Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/b39HKypR9jt4vxGapOsj6BtXGrY.roa
File: b39HKypR9jt4vxGapOsj6BtXGrY.roa (raw, json)
Hash identifier: XDneP7XoKR0tDcSV9HaYQowA1Z6ANsdVD6tCRDlKppM=
Subject key identifier: 6F:7F:47:2B:2A:51:F6:3B:78:BF:11:9A:A4:EB:23:E8:1B:57:1A:B6
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 388D63BC
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/b39HKypR9jt4vxGapOsj6BtXGrY.roa
Signing time: Tue 17 May 2022 05:11:30 +0000
ROA not before: Tue 17 May 2022 05:11:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16045
IP address blocks: 89.215.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948790204 (0x388d63bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:11:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f7f472b2a51f63b78bf119aa4eb23e81b571ab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:71:7e:1f:a2:59:d6:fc:67:2e:da:6f:a5:7a:
d9:88:46:63:07:51:4f:99:91:d7:91:e1:2e:bf:60:
dd:5f:5b:26:f2:ed:0f:18:be:d8:1e:1d:a0:a6:9c:
9c:07:df:26:a8:b0:98:5f:90:61:3e:ec:8e:1d:1e:
17:91:e1:ac:f7:b8:eb:73:4f:96:e2:56:5a:7f:81:
a9:92:50:d3:27:aa:22:80:0e:f6:d4:41:43:4c:fe:
7e:62:e0:74:c8:f2:e2:6c:7d:33:19:74:0d:79:83:
7c:0c:6a:84:c7:77:66:f2:aa:7f:d7:6d:cf:19:b9:
b6:6f:e4:9f:b3:8d:cd:65:70:60:6f:fc:46:bd:6d:
f4:16:e3:b5:8c:f8:15:51:0b:98:d2:30:dc:e5:21:
d8:33:bd:e3:85:30:d7:4c:64:2d:0f:39:29:3b:6d:
05:d5:c7:8b:70:9b:fe:98:2d:6e:2f:8f:38:26:8e:
c2:08:ee:9f:a7:7d:5c:8f:5d:79:51:6e:ee:8f:8d:
fc:ed:83:98:42:bc:5e:61:37:87:af:4a:2b:6d:d7:
ad:e3:47:5f:0f:4c:95:12:d9:b6:b3:3a:9a:1a:b8:
40:0a:42:da:9e:c7:d0:f9:e2:6a:60:df:f9:76:bb:
33:31:85:39:8b:f7:c1:cc:86:ea:30:12:a9:76:05:
97:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7F:47:2B:2A:51:F6:3B:78:BF:11:9A:A4:EB:23:E8:1B:57:1A:B6
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/b39HKypR9jt4vxGapOsj6BtXGrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.215.213.0/24
Signature Algorithm: sha256WithRSAEncryption
32:56:fc:1d:d8:4c:f3:21:bd:f1:c4:b2:60:8c:2a:6a:7b:e7:
b3:e7:8a:b2:31:f0:b7:83:d0:b0:d7:fd:e2:b7:19:49:1d:ca:
b9:21:50:98:cc:95:f6:22:06:72:7c:92:c0:b6:c9:bd:dd:d2:
98:7d:ff:80:0b:c6:c8:21:98:31:35:5f:de:97:1c:44:d6:37:
45:a9:68:f0:ea:87:bd:46:d7:69:b4:6c:b0:3c:e3:64:49:ad:
34:eb:e9:1e:86:4e:3b:0e:ee:64:96:73:a0:b5:dd:e9:6a:c5:
6b:e4:78:2b:52:8f:56:3c:94:d6:4c:1a:e9:94:4f:13:e4:58:
80:7a:a5:fc:14:86:ff:8d:07:7b:94:01:0a:74:e7:80:dc:b2:
2f:0c:c6:ff:f0:a2:ca:c9:5a:8a:97:2a:22:72:c3:7e:bc:f7:
da:98:9c:ab:65:9f:fc:b8:4d:d0:9a:91:c3:c4:e3:e2:eb:23:
2a:8a:fa:8d:9e:91:80:01:9c:54:c8:2c:69:f0:bf:78:8c:e5:
66:d5:b7:6c:5e:1b:0b:6b:76:33:92:57:ae:92:82:a1:4f:0d:
84:0a:30:65:66:cb:04:49:9e:55:ab:11:dd:14:6d:b9:fb:c4:
76:af:d9:16:f7:d1:90:1b:c8:35:2a:5c:16:94:e6:bf:9c:a6:
ba:06:f7:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:20 2023 by rpki-client on console-fra.rpki-client.org