Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/57ea8d-c680-40a7-8a29-f076a08e6003/1/DDhMuuH9BtLRvxVNH4yx9mqzasM.roa
File: DDhMuuH9BtLRvxVNH4yx9mqzasM.roa (raw, json)
Hash identifier: MIKE0X8lsiH+zu3QITWW4xOIDfF0A422gV0Sd4HjO2M=
Subject key identifier: 0C:38:4C:BA:E1:FD:06:D2:D1:BF:15:4D:1F:8C:B1:F6:6A:B3:6A:C3
Certificate issuer: /CN=3e8c1897624f57be34e0f760b97f110ad5b5da3a
Certificate serial: 13202B75
Authority key identifier: 3E:8C:18:97:62:4F:57:BE:34:E0:F7:60:B9:7F:11:0A:D5:B5:DA:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PowYl2JPV7404PdguX8RCtW12jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/57ea8d-c680-40a7-8a29-f076a08e6003/1/DDhMuuH9BtLRvxVNH4yx9mqzasM.roa
Signing time: Sat 01 Jan 2022 09:53:37 +0000
ROA not before: Sat 01 Jan 2022 09:53:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31898
IP address blocks: 89.207.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 320875381 (0x13202b75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8c1897624f57be34e0f760b97f110ad5b5da3a
Validity
Not Before: Jan 1 09:53:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c384cbae1fd06d2d1bf154d1f8cb1f66ab36ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:d0:97:ad:ef:e9:69:13:d0:28:78:30:7f:
f1:a9:46:a3:05:05:97:6b:8f:eb:8e:c4:99:da:b4:
e4:6b:a4:ff:a6:c9:7c:f8:35:e2:ee:2a:df:6b:ee:
ed:12:dd:b2:0e:4f:03:5b:54:24:fa:5c:23:32:b5:
97:e1:bc:55:b5:b2:b4:81:40:4f:af:2e:b3:ce:e2:
cc:0d:02:91:0f:c1:d9:ac:4c:03:c8:e5:4e:e4:94:
7e:54:54:5d:90:fc:8f:2f:e3:b7:7d:56:c2:81:1c:
98:26:9d:ed:e7:b5:f6:4e:51:aa:16:79:52:7b:34:
12:67:8c:1a:83:03:f2:a5:e5:7a:61:60:d9:69:63:
62:45:4b:63:c9:18:84:5c:21:de:cd:f5:7a:35:19:
17:ff:e4:d8:81:53:15:f4:8c:7a:e6:f8:a6:87:f6:
77:50:5f:5b:46:4b:9a:16:74:66:81:55:88:06:37:
cd:6a:a6:4b:9f:bf:d9:51:87:49:fa:82:13:8c:51:
04:f9:e1:02:7a:4e:13:ed:5b:32:d1:ea:df:49:6d:
bd:44:d3:d4:c3:b7:ab:d2:e0:a2:f9:6e:ed:e9:c8:
d9:bb:ed:fc:f3:09:a1:a1:9b:f3:4f:61:5d:33:eb:
59:e0:f3:f9:e9:8e:fc:c5:9b:f9:88:d6:71:3b:26:
46:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:38:4C:BA:E1:FD:06:D2:D1:BF:15:4D:1F:8C:B1:F6:6A:B3:6A:C3
X509v3 Authority Key Identifier:
keyid:3E:8C:18:97:62:4F:57:BE:34:E0:F7:60:B9:7F:11:0A:D5:B5:DA:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PowYl2JPV7404PdguX8RCtW12jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/57ea8d-c680-40a7-8a29-f076a08e6003/1/DDhMuuH9BtLRvxVNH4yx9mqzasM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/57ea8d-c680-40a7-8a29-f076a08e6003/1/PowYl2JPV7404PdguX8RCtW12jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.124.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:56:7a:54:ab:ce:bc:99:4d:f4:79:a1:4a:e4:fe:15:4e:56:
