Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/SbkDbDqRLMuGig3m3h-WKFNAaOw.roa
File: SbkDbDqRLMuGig3m3h-WKFNAaOw.roa (raw, json)
Hash identifier: bf9WqGnc/86Jfq/vrR2mFI43675af44gpa0I06Pb8Xc=
Subject key identifier: 49:B9:03:6C:3A:91:2C:CB:86:8A:0D:E6:DE:1F:96:28:53:40:68:EC
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 0185655BEF5B3418A83304D5AF52BCB42148
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/SbkDbDqRLMuGig3m3h-WKFNAaOw.roa
Signing time: Fri 30 Dec 2022 23:26:41 +0000
ROA not before: Fri 30 Dec 2022 23:26:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209375
IP address blocks: 89.33.135.0/24 maxlen: 24
193.169.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:65:5b:ef:5b:34:18:a8:33:04:d5:af:52:bc:b4:21:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Dec 30 23:26:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49b9036c3a912ccb868a0de6de1f9628534068ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9a:54:62:bc:7d:af:ac:0a:ee:13:90:c7:3c:
c3:70:a4:3d:17:dd:93:84:5c:a4:61:44:49:04:3d:
50:ea:4d:a5:fc:9c:41:d7:30:43:33:e1:26:ff:2b:
79:4c:b2:7c:e1:66:2c:61:38:f1:06:ba:cb:59:e3:
87:b5:4d:5b:03:36:53:4c:5e:68:ce:8a:56:b6:64:
ee:76:77:28:6e:e5:21:d7:8a:19:32:d6:19:bd:6d:
f3:43:1f:c4:ca:21:3e:05:2d:34:d1:fa:14:1d:3e:
54:4f:5d:6a:39:8b:a9:cd:6e:ea:01:7a:45:52:57:
ca:21:02:cb:51:96:33:12:76:e7:9c:b0:80:c2:3a:
55:12:d0:17:c2:9f:b0:e8:2f:98:7e:6d:63:af:d0:
93:b0:70:ad:d8:dc:b3:ae:bd:cd:e2:21:f2:22:0c:
e9:75:94:35:73:4e:99:ae:3e:7f:38:c6:57:69:ae:
a0:1e:75:14:54:2e:7b:7a:aa:56:57:56:5a:69:56:
e5:49:f6:53:53:3c:8d:9a:90:15:9b:6f:1f:5d:3c:
47:0b:10:d5:fb:cf:e3:7b:7f:a9:7d:d6:0c:5a:f7:
a0:99:a9:df:af:2b:d4:27:62:eb:e7:cc:fb:85:f5:
e5:f6:47:eb:00:42:81:bc:49:7c:82:2d:cb:b8:b0:
1c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B9:03:6C:3A:91:2C:CB:86:8A:0D:E6:DE:1F:96:28:53:40:68:EC
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/SbkDbDqRLMuGig3m3h-WKFNAaOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.135.0/24
193.169.175.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:b5:de:ba:85:3f:7e:9e:9b:5a:e4:28:02:88:8b:e7:41:f8:
2c:18:bd:77:28:22:97:3a:c4:ad:47:e2:f7:47:9a:ae:70:d7:
06:77:2d:5a:99:5f:e3:87:c2:10:6b:d2:7a:af:37:6a:c3:c7:
7f:2a:c5:21:37:24:a7:bf:94:6d:57:33:9d:d0:4f:15:fb:4a:
33:6a:3f:46:37:e4:14:a0:91:17:fc:60:97:ff:43:18:8d:3a:
e2:80:bf:74:a7:3a:85:5c:20:7d:05:aa:4c:94:41:50:4f:c2:
22:35:8d:f3:9c:c0:af:65:a6:2e:4a:cc:98:f3:d4:97:9b:1e:
4e:5e:fc:cc:4f:f8:43:f3:27:6f:a7:7b:74:f2:b9:79:40:d5:
28:18:82:22:8a:f2:9e:0c:1d:8c:32:8f:b5:db:94:1b:00:08:
c2:23:0b:60:18:48:0d:e6:88:93:29:b2:a0:d8:a5:d3:9a:22:
1f:95:f6:f8:3a:1f:0f:81:97:70:46:2a:e8:03:1f:25:9c:74:
ac:f9:88:5a:df:88:03:5d:f7:1b:44:9e:60:ba:90:4c:b5:b4:
b6:9b:8d:e4:77:c8:99:8e:d1:e5:fe:22:af:91:d8:28:54:39:
ad:47:06:28:0c:d5:f1:81:68:90:b6:9f:bb:fc:38:a0:68:9c:
8e:bb:fd:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org