Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/iVUfr3sw2fToL92-QH_6dcaFu7c.roa
File: iVUfr3sw2fToL92-QH_6dcaFu7c.roa (raw, json)
Hash identifier: dArK80BtTrp/kBt7B1wjE18nFpp6skqo96kiW0WeQSs=
Subject key identifier: 89:55:1F:AF:7B:30:D9:F4:E8:2F:DD:BE:40:7F:FA:75:C6:85:BB:B7
Certificate issuer: /CN=b6674bf8e457e2957eee4f51f8b7b44c57db9a2a
Certificate serial: 0149E4DC
Authority key identifier: B6:67:4B:F8:E4:57:E2:95:7E:EE:4F:51:F8:B7:B4:4C:57:DB:9A:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmdL-ORX4pV-7k9R-Le0TFfbmio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/iVUfr3sw2fToL92-QH_6dcaFu7c.roa
Signing time: Sat 01 Jan 2022 15:59:14 +0000
ROA not before: Sat 01 Jan 2022 15:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16104
IP address blocks: 193.41.89.0/24 maxlen: 24
2001:67c:1684::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21619932 (0x149e4dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6674bf8e457e2957eee4f51f8b7b44c57db9a2a
Validity
Not Before: Jan 1 15:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89551faf7b30d9f4e82fddbe407ffa75c685bbb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:24:a1:29:27:27:7e:d5:2c:85:17:d7:f4:2a:
72:cf:e9:ff:1e:80:7d:cd:3b:38:d3:b3:ab:bd:e7:
c3:5e:db:b2:88:60:a1:23:97:bc:1b:19:33:11:2e:
34:02:df:28:14:95:20:b3:ef:70:8a:95:68:08:11:
0e:38:c5:20:8c:1e:78:83:fd:2e:1d:27:83:f1:40:
a7:bf:4e:3d:21:11:ce:04:0c:1e:64:ba:7b:34:b6:
e7:c1:d4:1d:8c:e2:0a:2d:f6:41:1d:cb:34:d8:78:
fd:0e:5a:7b:ff:81:4c:f7:35:d6:7e:3f:69:4b:aa:
59:cc:76:e3:9a:ec:40:ce:78:af:47:3d:a9:bb:c6:
86:c2:96:8e:e9:76:9c:50:bc:f7:5b:6e:1f:dd:19:
65:1e:1e:c0:f7:cd:43:ca:66:b0:ce:74:aa:55:ec:
da:98:ac:ae:0d:b0:4a:93:81:95:db:47:06:90:c1:
60:8c:b4:ba:f5:de:d0:b4:f9:9f:f9:a2:22:dc:63:
41:b9:6d:00:7e:06:bf:a9:ae:26:04:f9:dd:cf:46:
87:02:0a:1f:cf:5b:7c:05:77:b3:f0:8d:33:5c:d3:
4e:d5:1f:8b:c9:ff:e6:d3:d8:f8:a6:e7:77:38:e1:
bd:02:14:25:75:98:8c:dc:6b:66:e3:93:8e:21:9b:
8a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:55:1F:AF:7B:30:D9:F4:E8:2F:DD:BE:40:7F:FA:75:C6:85:BB:B7
X509v3 Authority Key Identifier:
keyid:B6:67:4B:F8:E4:57:E2:95:7E:EE:4F:51:F8:B7:B4:4C:57:DB:9A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmdL-ORX4pV-7k9R-Le0TFfbmio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/iVUfr3sw2fToL92-QH_6dcaFu7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.89.0/24
IPv6:
2001:67c:1684::/48
Signature Algorithm: sha256WithRSAEncryption
c6:8e:a5:d5:87:2a:4e:2c:d5:34:ed:70:b9:9e:b5:2b:e2:fb:
49:f7:e2:34:9b:4e:df:75:6c:ec:cd:5e:08:78:66:a9:47:83:
c4:03:b4:97:ff:80:91:4a:39:ad:21:a5:b7:4c:14:8c:6d:70:
4a:8c:27:bb:22:12:00:ad:14:fc:7f:1d:f7:12:19:e9:ee:c0:
50:94:93:b0:e5:11:e4:0b:f0:b8:e4:5b:e4:61:dd:41:7a:ed:
07:65:f0:e9:06:ea:c7:a2:41:d6:53:d0:98:dc:56:54:c5:7f:
96:63:a5:48:e5:fd:e1:df:ff:bc:00:35:47:33:53:ea:3c:0d:
b9:7a:bb:28:c9:db:07:87:99:9e:3a:fb:1d:c9:29:3f:a8:ad:
c9:bc:8f:da:53:77:be:15:55:89:f2:25:38:ce:0d:ac:37:bb:
80:5e:f8:fa:ad:f2:87:2f:b6:ca:34:e9:94:f3:9d:53:05:67:
94:db:d0:da:d5:43:5a:b2:4e:ba:87:3f:de:f2:f6:a2:a2:f3:
56:30:b4:1f:81:30:53:dd:68:f0:d2:f9:45:2d:bc:0e:89:f7:
a1:d3:fa:64:e6:63:25:46:61:09:cc:ac:b6:ad:35:d0:f8:a1:
ad:d6:f5:b4:62:d7:1e:20:03:29:95:f4:8f:f6:61:33:36:e2:
b3:c4:3c:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:42 2024 by rpki-client on console-ams.rpki-client.org