:7d:4b:75:cb:7f:b9:b3:86:84:1e:ea:7b:22:
6c:38:3d:17:5b:36:01:14:70:16:e8:7c:bf:06:32:
57:bb:05:e3:4a:a0:c1:a4:8f:02:f6:be:3f:be:62:
e5:1e:a7:62:30:ed:96:27:68:00:9c:cc:17:4a:48:
47:62:fc:e3:2b:09:dc:f2:86:ba:4b:26:ab:8e:32:
e3:d7:5c:6b:47:e0:7d:fd:54:ca:32:72:88:38:6e:
ce:92:2c:fa:39:81:60:94:b6:33:a2:12:5c:9e:0f:
38:7e:10:61:0d:8a:c4:fd:cc:2a:7c:b2:27:19:de:
cc:25:70:f6:15:da:de:40:f4:dc:01:15:f7:8a:69:
3b:14:af:09:78:75:e4:68:07:68:9c:cd:cf:bd:44:
97:ab:46:5e:25:00:22:fb:63:73:12:cf:86:37:ac:
75:cb:00:9a:02:16:f7:19:a1:fc:16:75:53:6b:37:
89:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B9:EE:75:92:D3:F5:87:EC:BF:E7:88:FE:88:3B:03:76:68:44:0D
X509v3 Authority Key Identifier:
keyid:DC:2C:2F:EF:9C:8C:AF:8F:2F:08:21:1E:F0:2C:3D:0A:D3:47:49:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Cwv75yMr48vCCEe8Cw9CtNHSRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/08531b-bd66-4fce-a569-8644c5814c9a/1/mLnudZLT9Yfsv-eI_og7A3ZoRA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/08531b-bd66-4fce-a569-8644c5814c9a/1/3Cwv75yMr48vCCEe8Cw9CtNHSRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.52.0/22
91.224.210.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:c7:f0:ce:b1:7b:51:e0:91:3f:8e:84:20:a7:37:51:e6:2e:
e8:d6:c0:bf:e7:0d:59:71:93:05:e5:45:76:ee:6c:49:63:be:
b9:27:60:31:c1:25:75:f5:f3:34:00:d7:34:69:f0:20:f4:3e:
c6:52:6b:2b:3c:8f:70:e5:d1:1b:8c:ff:36:0b:38:5a:62:f9:
90:bb:4a:1a:c8:21:4a:43:ed:95:32:09:5d:b8:c5:1e:fc:2c:
f4:d9:6d:88:64:71:a9:b8:09:e0:30:8f:53:b9:f2:06:1a:b1:
41:01:c5:b9:09:1a:ba:c6:02:d0:c7:55:67:8c:a8:2a:28:d6:
0c:aa:aa:aa:48:84:79:2b:1d:f8:c0:f6:36:9d:2a:6a:c8:64:
34:56:bb:f6:f7:9b:95:d8:3f:ec:a2:af:73:a8:86:06:4c:ec:
70:b8:ed:b5:49:d8:1f:53:eb:b0:22:68:ee:bc:11:17:0e:7a:
c4:10:5c:61:8d:b8:59:6d:ba:c5:c7:b9:38:7b:57:7f:30:40:
d6:d0:27:5c:86:11:91:7b:7c:89:e4:fa:4b:11:b6:5a:b0:2d:
43:15:d7:56:a5:27:08:a2:b4:97:f3:ac:54:e5:46:19:f3:f4:
4d:42:b6:58:a2:91:94:7a:e1:91:89:51:ea:de:6c:d5:6f:0b:
2c:9e:d0:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:04 2024 by rpki-client on console-fra.rpki-client.org