Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/EbPOnlsW8Zqj65oq4rwQaanVC1I.roa
File: EbPOnlsW8Zqj65oq4rwQaanVC1I.roa (raw, json)
Hash identifier: v+j7s+Tx456UX/89zbCC3cXs/iniaPxkPD0I8NO5DH4=
Subject key identifier: 11:B3:CE:9E:5B:16:F1:9A:A3:EB:9A:2A:E2:BC:10:69:A9:D5:0B:52
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0183AC22034BD4293672AD6B4A048BD0507F
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/EbPOnlsW8Zqj65oq4rwQaanVC1I.roa
Signing time: Thu 06 Oct 2022 07:10:53 +0000
ROA not before: Thu 06 Oct 2022 07:10:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 89.185.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:22:03:4b:d4:29:36:72:ad:6b:4a:04:8b:d0:50:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Oct 6 07:10:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11b3ce9e5b16f19aa3eb9a2ae2bc1069a9d50b52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:75:d6:a3:8b:e6:61:1a:9a:2d:2e:4b:1a:e1:
da:4a:83:1b:fa:e1:a0:79:5b:96:32:d6:e4:4c:0b:
26:7e:e0:f5:c6:19:d4:15:1d:86:52:75:28:54:05:
45:4c:ba:33:e4:9e:4e:50:5e:e8:2b:37:05:fd:84:
4e:69:bb:3f:1e:61:1a:cd:16:d3:62:06:99:c0:0c:
31:4c:5e:ba:e3:24:39:d3:82:c1:6a:fb:16:51:b2:
20:3d:f7:bc:6b:fd:be:f4:64:9e:dc:eb:7f:06:c7:
84:e0:a9:e8:98:2a:9d:c7:5a:0f:33:45:3f:06:b3:
31:da:ae:94:8c:2a:fa:bb:26:7a:1d:56:a2:65:09:
8c:79:32:86:e7:d8:1c:83:67:35:d7:56:fd:2b:29:
95:a7:cb:fa:fb:eb:13:47:06:c4:7a:86:64:d6:fa:
57:8c:6a:35:00:ba:66:0c:2f:da:4c:d6:38:ef:89:
ab:81:51:dd:06:b1:7f:4c:fc:4e:e6:2e:7d:b1:a9:
f9:9f:67:be:ef:2b:af:3f:ab:ee:db:91:aa:bb:78:
70:bd:7c:da:76:11:78:e1:c3:9b:78:c0:63:8b:4d:
d9:5d:22:7a:5a:69:f6:20:48:86:7a:b1:8f:c2:3f:
60:08:eb:9e:a3:fc:59:6d:c7:52:12:80:13:cb:e0:
f9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B3:CE:9E:5B:16:F1:9A:A3:EB:9A:2A:E2:BC:10:69:A9:D5:0B:52
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/EbPOnlsW8Zqj65oq4rwQaanVC1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.28.0/22
Signature Algorithm: sha256WithRSAEncryption
97:6d:90:50:eb:99:b7:5c:a4:3b:9e:13:6d:88:ff:5c:c1:d7:
78:b4:5a:c3:4d:98:9e:71:cd:0c:8f:1d:1a:52:21:23:a4:dc:
90:c7:4c:0b:d4:a1:ae:fe:c0:52:f4:45:63:27:d6:05:17:63:
0c:a7:c3:48:0f:5b:08:be:c8:d3:49:40:af:ee:8c:0c:47:3f:
62:2d:f5:c1:cc:6e:09:e4:0d:1c:e8:f0:1a:af:09:f2:af:93:
3b:eb:99:47:0c:3f:f1:fd:75:ff:20:46:a3:a9:ce:d0:87:e4:
01:88:91:9a:73:85:1a:3e:b9:61:c3:78:a9:7c:af:d0:4c:60:
22:b1:a0:0d:51:cb:da:34:d0:85:43:33:78:8f:98:83:bf:a8:
2a:95:8d:76:82:fa:0c:26:35:45:38:26:6b:d1:4f:b4:71:08:
2c:fd:97:ac:54:36:45:2b:87:49:a5:c1:69:37:98:c4:de:33:
3a:7f:fb:a5:51:a6:22:d3:94:ad:4f:ad:ef:b9:2f:77:96:d4:
19:15:51:16:ae:92:15:9a:f2:7b:50:74:44:d2:df:ce:c1:0b:
c7:4d:f7:02:8f:38:ed:b6:94:7f:20:66:96:26:0a:9f:36:cc:
4a:6c:8c:f9:73:25:1b:9e:95:b5:5f:10:43:d2:7d:2d:1f:5f:
e6:9e:83:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org