Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/pr6GC2Y2_IpPq0qf4ME3mee92eg.roa
File: pr6GC2Y2_IpPq0qf4ME3mee92eg.roa (raw, json)
Hash identifier: 2o7iTxCSefEveRREidUWUmjxs3My8UwwtXFGOqFxLwc=
Subject key identifier: A6:BE:86:0B:66:36:FC:8A:4F:AB:4A:9F:E0:C1:37:99:E7:BD:D9:E8
Certificate issuer: /CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Certificate serial: 03E70B8D
Authority key identifier: 23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/pr6GC2Y2_IpPq0qf4ME3mee92eg.roa
Signing time: Sat 01 Jan 2022 06:57:59 +0000
ROA not before: Sat 01 Jan 2022 06:57:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58238
IP address blocks: 89.188.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65473421 (0x3e70b8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Validity
Not Before: Jan 1 06:57:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6be860b6636fc8a4fab4a9fe0c13799e7bdd9e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:70:42:9b:31:84:f6:9a:ec:b2:ea:fb:24:ac:
ab:9b:8b:ef:da:b4:89:ae:d2:0c:c2:22:70:c0:43:
93:1e:dc:ae:89:18:f5:13:a9:f1:71:e9:76:35:73:
82:4b:54:98:61:45:83:2f:82:08:a7:af:e0:96:26:
79:6f:83:96:ec:f6:32:16:96:80:37:a3:ac:d7:09:
15:84:88:6b:af:ae:eb:1f:96:02:af:18:3b:11:71:
c1:fa:98:3e:a5:a1:13:c8:e9:1c:12:2d:c5:85:8e:
6b:6b:7a:42:71:51:13:e6:92:15:9a:2d:df:a7:76:
33:71:54:47:6f:b3:a2:39:26:ca:ab:91:7d:47:52:
c8:4c:bb:e0:5e:22:92:ec:52:06:73:77:be:55:24:
f6:d4:64:0a:cb:09:74:9f:f1:91:9a:cc:d2:84:f0:
24:9e:da:c0:1e:10:ce:46:06:03:10:4d:6b:0b:f5:
72:b6:e4:33:36:e8:c3:87:6f:88:52:6f:0d:48:cb:
de:cd:33:e5:5b:d3:54:f8:31:1c:00:37:d5:86:bf:
81:6e:3c:7e:60:01:dc:7d:6f:68:94:2e:77:c6:98:
e1:95:a7:7f:e0:32:a4:dc:85:41:b0:9c:e0:e3:d1:
5c:7c:0a:2a:05:5d:e5:dd:1d:88:15:d3:ac:0f:d9:
71:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BE:86:0B:66:36:FC:8A:4F:AB:4A:9F:E0:C1:37:99:E7:BD:D9:E8
X509v3 Authority Key Identifier:
keyid:23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/pr6GC2Y2_IpPq0qf4ME3mee92eg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.188.166.0/24
Signature Algorithm: sha256WithRSAEncryption
79:a9:01:86:e6:e6:9c:e3:08:5d:55:47:56:b8:db:b1:f5:e6:
0d:30:a2:ba:e2:81:50:8b:e1:c3:a3:10:f0:07:d1:0d:c9:70:
97:2d:68:a9:b9:10:81:11:c4:c3:1e:75:9d:9c:d3:a9:92:c5:
e2:59:71:ed:7a:5f:0c:96:83:d6:8f:88:a8:e5:a0:27:69:29:
e4:fe:40:b8:0e:78:d3:9b:d2:27:78:37:82:23:6d:e6:dd:91:
08:36:e0:30:b8:35:f2:76:b0:4e:df:4c:71:e2:78:a3:ac:4e:
ea:f3:d2:62:87:88:bf:27:58:89:46:35:ab:fc:c8:7a:11:c9:
89:73:94:63:79:5d:c1:f2:64:dd:e6:0c:df:47:02:a9:a7:44:
32:63:68:7a:7d:a0:78:46:25:c4:16:ff:a4:ab:30:c1:00:23:
60:19:d5:ae:7c:ad:a4:b4:1d:dc:93:23:78:dd:7f:33:85:e4:
89:44:97:39:12:10:ad:cf:8f:6f:08:96:3f:69:f3:47:4b:90:
61:06:53:c4:92:64:7e:8b:16:97:dc:8f:9b:b8:8f:0b:f8:57:
5b:80:f9:8c:13:b2:a7:de:18:cd:ea:1e:eb:7c:5c:80:57:3b:
48:41:d7:f8:34:b6:5b:9e:6d:b1:29:bb:72:3e:13:43:6b:9d:
a4:0c:94:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:56 2023 by rpki-client on console-ams.rpki-client.org