Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/vZ5lpO2avJIheD2SOeXU6gX5xF0.roa
File: vZ5lpO2avJIheD2SOeXU6gX5xF0.roa (raw, json)
Hash identifier: F42AXQDoj32wxUEKluQ11FFyM/mh8qQF2TEMMDJYfRU=
Subject key identifier: BD:9E:65:A4:ED:9A:BC:92:21:78:3D:92:39:E5:D4:EA:05:F9:C4:5D
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 045B732D
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/vZ5lpO2avJIheD2SOeXU6gX5xF0.roa
Signing time: Wed 09 Mar 2022 05:35:42 +0000
ROA not before: Wed 09 Mar 2022 05:35:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201387
IP address blocks: 185.89.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73102125 (0x45b732d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Mar 9 05:35:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd9e65a4ed9abc9221783d9239e5d4ea05f9c45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4b:47:f3:d4:ed:b4:da:ee:39:2f:35:fe:d4:
5c:58:43:ca:03:d9:5a:b0:92:51:d1:be:9f:96:0d:
9c:7c:a0:b8:95:c0:4b:15:1f:92:00:d2:3a:da:f0:
c4:94:7c:cd:7c:d3:36:07:c6:13:33:37:07:ca:44:
6d:fc:85:29:e9:ae:ea:03:aa:af:42:a2:39:c5:8d:
8d:3d:63:63:40:a8:26:6c:a9:37:b5:21:4b:1f:c8:
16:38:ba:18:66:2b:17:65:76:0b:1d:12:41:f9:cc:
91:b9:97:ce:d0:41:72:ed:8a:5a:ac:fb:9e:a9:c8:
65:80:a9:c9:38:ad:77:4f:04:b2:54:fc:cc:06:02:
96:0d:b7:94:9c:0e:94:c6:eb:6a:8d:b9:ed:9f:98:
50:0a:e6:27:19:f5:54:3f:62:82:9f:30:c8:b9:a8:
c1:10:63:a1:62:c0:3b:80:09:74:d8:7b:d7:d7:0c:
bf:ad:4d:9c:ac:70:98:12:13:02:f8:c4:6a:4d:32:
4b:d3:50:57:3d:65:88:7d:93:63:0d:05:71:4b:96:
99:bc:0f:4f:16:fa:6f:29:c6:b5:48:7a:4b:82:a0:
8d:c5:fd:22:e8:9a:ca:71:05:69:d6:bb:ab:80:f5:
e3:db:be:bf:73:e4:84:89:55:e4:7b:df:66:5d:4c:
15:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:9E:65:A4:ED:9A:BC:92:21:78:3D:92:39:E5:D4:EA:05:F9:C4:5D
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/vZ5lpO2avJIheD2SOeXU6gX5xF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.240.0/22
Signature Algorithm: sha256WithRSAEncryption
12:00:d1:8d:3c:cc:c7:73:fd:e5:4f:2b:83:e5:6b:5b:57:1b:
01:5a:5c:82:18:c7:bc:58:46:91:86:09:f8:3d:6d:60:45:6f:
ae:65:a6:54:a2:08:f5:5d:f5:5e:9a:ac:61:96:d4:a6:af:05:
02:48:0b:da:3f:7b:57:4f:1a:7d:7f:96:99:84:7e:91:21:e7:
6c:5f:b7:82:91:bc:fe:ee:74:97:d3:e4:d4:17:38:b6:c3:a9:
a1:fa:3e:e2:04:ae:76:c9:80:8b:e8:b0:25:0d:b9:74:7b:cf:
7e:64:26:af:52:4c:c2:88:3c:5d:e5:00:11:dc:7a:02:6a:ff:
3f:fc:07:10:1a:75:7d:5c:5d:b3:8e:03:e4:3d:6c:f1:66:51:
3b:2e:c8:a0:b4:8b:77:31:4c:a2:67:54:fc:50:15:38:f6:9d:
58:cd:bc:e9:7c:3a:53:3e:aa:60:b5:09:b1:07:af:10:14:a1:
93:fa:03:59:5e:8f:fd:20:11:b7:60:75:09:e9:82:ac:67:b8:
73:fc:95:95:1a:4d:27:ee:45:11:87:d8:01:02:66:1e:8e:c7:
af:1b:c8:e6:3b:9d:c3:37:42:e1:bb:ba:74:e1:d1:52:1a:87:
59:bb:9b:ba:b6:f4:4e:40:9d:74:d3:da:f5:a8:67:a7:b5:c1:
e9:9b:08:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:21 2024 by rpki-client on console-ams.rpki-client.org