Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/GNK8KGd0tPV3sttkTyQNxl2WEEw.roa
File: GNK8KGd0tPV3sttkTyQNxl2WEEw.roa (raw, json)
Hash identifier: YAqCcOBUk0n/EyUwp2MV7HL+48++Sofr0wS/JDA5PxM=
Subject key identifier: 18:D2:BC:28:67:74:B4:F5:77:B2:DB:64:4F:24:0D:C6:5D:96:10:4C
Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Certificate serial: 177B83C3
Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/GNK8KGd0tPV3sttkTyQNxl2WEEw.roa
Signing time: Wed 25 May 2022 06:28:19 +0000
ROA not before: Wed 25 May 2022 06:28:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41646
IP address blocks: 89.46.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393970627 (0x177b83c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Validity
Not Before: May 25 06:28:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18d2bc286774b4f577b2db644f240dc65d96104c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0c:fb:a2:aa:3b:cb:3c:d8:35:be:78:b0:d3:
f6:aa:d8:00:84:3c:f8:02:49:2e:5c:45:20:5e:30:
9d:50:58:90:77:2f:7c:f6:16:a5:9d:6f:53:3d:0c:
13:fd:29:ee:24:5f:87:e4:fd:e8:a4:25:d1:78:a0:
9b:25:73:94:80:84:78:d8:af:12:04:70:87:e9:bb:
ae:93:04:c2:56:a8:30:7a:17:a9:88:30:c8:8a:1e:
1c:11:97:7c:e2:81:56:df:70:10:09:03:29:21:63:
1f:86:65:fe:94:f8:89:8d:ac:cf:37:90:cf:6d:6d:
d3:d0:28:89:38:80:a2:6b:16:f1:94:d0:5f:8b:22:
b6:de:22:81:2d:d6:0c:d9:69:4d:15:08:74:28:ad:
cf:c1:ea:f7:d9:47:d9:fd:4e:ca:9c:91:dd:c2:b4:
cc:d2:de:b1:6b:e8:09:ea:66:bd:0d:d3:3c:fe:c8:
d7:55:89:3a:51:f4:a2:4d:1c:6e:fd:35:7c:b9:fc:
07:cf:83:27:36:6c:0f:d7:39:25:45:cf:b8:a4:11:
a6:c4:12:90:ad:42:8b:de:af:b5:f4:0a:5e:55:67:
f9:11:85:dc:65:4c:19:4d:da:66:11:e2:4e:de:64:
05:bb:ee:8d:b7:14:1c:21:24:a0:82:86:f6:3b:81:
e6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D2:BC:28:67:74:B4:F5:77:B2:DB:64:4F:24:0D:C6:5D:96:10:4C
X509v3 Authority Key Identifier:
keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/GNK8KGd0tPV3sttkTyQNxl2WEEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.38.0/24
Signature Algorithm: sha256WithRSAEncryption
89:f9:2f:b7:3a:24:37:e9:eb:99:5a:01:5d:be:68:e4:19:bc:
a9:5b:c9:f3:d8:c6:c8:b4:0f:1c:65:23:67:58:99:c1:23:c5:
9b:65:38:02:e3:b8:82:b0:c2:f4:ae:dc:d1:4e:97:80:5e:aa:
79:4c:e6:27:83:43:14:fd:67:a7:1f:87:26:dd:cf:33:00:ae:
07:2a:66:f5:c1:b4:73:a8:15:57:b7:01:6e:55:70:b5:7b:75:
7a:fa:1f:8c:00:ed:75:3f:4f:e6:c8:b6:a6:d9:1b:a0:47:65:
bd:6e:29:77:50:c5:cb:88:48:d2:e4:69:63:87:62:ae:e8:7e:
f7:36:f1:4b:01:87:d6:44:10:39:ac:b4:91:94:94:e1:da:81:
12:55:42:56:e4:d6:69:eb:1c:bc:a0:be:0e:00:f2:69:4d:92:
b0:57:f0:68:83:e1:ff:41:67:f5:0b:0d:c0:fd:03:92:a8:18:
0b:77:a0:b4:6a:dd:ca:1d:06:82:22:2f:9a:c5:ac:45:7b:13:
9f:ff:09:95:b9:95:5f:d1:3e:07:42:63:ac:eb:dd:e1:4d:9e:
73:b1:f1:7d:2d:85:e5:1d:c8:08:c1:fb:ed:98:1f:32:37:88:
39:e2:7d:a3:ab:7c:77:f6:8f:b9:78:7d:af:cc:84:a6:67:fd:
2e:9d:d7:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:32 2024 by rpki-client on console-fra.rpki-client.org