7d:e1:46:7b:a2:df:5f:c7:3c:20:84:e5:c2:bb:80:60:22:58:
92:cc:85:f7:bc:74:03:04:1f:2e:5a:59:29:ae:00:c8:96:c6:
56:aa:19:5e:9e:47:52:e4:ee:39:96:5e:15:59:7c:a2:f7:d2:
6a:ce:83:71:24:04:00:69:50:7c:1c:83:d1:e5:1a:5e:37:63:
84:c9:bc:b2:87:b8:00:f9:bc:80:4f:a2:c9:96:ad:62:3a:41:
bf:30:48:b8:95:b6:fa:8d:69:f0:98:4c:a6:75:52:5c:61:78:
5a:3d:bc:75:11:3a:ce:65:57:25:91:d2:1f:ba:2b:de:71:29:
a2:4e:c0:b6:7d:43:5e:37:61:18:2e:dd:4e:8e:1d:17:f0:79:
dd:ca:78:54:24:74:ca:5c:34:b4:d9:d2:fb:91:a9:ce:22:0c:
13:05:c4:0a:6e:c8:56:cf:d7:96:25:31:b3:ae:39:c1:ec:21:
5c:f5:f8:e9:73:52:31:fa:85:e0:2f:74:0a:38:cb:68:04:be:
d4:44:e1:71:aa:ed:66:62:a9:c8:33:5d:cc:c5:96:44:07:96:
aa:23:71:bd:6c:36:cf:5c:f8:a0:75:fe:8d:18:d3:b3:58:54:
f3:9c:10:21
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEEyArdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZThjMTg5NzYyNGY1N2JlMzRlMGY3NjBiOTdmMTEwYWQ1YjVkYTNhMB4XDTIyMDEw
MTA5NTMzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGMzODRjYmFlMWZk
MDZkMmQxYmYxNTRkMWY4Y2IxZjY2YWIzNmFjMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMDE0Jet7+lpE9AoeDB/8alGowUFl2uP647Emdq05Guk/6bJ
fPg14u4q32vu7RLdsg5PA1tUJPpcIzK1l+G8VbWytIFAT68us87izA0CkQ/B2axM
A8jlTuSUflRUXZD8jy/jt31WwoEcmCad7ee19k5RqhZ5Uns0EmeMGoMD8qXlemFg
2WljYkVLY8kYhFwh3s31ejUZF//k2IFTFfSMeub4pof2d1BfW0ZLmhZ0ZoFViAY3
zWqmS5+/2VGHSfqCE4xRBPnhAnpOE+1bMtHq30ltvUTT1MO3q9Lgovlu7enI2bvt
/PMJoaGb809hXTPrWeDz+emO/MWb+YjWcTsmRskCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQMOEy64f0G0tG/FU0fjLH2arNqwzAfBgNVHSMEGDAWgBQ+jBiXYk9XvjTg
92C5fxEK1bXaOjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Bvd1lsMkpQVjc0MDRQZGd1WDhSQ3RXMTJqby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvNTdlYThkLWM2ODAtNDBhNy04YTI5LWYwNzZhMDhlNjAwMy8x
L0REaE11dUg5QnRMUnZ4Vk5INHl4OW1xemFzTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
NTdlYThkLWM2ODAtNDBhNy04YTI5LWYwNzZhMDhlNjAwMy8xL1Bvd1lsMkpQVjc0
MDRQZGd1WDhSQ3RXMTJqby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFnPfDANBgkqhkiG9w0BAQsFAAOC
AQEAXFZ6VKvOvJlN9HmhSuT+FU5WfeFGe6LfX8c8IITlwruAYCJYksyF97x0AwQf
LlpZKa4AyJbGVqoZXp5HUuTuOZZeFVl8ovfSas6DcSQEAGlQfByD0eUaXjdjhMm8
soe4APm8gE+iyZatYjpBvzBIuJW2+o1p8JhMpnVSXGF4Wj28dRE6zmVXJZHSH7or
3nEpok7Atn1DXjdhGC7dTo4dF/B53cp4VCR0ylw0tNnS+5GpziIMEwXECm7IVs/X
liUxs645wewhXPX46XNSMfqF4C90CjjLaAS+1EThcartZmKpyDNdzMWWRAeWqiNx
vWw2z1z4oHX+jRjTs1hU85wQIQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:29 2024 by rpki-client on console-ams.rpki-client.org