Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/lYQJSmmVMW203ApyU2mWJXwQpnI.roa
File: lYQJSmmVMW203ApyU2mWJXwQpnI.roa (raw, json)
Hash identifier: 6hadYMWBnynBRvWU7m1dLdPC4TEcV26oJHfLqGf5Hus=
Subject key identifier: 95:84:09:4A:69:95:31:6D:B4:DC:0A:72:53:69:96:25:7C:10:A6:72
Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Certificate serial: 174631DC
Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/lYQJSmmVMW203ApyU2mWJXwQpnI.roa
Signing time: Mon 02 May 2022 04:58:40 +0000
ROA not before: Mon 02 May 2022 04:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64452
IP address blocks: 89.44.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390476252 (0x174631dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Validity
Not Before: May 2 04:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9584094a6995316db4dc0a72536996257c10a672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3b:22:5c:ed:22:b3:57:3a:f9:b4:0b:69:7a:
4c:b5:dd:3e:20:1c:66:73:98:0d:0f:b3:4c:7f:94:
af:12:15:19:d3:9c:53:1a:d1:bd:a2:bc:87:09:dd:
1d:37:ec:3f:58:bb:1f:e5:7e:50:f5:99:9f:d3:a1:
00:52:ce:0d:b4:65:bd:ad:23:07:a3:cf:7e:3d:45:
bb:ac:a1:8e:59:48:b2:7f:bd:fb:85:b8:99:b1:b1:
05:0e:e6:3f:a4:c5:cc:af:cd:09:14:d3:ed:4e:67:
04:44:e5:3d:4d:2f:a7:0f:56:5a:22:5c:63:c4:f2:
e7:46:a5:03:cd:c1:1f:16:47:be:41:3d:57:f9:47:
a2:97:24:75:2e:b1:3c:f1:c0:e8:7d:d2:84:ee:0e:
b7:75:78:69:c4:0c:bf:ef:22:c9:4e:b4:e6:eb:47:
ef:82:a5:99:a7:7b:78:a2:76:af:a9:eb:08:ca:a6:
f4:96:5a:f5:d1:7c:9d:96:e8:76:dd:32:fc:5a:e6:
6f:08:88:07:cb:fe:b7:30:6b:77:db:af:e6:8d:c8:
c9:68:3e:c2:73:4a:48:47:b4:f2:65:41:56:06:6a:
58:10:2f:33:8c:98:1e:c3:ce:70:48:02:c5:64:1a:
bb:69:e7:45:95:02:ae:d4:a8:6c:5d:23:48:ba:f6:
05:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:84:09:4A:69:95:31:6D:B4:DC:0A:72:53:69:96:25:7C:10:A6:72
X509v3 Authority Key Identifier:
keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/lYQJSmmVMW203ApyU2mWJXwQpnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.87.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:ee:80:aa:ba:39:6b:4d:00:8d:1e:d9:03:6d:c1:bc:e2:d6:
95:b4:47:4b:84:6f:99:8e:cf:42:9f:1a:c2:35:83:c5:9b:a2:
55:a6:b1:ab:5f:c4:eb:a3:2d:b7:89:26:8b:34:e0:1b:9a:10:
55:d3:1e:3c:7d:3c:9c:fc:80:63:f0:7f:d2:71:dc:e1:96:a3:
fb:57:08:87:40:40:99:06:10:7c:b5:19:f5:b2:4a:a8:f5:ce:
9f:52:2f:f6:7e:1e:3e:76:49:94:72:fc:01:67:f3:62:47:89:
24:2f:59:42:db:1b:3b:d8:07:18:76:9f:85:e5:c4:0a:2a:97:
b6:04:1e:1d:e6:f9:d9:63:7e:fe:37:8c:03:32:fa:fe:7b:66:
3c:6e:13:cd:97:0c:5f:31:bf:1d:42:7e:ec:39:ab:b2:ba:10:
63:9e:b1:23:29:ef:37:b9:87:d4:5f:b2:76:39:0f:2a:ea:58:
a6:10:bf:16:83:ab:87:54:92:f0:2a:b4:df:d9:d9:36:6f:8d:
d7:dd:f7:2c:1f:fb:a1:1c:5b:66:d3:a3:80:d6:90:1a:70:65:
ad:66:44:28:26:7e:ff:22:70:79:79:2d:9f:b6:f6:fe:41:57:
12:9e:29:a6:1d:0b:3f:c6:21:55:b9:db:23:0e:3e:a8:39:b7:
b4:23:32:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:54 2024 by rpki-client on console-ams.rpki-client.org