Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/7UlSXv-Aqg0T4VJKjsGVKCWXqUk.roa
File: 7UlSXv-Aqg0T4VJKjsGVKCWXqUk.roa (raw, json)
Hash identifier: ImHbY42LyNXE7sjKg2kgida1UjentJ8deHRZN1w1d4I=
Subject key identifier: ED:49:52:5E:FF:80:AA:0D:13:E1:52:4A:8E:C1:95:28:25:97:A9:49
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 0547BD57
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/7UlSXv-Aqg0T4VJKjsGVKCWXqUk.roa
Signing time: Mon 20 Jun 2022 14:47:44 +0000
ROA not before: Mon 20 Jun 2022 14:47:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6908
IP address blocks: 185.8.89.0/24 maxlen: 24
185.8.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88587607 (0x547bd57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Jun 20 14:47:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed49525eff80aa0d13e1524a8ec195282597a949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8f:64:10:fc:0c:a0:d7:91:32:26:54:11:28:
6f:df:b3:9d:8c:3b:9d:1e:00:dd:c4:a4:f9:42:d0:
91:6d:cb:1c:49:8b:7f:5a:fb:c2:b4:5b:db:84:79:
5f:dd:e0:37:46:e7:c4:33:52:83:f2:35:8e:27:55:
54:62:20:ac:41:f8:17:36:dc:78:65:52:29:5d:59:
31:f3:b3:cf:2e:0f:1d:5e:a6:54:72:18:5e:e6:3c:
d6:45:6d:6f:f1:4e:0b:3f:41:73:a9:04:8e:59:05:
d2:96:70:6f:26:30:17:11:6b:b9:44:f5:18:e3:95:
1a:0d:02:f0:7c:6f:e8:b9:8c:4a:e5:ac:53:be:8e:
47:17:11:0d:93:45:db:b5:7e:ae:7f:fc:6a:48:70:
74:65:77:5d:00:f2:60:7b:57:8b:41:35:dc:d3:c5:
01:96:5d:32:06:cb:90:41:9d:3e:49:ba:6c:ab:41:
39:b5:97:b8:4b:22:23:f4:00:98:de:25:ec:1e:d8:
dc:a4:ea:69:8f:3b:53:50:24:f8:e5:76:74:23:a7:
3b:1f:57:b6:eb:94:aa:89:42:06:59:ca:af:a5:db:
9d:76:8b:ba:2a:3b:ef:b2:b4:ce:67:10:58:d1:f7:
57:ce:45:82:38:5a:25:bc:95:08:8b:9e:08:18:4b:
44:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:49:52:5E:FF:80:AA:0D:13:E1:52:4A:8E:C1:95:28:25:97:A9:49
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/7UlSXv-Aqg0T4VJKjsGVKCWXqUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.89.0/24
185.8.91.0/24
Signature Algorithm: sha256WithRSAEncryption
45:9f:95:69:b5:2f:ed:7f:8a:2f:c6:f0:89:13:20:26:90:a0:
e1:86:cb:32:1b:dd:d1:97:15:c7:04:ad:8b:7a:8a:5e:35:3a:
24:59:65:bd:89:65:b3:20:f8:1a:77:c4:51:f3:99:b0:1d:25:
27:8d:57:87:79:3c:f5:90:be:95:a9:57:33:6c:73:a6:4b:22:
00:e8:db:97:ed:b5:e9:d1:fe:c6:31:25:ec:b0:6b:62:38:4a:
04:ee:b1:f1:d5:3d:af:d4:f7:9c:24:a5:4d:e8:e4:95:2d:83:
45:66:87:1d:1f:9a:39:6d:00:69:c1:00:e5:01:3a:d2:ef:91:
c9:3c:0e:e0:af:f4:43:63:2c:32:7d:94:6b:13:6a:27:df:28:
a0:13:15:12:04:2b:e4:bc:75:88:25:be:ef:e9:66:03:9a:80:
16:0d:fb:ce:4b:d8:88:7a:77:26:f8:d8:db:8e:08:4b:18:9b:
01:d0:f0:09:e8:ea:09:44:3e:25:1e:c4:7a:f0:7a:a5:48:b8:
56:e0:79:3f:fa:b3:59:8e:e4:73:e3:c3:03:79:33:70:1d:1c:
03:cd:de:86:a0:e8:a7:c7:2b:95:bb:b6:6f:64:ff:ab:27:b4:
e3:d1:a0:03:f7:87:7b:a9:a3:d6:97:71:96:7c:3b:26:88:f7:
8e:15:9c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:21 2024 by rpki-client on console-ams.rpki-client.org