Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/YKuzssTrKpqi69CaMs3dUrMsE2A.roa
File: YKuzssTrKpqi69CaMs3dUrMsE2A.roa (raw, json)
Hash identifier: QvlaXzzlJexD08gJJnFnrZhflDTGH9gtn1a5teYs+Ho=
Subject key identifier: 60:AB:B3:B2:C4:EB:2A:9A:A2:EB:D0:9A:32:CD:DD:52:B3:2C:13:60
Certificate issuer: /CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Certificate serial: 01828198615267EB0D1E9E1FC4A54D5551C1
Authority key identifier: 5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/YKuzssTrKpqi69CaMs3dUrMsE2A.roa
Signing time: Tue 09 Aug 2022 07:53:43 +0000
ROA not before: Tue 09 Aug 2022 07:53:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208300
IP address blocks: 89.248.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:81:98:61:52:67:eb:0d:1e:9e:1f:c4:a5:4d:55:51:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da432a4ec3b0ac4ca4e4ecec0e9f4d46b497af0
Validity
Not Before: Aug 9 07:53:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60abb3b2c4eb2a9aa2ebd09a32cddd52b32c1360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f4:ed:98:73:89:18:0a:e8:a5:53:29:61:14:
0a:24:44:c6:b2:59:18:f9:97:8b:37:0a:20:bf:72:
2b:ab:c8:3b:cd:90:e8:22:ff:c1:81:b7:8e:ed:f3:
d8:9a:b7:a6:cd:58:65:0d:cd:4d:9c:2f:cd:ac:63:
e3:13:83:aa:03:eb:a0:ec:4c:52:c5:89:27:2e:e3:
81:09:11:8a:13:72:b9:09:0f:43:5a:0f:8f:c8:e5:
9b:28:b4:df:8e:0e:aa:9c:10:2f:69:2e:72:a3:b9:
94:0c:4c:ba:2f:8a:81:4b:b3:ad:0e:43:79:98:cb:
41:af:cc:01:40:3f:91:38:d6:b4:98:9d:9e:e7:9d:
48:e9:85:fe:f2:c5:a5:f1:83:86:3e:bb:3c:74:99:
37:67:bf:65:5a:39:0e:5e:f3:81:5b:7e:46:6f:36:
58:5c:c1:c7:3a:64:5f:f3:dd:7a:2e:49:bd:56:cd:
ea:0e:28:68:2c:7a:39:ab:de:e6:a6:f7:05:8b:d7:
12:e6:60:c6:70:ad:61:a0:3b:46:df:43:0a:c3:ef:
76:0a:51:19:03:40:40:c4:74:8e:72:00:a0:59:1c:
dc:04:21:f2:6c:af:37:92:c6:dc:3c:4f:2a:93:86:
b2:ad:2c:3a:d4:1c:24:02:d5:34:6d:ac:55:18:a2:
f8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:AB:B3:B2:C4:EB:2A:9A:A2:EB:D0:9A:32:CD:DD:52:B3:2C:13:60
X509v3 Authority Key Identifier:
keyid:5D:A4:32:A4:EC:3B:0A:C4:CA:4E:4E:CE:C0:E9:F4:D4:6B:49:7A:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaQypOw7CsTKTk7OwOn01GtJevA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/YKuzssTrKpqi69CaMs3dUrMsE2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9e847f-4146-4566-8c3e-1ba543eeaed7/1/XaQypOw7CsTKTk7OwOn01GtJevA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.231.0/24
Signature Algorithm: sha256WithRSAEncryption
28:20:0c:a3:3f:f7:30:bf:bc:42:e6:7e:dd:73:18:d5:99:0e:
5d:e0:26:d9:4a:53:4c:08:75:05:c3:55:a1:6b:2b:ba:f7:19:
8c:eb:89:94:b2:55:f5:41:16:0d:5d:f3:a2:f9:d2:85:63:c2:
66:dd:c0:2b:32:d3:7f:fb:f5:c7:c4:f7:d4:c1:70:c7:34:05:
21:4d:d9:f9:e8:f0:fc:06:7a:b8:a6:9f:b0:0d:e7:e9:cc:e6:
0e:a6:f8:f7:41:01:19:15:04:4a:9d:c3:64:7b:f1:84:34:c4:
4e:c0:9a:81:0b:33:dc:7a:25:7a:07:89:13:5a:19:f0:6c:4f:
2b:d5:d7:e6:da:0e:62:05:42:dd:f0:f7:c9:99:69:8c:73:a6:
a6:c9:be:dd:8f:68:91:62:df:1d:78:2f:97:f2:ba:88:d8:d2:
4e:89:b4:d5:57:85:60:65:2e:f4:25:b7:4e:4e:3f:63:5c:e3:
93:ae:8d:4e:bf:69:2c:6a:7d:1b:76:3a:e8:d8:35:0a:d4:7f:
bf:9b:0f:e0:06:84:e9:bc:ec:cc:48:a9:10:f1:c4:4c:02:9b:
34:63:3c:92:9b:66:09:4f:40:82:b7:98:7f:37:d3:33:62:19:
a9:12:1f:07:c8:ac:66:17:47:4d:79:a2:be:d1:66:d7:a6:30:
9c:63:5e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:48 2024 by rpki-client on console-ams.rpki-client.org