Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/CO-kLQrH4Hu1plUZiW4_9VT1DnU.roa
File: CO-kLQrH4Hu1plUZiW4_9VT1DnU.roa (raw, json)
Hash identifier: 65JuU+drQStzt6afoDr/pkOl3z5eXLLZhghA+Luxdf4=
Subject key identifier: 08:EF:A4:2D:0A:C7:E0:7B:B5:A6:55:19:89:6E:3F:F5:54:F5:0E:75
Certificate issuer: /CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Certificate serial: 0FB6F58E
Authority key identifier: 82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/CO-kLQrH4Hu1plUZiW4_9VT1DnU.roa
Signing time: Sat 01 Jan 2022 05:06:26 +0000
ROA not before: Sat 01 Jan 2022 05:06:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 89.104.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263648654 (0xfb6f58e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Validity
Not Before: Jan 1 05:06:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08efa42d0ac7e07bb5a65519896e3ff554f50e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a9:9e:da:19:00:6d:3c:83:e1:70:01:c4:ba:
07:94:bd:34:d4:1b:38:91:c9:0c:ab:d7:53:f1:b6:
13:bb:3f:e5:06:92:0b:f4:91:96:1a:fe:39:95:05:
34:3d:32:52:51:22:25:5a:15:9e:b6:29:8e:5f:cd:
6b:72:d8:ab:84:74:f5:40:2f:29:55:27:71:55:43:
b3:b5:2d:94:99:5b:21:3e:93:51:d0:d4:50:a8:fd:
fc:ba:49:df:e7:ff:a5:7f:49:54:35:48:2c:19:d6:
c9:8d:8f:aa:41:75:cc:ed:1d:b7:26:8d:ea:a6:3b:
b8:32:3a:49:d6:e3:ed:30:db:33:0f:e4:d3:20:bf:
f9:ef:4a:0c:2a:c2:72:b7:ab:8d:85:ca:91:05:5f:
1c:b1:00:67:82:6d:a8:71:79:43:42:15:8e:d4:b9:
0d:c6:4c:cd:97:40:6e:c6:1a:06:1c:45:f8:3c:4d:
86:fb:8f:fc:43:3f:b5:b1:7b:ae:18:d1:c4:cf:81:
8b:b3:e1:14:a5:47:3e:ad:c6:11:5f:b3:a3:43:91:
00:33:af:dc:85:f9:93:df:5a:fc:fa:c4:65:38:b0:
74:c8:c4:43:42:59:31:b7:95:69:ac:c7:1a:27:eb:
86:65:16:4f:f5:58:07:05:b5:f6:0d:ee:fd:cc:c1:
d4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:EF:A4:2D:0A:C7:E0:7B:B5:A6:55:19:89:6E:3F:F5:54:F5:0E:75
X509v3 Authority Key Identifier:
keyid:82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/CO-kLQrH4Hu1plUZiW4_9VT1DnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/gnrxfwSZYn5LPIzFwzPsS452NeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.104.221.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:77:f0:0c:b5:da:f3:c7:62:d3:34:6f:a8:c1:ed:11:00:b9:
c1:c2:4d:0c:33:47:c1:e9:e3:56:71:2c:d1:66:2b:68:ce:96:
4b:b9:6a:7b:5f:10:31:d5:fd:6b:6f:de:f2:46:41:1f:34:dd:
cc:82:e3:a6:2e:c0:d2:53:22:bc:2f:40:48:88:29:a9:e3:91:
a0:e0:bf:e2:50:c0:c7:c2:60:fe:04:a3:f9:7d:26:0f:06:fd:
36:81:4a:a0:ff:27:15:77:53:3a:ec:67:55:f7:8f:fe:be:73:
ea:a9:d8:4e:a4:5d:e3:64:ba:ff:3f:6e:e3:ec:73:4a:2c:eb:
b3:76:59:cf:31:c6:88:6e:23:9b:29:33:41:49:61:e3:40:63:
d7:3d:ee:94:31:de:d0:77:b2:1e:dc:d6:68:1f:a2:09:37:fb:
59:ec:17:40:e6:8a:d4:5c:3c:4a:56:59:7f:69:a0:cf:d8:c3:
a3:cb:48:c4:2a:77:47:fd:5a:b9:46:19:00:37:2e:15:d8:b5:
d1:ce:2c:99:ab:3d:cd:08:f6:66:dc:d3:34:8d:30:27:2a:11:
8a:a3:e5:24:c7:16:56:0c:58:24:95:02:9a:6a:bd:68:89:c4:
46:58:67:30:84:b8:17:b8:e2:bd:2f:38:c9:57:12:f9:85:65:
87:01:68:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:01 2024 by rpki-client on console-fra.rpki-client.org