Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/6nKgqgBSeQ0BuX9Lh5CKCDiT358.roa
File: 6nKgqgBSeQ0BuX9Lh5CKCDiT358.roa (raw, json)
Hash identifier: 9F4DYeZ2et0S92DFz45UsNL/AexAK+oa5KYiqpaiBC4=
Subject key identifier: EA:72:A0:AA:00:52:79:0D:01:B9:7F:4B:87:90:8A:08:38:93:DF:9F
Certificate issuer: /CN=87be093097097c4457ff5aa3e5893c8c15432612
Certificate serial: 03534003
Authority key identifier: 87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/6nKgqgBSeQ0BuX9Lh5CKCDiT358.roa
Signing time: Sat 01 Jan 2022 02:02:05 +0000
ROA not before: Sat 01 Jan 2022 02:02:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210856
IP address blocks: 89.35.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55787523 (0x3534003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87be093097097c4457ff5aa3e5893c8c15432612
Validity
Not Before: Jan 1 02:02:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea72a0aa0052790d01b97f4b87908a083893df9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:20:cd:cf:cf:7c:61:97:84:55:8b:7b:b5:ac:
e6:14:8b:fc:1c:f8:c1:93:2f:00:42:4a:1e:54:31:
32:42:b5:39:8f:b4:63:ce:57:a0:c8:63:0a:6b:95:
cb:c9:72:e8:a8:f3:2f:2b:2c:3c:74:5e:52:ee:37:
35:1c:d4:05:4f:ae:9f:60:9f:12:9a:8b:2a:62:f3:
a8:aa:ca:7b:04:76:cb:0a:87:16:96:c3:33:67:99:
99:f5:05:ee:2a:59:5f:fb:4e:00:97:48:a9:8a:80:
b1:dc:74:f1:b3:d1:39:7d:2c:f7:2d:b5:01:7d:1f:
6e:80:cd:53:95:01:7a:76:16:a0:58:08:46:e7:ad:
f3:23:8a:5d:04:ba:44:bf:c6:0f:1a:b2:dc:85:59:
1d:03:e6:fd:70:7b:65:c2:71:8c:b4:ed:56:4f:d4:
ad:47:8d:1d:70:36:3b:99:e7:24:fb:f3:db:2e:d3:
82:08:99:1f:34:75:e7:b9:a2:22:9a:c6:8f:50:57:
50:bc:03:b9:19:09:4b:b5:75:f1:54:d8:1c:98:59:
96:fa:3f:95:0f:23:ed:e0:26:68:ab:19:3c:7f:6e:
b3:25:8b:a4:1d:ed:66:c2:75:54:72:93:45:39:5e:
4a:10:d8:2b:72:28:3c:ca:08:6b:1e:86:ab:51:85:
16:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:72:A0:AA:00:52:79:0D:01:B9:7F:4B:87:90:8A:08:38:93:DF:9F
X509v3 Authority Key Identifier:
keyid:87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/6nKgqgBSeQ0BuX9Lh5CKCDiT358.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.49.0/24
Signature Algorithm: sha256WithRSAEncryption
68:7d:e9:af:e0:57:43:1f:4a:89:6a:ac:0d:87:89:a7:6a:fc:
fc:86:0c:6f:a4:a3:95:79:5e:5a:11:c8:9f:08:16:4f:10:d2:
ba:49:99:ad:b4:f3:53:80:18:5e:e1:e9:52:fe:a5:c6:7b:af:
21:18:26:97:43:af:6e:f8:70:f6:5c:71:7a:84:2d:31:6e:74:
ff:73:c5:3f:b7:ae:95:60:d9:78:9d:5d:a7:18:75:2e:a0:9d:
29:ca:b3:6c:d4:4b:fc:d8:81:bf:ad:c0:91:b2:0d:e6:fa:d5:
ca:1e:78:37:6b:b3:38:44:db:c9:21:09:04:f9:f9:af:86:7c:
ca:d9:49:7e:dd:51:69:a5:8d:9c:9a:bb:01:3b:f3:a0:72:14:
ec:f1:a1:81:80:94:e6:a0:35:bd:e7:83:7e:b8:a4:8e:be:c0:
49:c1:a5:8e:72:98:9d:3d:08:e0:15:25:a7:13:fe:3f:cb:36:
60:1b:96:47:6c:93:c3:63:cb:1c:f1:3c:59:88:86:a6:05:cc:
26:68:ac:00:3b:10:58:2b:20:c5:b0:f3:e5:61:b8:b5:3f:83:
e9:bc:23:21:bc:3a:06:4d:18:fe:21:b4:e4:b3:88:3a:c7:f8:
fb:86:76:29:70:bb:51:a5:6f:51:01:58:04:82:8c:00:5e:63:
24:5b:0c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:20 2024 by rpki-client on console-fra.rpki-client.org