Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/jKx5gSoTvYH9CeYtx25a1ZjlgrM.roa
File: jKx5gSoTvYH9CeYtx25a1ZjlgrM.roa (raw, json)
Hash identifier: 5fvYQCyEerNT1HxNXxI+GOqJUsGUfdhS9r3ZDFoB+xc=
Subject key identifier: 8C:AC:79:81:2A:13:BD:81:FD:09:E6:2D:C7:6E:5A:D5:98:E5:82:B3
Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Certificate serial: 174B9F47
Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/jKx5gSoTvYH9CeYtx25a1ZjlgrM.roa
Signing time: Tue 03 May 2022 16:11:17 +0000
ROA not before: Tue 03 May 2022 16:11:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47225
IP address blocks: 89.46.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390831943 (0x174b9f47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Validity
Not Before: May 3 16:11:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cac79812a13bd81fd09e62dc76e5ad598e582b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3f:2c:47:77:5a:a7:c6:d8:b9:e3:3e:79:c0:
02:c4:9c:1e:4e:12:e2:0d:03:f0:12:c5:d5:7f:4f:
96:e2:cd:b9:d6:f1:20:4c:20:9a:0e:89:35:6b:c5:
84:5a:b5:7f:d5:b4:71:5f:28:b2:11:42:13:32:1d:
b7:4e:07:f7:e2:f8:15:cd:fc:1d:21:aa:a2:8a:fe:
16:14:de:3a:40:6f:7a:80:c9:7b:47:3d:b4:ae:b0:
15:28:fa:f6:c9:2c:4d:b2:2e:35:6c:ac:da:ba:b7:
76:5d:99:9a:00:36:bb:ec:2b:66:0f:7b:9e:76:0d:
39:0d:87:31:e7:3f:2d:0c:05:7f:1a:72:f6:d4:db:
36:83:4e:9f:c3:07:1a:17:0d:1a:97:bf:38:71:23:
f8:e8:ab:35:c5:1b:01:af:6e:57:a9:f9:a1:7f:bf:
bd:d6:97:12:74:e6:6d:9d:cb:b0:1b:45:c2:b6:cf:
5c:f1:63:9d:f6:fd:62:dd:8c:e3:8a:4c:ee:90:65:
5c:4a:0b:2d:4e:51:f2:b7:81:ac:67:03:73:8a:00:
d6:3b:f2:2f:da:62:a1:d8:45:8b:da:9f:b0:55:2d:
bb:28:54:70:f0:05:11:ec:8b:55:00:82:f9:04:01:
8d:21:fb:66:6e:95:e7:7a:9a:fe:d4:d6:8c:ca:a8:
f6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:AC:79:81:2A:13:BD:81:FD:09:E6:2D:C7:6E:5A:D5:98:E5:82:B3
X509v3 Authority Key Identifier:
keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/jKx5gSoTvYH9CeYtx25a1ZjlgrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.243.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:59:aa:8c:d4:85:c4:ff:0f:ca:dc:29:2c:ae:21:b1:55:29:
a0:a6:1a:02:04:b7:79:1e:6e:c1:1c:02:f7:be:6d:74:09:c0:
be:f4:8e:67:12:81:f1:e1:f4:2f:58:9b:68:07:72:30:9b:64:
9b:93:46:03:6e:44:9a:c2:17:db:37:32:6d:84:4a:b8:47:02:
fc:59:0f:4a:87:10:20:5d:a8:5a:fd:4c:00:64:1e:58:75:3b:
fd:8a:a5:bf:fc:c6:7b:f9:89:a4:4c:c1:47:63:19:ba:5c:9c:
eb:d9:e2:f6:7f:24:f8:be:f3:b4:cc:17:2a:41:f1:9a:e0:21:
89:4a:18:86:e1:67:71:2b:2a:51:89:f9:11:8c:c2:d7:9e:1e:
da:8d:ee:e2:a5:bb:b8:8f:a5:a9:22:f4:cf:03:82:b7:ed:e3:
00:f5:68:c0:69:a1:f1:48:19:c4:77:7b:c7:7b:5d:38:31:9a:
3a:c8:30:f0:bf:a8:98:c5:e9:da:8a:90:bf:54:7b:7a:2c:c0:
78:ed:3f:c0:cf:c7:98:c4:91:1e:c9:88:01:10:5b:9a:0d:5c:
09:04:3c:91:a3:7a:1b:e5:09:42:6b:75:34:21:74:a4:ea:4b:
f7:e8:0f:ec:83:c8:6f:91:78:a2:ec:0d:21:56:b3:02:26:25:
ed:37:5e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:54 2024 by rpki-client on console-ams.rpki-client.org