Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/9mr4i7uigyY1GZU3QPVn-Tji4W4.roa
File: 9mr4i7uigyY1GZU3QPVn-Tji4W4.roa (raw, json)
Hash identifier: AbmzqS2ErGXI4P0sGcQovyNNeCbNqupRhtmhK23oqZk=
Subject key identifier: F6:6A:F8:8B:BB:A2:83:26:35:19:95:37:40:F5:67:F9:38:E2:E1:6E
Certificate issuer: /CN=8d4dd2d06d920e403933fdb2cd1984893552579c
Certificate serial: 024D8880
Authority key identifier: 8D:4D:D2:D0:6D:92:0E:40:39:33:FD:B2:CD:19:84:89:35:52:57:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jU3S0G2SDkA5M_2yzRmEiTVSV5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/9mr4i7uigyY1GZU3QPVn-Tji4W4.roa
Signing time: Wed 29 Jun 2022 05:33:02 +0000
ROA not before: Wed 29 Jun 2022 05:33:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39232
IP address blocks: 89.219.156.0/23 maxlen: 23
89.219.156.0/22 maxlen: 22
89.219.155.0/24 maxlen: 24
89.219.158.0/23 maxlen: 23
89.219.160.0/24 maxlen: 24
89.219.164.0/23 maxlen: 23
89.219.164.0/22 maxlen: 22
89.219.163.0/24 maxlen: 24
89.219.166.0/23 maxlen: 23
89.219.171.0/24 maxlen: 24
89.219.170.0/24 maxlen: 24
89.219.170.0/23 maxlen: 23
89.219.169.0/24 maxlen: 24
89.219.172.0/22 maxlen: 22
89.219.172.0/23 maxlen: 23
89.219.174.0/23 maxlen: 23
89.219.176.0/21 maxlen: 21
89.219.176.0/20 maxlen: 20
89.219.184.0/21 maxlen: 21
89.219.132.0/23 maxlen: 23
89.219.132.0/24 maxlen: 24
89.219.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38635648 (0x24d8880)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d4dd2d06d920e403933fdb2cd1984893552579c
Validity
Not Before: Jun 29 05:33:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f66af88bbba283263519953740f567f938e2e16e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4d:d0:58:ce:44:28:5a:6e:46:b1:42:14:78:
e3:87:b3:f1:91:da:76:01:7b:4c:77:9a:38:15:33:
a2:7a:f1:88:b7:49:a8:12:7f:44:53:f2:15:23:a5:
14:48:b7:1c:a3:8d:81:fd:66:a7:50:b4:eb:bc:64:
42:f3:bc:20:28:f2:23:90:e3:7f:3e:cb:95:b5:3a:
1a:f0:4b:db:7b:0e:e2:6f:45:80:09:b9:d0:39:7e:
f6:19:77:82:a9:99:f1:c5:cf:0e:b9:7e:be:aa:b9:
35:f6:1c:f6:a3:05:05:0c:cc:db:2b:fa:67:f8:78:
31:dd:bb:eb:e6:1e:09:87:6f:72:01:d9:b6:1c:cf:
0d:5a:e9:c7:ef:bf:21:2a:eb:57:33:ee:36:53:d3:
e0:66:e6:f5:93:15:d7:e3:ec:b2:2c:2d:4c:f1:f2:
c3:06:41:30:89:e6:ca:dd:86:95:bc:bd:6e:c0:64:
2d:21:f0:d2:3c:9b:3b:f2:47:64:fd:0a:e5:e5:3d:
2d:09:21:63:0a:1e:bc:05:1c:ce:23:d6:18:5f:a2:
03:7d:25:1b:be:da:ef:88:11:67:e3:01:bf:5b:93:
66:02:bf:cf:7e:ed:60:07:b6:d8:d5:4a:1d:19:d8:
27:90:de:08:72:41:a4:39:c5:41:fe:3c:8e:35:90:
50:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:6A:F8:8B:BB:A2:83:26:35:19:95:37:40:F5:67:F9:38:E2:E1:6E
X509v3 Authority Key Identifier:
keyid:8D:4D:D2:D0:6D:92:0E:40:39:33:FD:B2:CD:19:84:89:35:52:57:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jU3S0G2SDkA5M_2yzRmEiTVSV5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/9mr4i7uigyY1GZU3QPVn-Tji4W4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/jU3S0G2SDkA5M_2yzRmEiTVSV5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.219.132.0/23
89.219.155.0-89.219.160.255
89.219.163.0-89.219.167.255
89.219.169.0-89.219.191.255
Signature Algorithm: sha256WithRSAEncryption
2f:3b:16:ec:3f:bc:f6:0c:d7:62:1e:cb:e9:4e:45:da:7e:01:
9a:1a:be:50:0a:24:9b:1e:4e:9a:9f:28:9a:a1:01:61:87:65:
85:4e:ab:5a:92:7c:c2:76:63:74:98:22:ca:bd:00:2b:98:f0:
86:97:6d:c8:76:ea:70:a2:fd:c1:3c:f9:a2:f2:f5:f2:2a:a3:
f7:da:81:44:c6:de:6a:32:22:48:5a:12:28:a4:42:42:a5:f6:
63:b3:37:3b:82:8a:87:4f:24:b2:6c:e4:88:9f:18:8c:2f:e7:
35:19:a4:c1:ab:6a:a3:f8:0c:1d:7d:bd:52:f3:e9:7a:e6:6e:
1c:e7:78:02:da:fa:c0:2d:4c:94:61:13:e7:aa:90:a0:69:3b:
09:2b:2f:dd:a9:b0:61:26:f0:95:59:e7:8d:ce:e0:97:8d:f5:
cf:cd:6e:70:e7:1d:f9:8b:b2:99:a0:2d:5e:81:5c:8d:a0:df:
d8:94:52:2f:4e:a1:ed:f1:04:83:6a:d6:c0:10:c6:40:9d:21:
ad:eb:ac:3a:4f:d6:92:d2:ff:53:ab:f6:38:3c:d1:00:25:d0:
42:93:4b:f6:54:b5:07:3c:3d:74:d3:d3:20:9c:ac:64:4e:c4:
bd:30:65:65:60:a9:62:05:47:8b:06:53:b2:68:4f:13:21:05:
ca:cd:fa:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:49 2024 by rpki-client on console-fra.rpki-client.org