Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/cxKr8dZfIFpGQUiwKyxKRsU3pds.roa
File: cxKr8dZfIFpGQUiwKyxKRsU3pds.roa (raw, json)
Hash identifier: sqzvasU+G+SIYR+P51JKuVyOjUlBeBXN+gJxEzJ+xYU=
Subject key identifier: 73:12:AB:F1:D6:5F:20:5A:46:41:48:B0:2B:2C:4A:46:C5:37:A5:DB
Certificate issuer: /CN=845c58752f3336422ff0ee1726474591e7a41e5f
Certificate serial: 1936A06A
Authority key identifier: 84:5C:58:75:2F:33:36:42:2F:F0:EE:17:26:47:45:91:E7:A4:1E:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFxYdS8zNkIv8O4XJkdFkeekHl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/cxKr8dZfIFpGQUiwKyxKRsU3pds.roa
Signing time: Sat 01 Jan 2022 08:55:17 +0000
ROA not before: Sat 01 Jan 2022 08:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4323
IP address blocks: 89.191.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 423010410 (0x1936a06a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845c58752f3336422ff0ee1726474591e7a41e5f
Validity
Not Before: Jan 1 08:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7312abf1d65f205a464148b02b2c4a46c537a5db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:91:77:e9:45:e1:28:ca:b2:70:99:69:58:c8:
87:65:f9:6b:ae:45:7d:04:ce:ec:02:81:cd:f5:d8:
8f:9b:d3:08:25:59:1d:e8:2e:ac:71:0d:ee:35:b9:
ad:db:b6:15:3c:d1:27:ba:3f:dd:03:18:a6:43:d8:
65:8c:d0:f5:ac:86:52:1b:20:f6:2f:4f:7a:c6:8f:
0b:fb:e2:28:e2:05:50:85:8a:20:0b:3f:5e:de:e0:
91:55:78:73:f3:23:3f:5f:35:87:27:9a:59:29:a9:
ba:3b:49:b0:31:a8:27:94:85:1e:45:35:cf:83:a9:
e5:ed:cc:2f:f8:f3:aa:22:36:c5:60:f8:9c:3e:97:
d1:cb:7f:c7:03:a2:11:dd:76:c8:de:b8:2c:dc:58:
21:07:b1:0a:a0:0f:91:1b:95:e0:ec:f3:6b:3c:20:
7b:e4:b9:19:93:9e:d3:1f:bc:f0:e0:b1:a7:dc:7c:
4f:42:df:a5:c8:c0:d0:1b:32:a3:d5:30:e2:c3:ff:
56:8e:0a:6f:cb:0d:42:a8:93:44:cc:01:e7:e8:4b:
6d:b9:cd:d7:37:d6:b3:eb:66:1d:87:b9:93:65:19:
92:17:89:27:4b:81:c6:c0:31:d4:fb:43:95:3b:56:
06:f6:c8:32:cd:8c:93:68:e7:87:c0:ce:df:05:db:
da:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:12:AB:F1:D6:5F:20:5A:46:41:48:B0:2B:2C:4A:46:C5:37:A5:DB
X509v3 Authority Key Identifier:
keyid:84:5C:58:75:2F:33:36:42:2F:F0:EE:17:26:47:45:91:E7:A4:1E:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFxYdS8zNkIv8O4XJkdFkeekHl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/cxKr8dZfIFpGQUiwKyxKRsU3pds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e3ab-228c-4a23-9216-f134e51cc05b/1/hFxYdS8zNkIv8O4XJkdFkeekHl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.191.65.0/24
Signature Algorithm: sha256WithRSAEncryption
85:de:e8:ae:0f:8f:26:d2:90:24:9b:5b:8e:47:7e:f1:3b:2f:
56:78:c6:d0:54:5e:86:6e:d2:ef:fc:3c:28:07:b0:7d:55:18:
b0:44:58:43:d9:2b:97:01:81:05:15:96:d5:df:81:a5:31:e9:
6f:86:1a:a3:3a:e5:70:e2:bf:e4:15:42:ac:d0:d3:ea:47:ca:
a5:65:a2:bf:da:a4:6c:fe:e6:c4:6e:88:e7:19:82:25:e8:30:
a9:76:94:a6:6d:38:f6:90:2d:57:fb:61:96:6c:de:15:5f:a9:
cd:48:ee:ea:88:b9:e8:17:f3:6b:ae:6a:d8:55:e5:94:09:9f:
16:0b:bd:53:fd:39:00:8d:6f:c6:1f:d3:6e:8b:be:f0:2a:e5:
2a:e8:7f:37:1d:b1:3b:0f:6a:ff:36:fc:ae:50:c0:34:a1:bb:
b6:91:10:ca:e6:d2:f7:6d:85:a7:f2:5d:d5:3b:fb:ba:ef:37:
74:22:f7:64:8d:3f:1e:6a:64:6d:28:3d:c7:c4:72:27:08:cf:
a7:92:84:3b:89:a3:02:b1:87:3e:0b:8f:ad:6a:e0:fc:46:87:
98:45:e9:a9:5c:05:1b:9c:0e:53:cd:57:a3:53:a8:9f:72:ea:
0c:24:e6:32:e2:8f:9f:7f:eb:f8:e9:be:7d:7d:89:d2:a6:b7:
0f:53:0e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:07 2024 by rpki-client on console-fra.rpki-client.org