Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/sZg8fCODPRUChniD6f_OWeyj97I.roa
File: sZg8fCODPRUChniD6f_OWeyj97I.roa (raw, json)
Hash identifier: 5tqBg5TiE1OaxwvaIMNaG4cuK2B2BoMbLOsgOammYYo=
Subject key identifier: B1:98:3C:7C:23:83:3D:15:02:86:78:83:E9:FF:CE:59:EC:A3:F7:B2
Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Certificate serial: 173A15B1
Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/sZg8fCODPRUChniD6f_OWeyj97I.roa
Signing time: Wed 27 Apr 2022 09:00:25 +0000
ROA not before: Wed 27 Apr 2022 09:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44740
IP address blocks: 89.46.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389682609 (0x173a15b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Validity
Not Before: Apr 27 09:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1983c7c23833d1502867883e9ffce59eca3f7b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:fc:91:d0:60:97:6b:8f:93:45:27:c3:eb:ba:
a9:61:bc:fb:f0:ea:fc:a1:e0:30:98:ae:40:d5:b5:
03:a3:1c:79:3f:dd:4f:ba:c9:15:84:b3:e0:fd:fd:
ce:65:b2:a0:c4:36:7d:89:b4:88:87:7b:a6:90:27:
de:c2:c1:51:d7:65:a2:1f:70:88:2d:70:1b:eb:28:
74:ec:46:d1:6c:08:a3:7f:e8:6c:33:41:eb:4b:b5:
46:1a:f0:62:6a:03:9f:5a:61:96:b3:f0:87:f0:94:
8e:57:13:e8:d9:de:71:f2:20:e2:8d:76:38:a3:ca:
79:b0:a0:fc:18:32:ef:9d:68:10:af:97:8b:e4:fb:
4b:7e:e6:d0:ff:0b:12:1a:f8:cb:1e:75:57:14:1f:
37:26:11:d4:64:3b:57:97:5b:15:57:da:f4:cc:4a:
19:02:89:ea:9a:1a:1a:ed:b6:47:67:5e:f5:97:0e:
7a:1d:fd:b8:20:bb:67:fd:0d:b4:f7:e0:a3:b3:5e:
18:e8:5e:8b:39:d0:81:7b:f3:4e:a1:f5:60:b4:1f:
cd:67:03:ff:c8:13:1f:89:37:19:6c:4f:89:43:03:
51:93:ef:50:a8:26:0d:53:f3:cf:55:e5:e1:ce:46:
82:27:30:44:a4:53:f1:26:57:d0:d2:93:f7:b6:c0:
d9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:98:3C:7C:23:83:3D:15:02:86:78:83:E9:FF:CE:59:EC:A3:F7:B2
X509v3 Authority Key Identifier:
keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/sZg8fCODPRUChniD6f_OWeyj97I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.245.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:af:1f:8c:55:5a:1a:bd:1e:1b:29:bd:2b:42:8d:67:5d:9b:
15:e9:06:f3:9b:4c:d5:b4:af:c2:77:96:5a:c4:d3:af:43:ec:
b3:83:f5:04:3a:ca:70:0a:3f:06:77:77:d8:e3:ed:17:1e:6d:
b5:e3:cd:0f:05:32:e7:83:a8:d4:fd:d1:c0:28:85:f3:6d:ea:
b2:0b:07:fc:5c:24:86:a6:d9:86:73:29:83:0b:31:58:a9:c9:
c8:e1:c8:32:a1:f3:4b:e8:d0:8d:97:b7:6f:bf:0a:01:7f:8d:
e3:0b:fb:c5:2f:a0:6f:a8:62:50:9e:24:33:a4:6c:26:60:cb:
48:7f:02:ba:f6:67:b5:3e:f0:74:a0:38:b9:3d:10:cd:b7:e3:
bd:7a:63:3d:38:af:60:75:56:c2:ba:0b:4a:f3:ff:e6:74:2a:
d6:ab:6e:fa:97:72:20:08:fb:14:41:8f:7d:15:bc:23:15:b6:
35:3a:23:b5:3d:bc:ec:8e:5b:b9:20:df:e2:7d:aa:f5:de:ae:
67:10:56:5b:12:fa:cb:db:6b:4f:e8:bf:79:40:37:f3:3e:c3:
20:bf:f8:88:95:c0:6a:71:56:39:9c:b3:c1:f5:a6:48:b8:4b:
26:3f:4f:e9:a1:71:62:4b:e9:9c:34:bb:96:03:15:d1:c3:b4:
9b:b0:41:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:32 2024 by rpki-client on console-fra.rpki-client.org