Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/fsnVVvCkPZboufYfHGwCy0b6Yi0.roa
File: fsnVVvCkPZboufYfHGwCy0b6Yi0.roa (raw, json)
Hash identifier: eKeRC+OyaesQD6OKcW1q3JLcWF5YnMStHE9NRG6KsVo=
Subject key identifier: 7E:C9:D5:56:F0:A4:3D:96:E8:B9:F6:1F:1C:6C:02:CB:46:FA:62:2D
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 03C7FC77
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/fsnVVvCkPZboufYfHGwCy0b6Yi0.roa
Signing time: Sat 01 Jan 2022 09:01:15 +0000
ROA not before: Sat 01 Jan 2022 09:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60105
IP address blocks: 185.8.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63437943 (0x3c7fc77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Jan 1 09:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ec9d556f0a43d96e8b9f61f1c6c02cb46fa622d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:70:d7:69:0c:3b:f0:8f:37:fa:95:23:9f:e8:
44:cf:8f:91:b4:0d:e1:b9:dd:60:ea:2a:27:a5:5f:
4d:c7:cb:ce:58:02:5d:83:c5:65:db:94:27:13:a3:
f4:d5:e2:ca:91:d4:ae:6b:35:7c:2d:99:fa:f6:33:
7b:9c:98:74:73:be:fe:7c:a1:e4:1d:af:86:45:ae:
87:b6:fd:3d:f6:39:de:21:df:c8:17:af:d0:e7:61:
73:8f:43:68:99:01:ac:cc:3f:9d:a9:0f:10:0f:2d:
15:fc:58:ce:04:df:f1:1a:50:84:31:ac:54:08:97:
9b:10:78:6c:56:c9:28:0f:2b:c4:bf:0d:9c:35:31:
0e:82:5a:df:19:7e:b1:5e:92:99:e2:fb:b4:34:47:
36:8f:40:eb:b8:d6:73:b3:00:ae:72:b4:b5:9e:4c:
c7:05:f0:73:dd:b2:4c:1d:15:e9:f6:4d:24:44:80:
fe:cf:a5:a3:ac:e6:45:b2:07:77:d8:17:cd:84:45:
14:fb:29:a3:fe:2a:4e:8e:11:b5:a9:c2:0d:92:db:
7c:6f:86:42:b8:27:15:d5:4d:f2:91:3d:80:6f:1c:
4b:38:8f:28:ad:af:2d:73:3c:50:ba:20:fa:72:90:
60:74:ef:e2:73:a6:a9:e6:a1:0c:c1:af:f9:7b:36:
00:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C9:D5:56:F0:A4:3D:96:E8:B9:F6:1F:1C:6C:02:CB:46:FA:62:2D
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/fsnVVvCkPZboufYfHGwCy0b6Yi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.89.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:62:3c:50:bd:81:3e:9c:c8:35:50:22:0d:31:a4:fd:ad:64:
3b:25:ae:be:a1:d6:92:e2:65:e6:27:ea:1f:59:22:d3:44:a3:
89:05:0b:01:a3:68:c4:27:f3:67:51:cd:21:a7:69:0d:1c:5d:
9f:8b:29:58:25:bf:c6:44:20:6d:5b:da:d1:24:98:30:2a:bd:
da:df:fb:ea:bc:a5:8d:b1:9c:51:5a:5b:5b:b8:20:ca:57:97:
bc:09:4e:e5:f3:1e:12:29:d5:d1:63:89:3b:d5:22:ce:70:ab:
2e:b9:d3:02:84:9f:dd:11:df:3a:e1:c9:6e:ef:ed:65:53:d8:
b6:d4:d2:a5:7d:9c:1d:29:a4:02:04:d9:e5:9a:5b:2f:db:5e:
98:aa:2a:c7:b0:83:52:e5:1b:3f:d3:e9:b9:bc:e4:08:67:71:
50:0e:df:33:1a:ff:83:0e:61:0b:d1:f1:a1:df:e8:9a:1b:b4:
33:67:8a:03:96:11:48:09:67:bc:9f:c0:ee:ee:d9:1b:1b:da:
20:23:0d:d6:c8:65:b0:d5:46:e8:b7:6e:87:11:13:d8:6b:06:
04:6f:13:71:ec:a7:c4:7f:ff:a5:6f:fd:77:ee:78:03:bd:f5:
4e:b9:a2:f1:e0:7a:6c:ae:26:db:27:25:99:81:01:96:ff:38:
f9:ad:1a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:22 2024 by rpki-client on console-fra.rpki-client.org