Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/h5EvPhl5ddsH1f2ipuRmxjIezuw.roa
File: h5EvPhl5ddsH1f2ipuRmxjIezuw.roa (raw, json)
Hash identifier: FPvTGYftfujOu7qdlc7zXmPY8djHmrmzGG9f3pYVgPQ=
Subject key identifier: 87:91:2F:3E:19:79:75:DB:07:D5:FD:A2:A6:E4:66:C6:32:1E:CE:EC
Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Certificate serial: 0183D5A5339112BC31CA2E5B93EAD21881B7
Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/h5EvPhl5ddsH1f2ipuRmxjIezuw.roa
Signing time: Fri 14 Oct 2022 08:38:37 +0000
ROA not before: Fri 14 Oct 2022 08:38:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197889
IP address blocks: 89.107.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d5:a5:33:91:12:bc:31:ca:2e:5b:93:ea:d2:18:81:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Validity
Not Before: Oct 14 08:38:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87912f3e197975db07d5fda2a6e466c6321eceec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6b:be:62:22:2b:08:59:53:78:35:a1:39:00:
6e:73:e5:d8:67:10:ef:cd:8e:71:3d:cd:62:f0:72:
7f:83:92:55:bf:2b:d6:e9:32:e2:07:58:51:ba:45:
0a:a1:3a:c5:97:bc:07:18:3e:7b:eb:4a:92:60:3d:
72:13:96:06:74:67:f7:00:ed:7b:6b:3a:67:e3:a0:
58:65:88:f8:20:ba:61:61:d1:c4:1b:93:8a:8d:cf:
b9:b7:1c:ab:3b:a1:cf:63:86:da:6b:e5:21:2a:24:
ae:d3:14:d7:e3:bf:e8:b4:d0:ca:a9:13:02:e5:b5:
2c:36:11:d8:48:61:81:7b:45:80:21:bd:b5:7b:d1:
79:d1:3b:f9:86:77:95:d4:c3:ad:01:45:35:f6:99:
93:06:c1:c7:ba:e9:55:5b:46:25:47:67:a8:47:16:
2b:f3:f2:02:73:81:7a:7c:8d:4c:a3:e8:13:1b:bb:
a1:59:07:50:84:8a:a0:84:15:63:f9:78:1f:f5:56:
ba:e7:07:c3:3b:bb:a2:48:60:37:34:89:ea:5d:7e:
6a:18:76:15:25:a4:6e:60:d0:99:c0:11:fb:31:7d:
b3:f1:52:78:97:fc:28:b2:ec:7f:4e:57:b2:bf:2f:
7c:18:e2:17:a3:47:b2:f7:c2:0b:17:a5:83:7e:9d:
c0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:91:2F:3E:19:79:75:DB:07:D5:FD:A2:A6:E4:66:C6:32:1E:CE:EC
X509v3 Authority Key Identifier:
keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/h5EvPhl5ddsH1f2ipuRmxjIezuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.254.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:34:88:ac:31:e9:80:ac:65:1e:72:a4:d3:72:0a:b0:18:0f:
e0:04:68:e8:b2:bb:8b:41:22:b6:6c:0a:79:6e:5a:c1:91:b0:
15:40:53:73:7d:c5:d5:f0:14:90:d6:d9:9e:5c:34:42:4e:d4:
51:c1:25:87:fa:4b:db:65:71:d2:c8:3b:8e:83:fd:1c:a6:bb:
0b:67:ce:87:cd:d6:db:8c:f7:5d:fc:66:03:a7:99:4d:a7:e3:
76:95:3a:ec:c6:5c:59:b0:bc:5f:dd:f1:92:cc:eb:c9:d8:1e:
6b:9d:d6:89:5d:e8:6a:bd:ce:97:ed:ac:2a:ef:95:9a:dd:ca:
b6:55:07:2e:b3:8e:a7:c8:d0:94:f5:cc:4f:77:46:8f:f9:68:
9d:10:5b:fa:bc:87:20:df:fa:08:8d:d2:45:13:46:9b:32:59:
5b:d3:cb:4e:c6:ab:c3:7f:0a:d6:0e:e0:27:09:65:c1:5c:f6:
95:dc:26:43:b0:88:a0:89:1a:b2:9f:33:d9:d1:34:27:d3:b5:
b0:1b:be:9c:46:52:07:c2:1f:ad:d6:8c:42:31:a3:19:74:df:
61:e0:75:e9:dc:11:79:cc:0e:b7:d9:b5:cf:22:f8:22:4c:80:
69:b3:35:be:74:54:27:f0:b4:ea:e2:db:a0:44:97:68:c7:d8:
2d:31:d6:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:17 2023 by rpki-client on console-fra.rpki-client.org