Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/jmVns03ZIa7y0U2cUNmxvG36NDk.roa
File: jmVns03ZIa7y0U2cUNmxvG36NDk.roa (raw, json)
Hash identifier: KZw1mOWKQV65w8feCJwONdqjJCVtc5vpRO4UcwYo/Ps=
Subject key identifier: 8E:65:67:B3:4D:D9:21:AE:F2:D1:4D:9C:50:D9:B1:BC:6D:FA:34:39
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 04594912
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/jmVns03ZIa7y0U2cUNmxvG36NDk.roa
Signing time: Wed 02 Mar 2022 08:22:33 +0000
ROA not before: Wed 02 Mar 2022 08:22:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6908
IP address blocks: 185.8.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72960274 (0x4594912)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Mar 2 08:22:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e6567b34dd921aef2d14d9c50d9b1bc6dfa3439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:81:5e:7b:6a:9f:fe:e0:a1:c7:e9:3b:46:e9:
53:a4:83:56:1c:2d:bf:d7:8c:da:46:e5:23:cf:30:
d8:c5:a2:8b:d0:f8:e8:64:be:2b:78:c2:4a:31:30:
4d:2e:c0:a0:23:1f:a1:f2:5e:3d:de:fa:45:0c:af:
50:3c:9a:be:2a:dc:d6:53:75:ee:e5:33:69:36:78:
33:11:12:2e:e3:9d:c1:d4:2f:e4:41:8b:8f:00:5e:
44:9e:4c:fb:d2:b5:ec:5f:af:16:85:f6:de:b8:fa:
8d:6b:ba:28:5b:07:04:bc:c9:dd:06:2f:43:b1:27:
80:13:56:ad:78:00:2b:78:7d:ca:f6:6d:3f:fa:9f:
ca:78:17:7c:03:06:e8:2f:0f:0a:72:dd:3d:d2:36:
8f:4a:76:6c:ef:64:f0:af:1b:81:a8:00:41:18:14:
b2:e6:0f:ba:f7:aa:b1:b0:bf:92:c5:06:3a:a2:1f:
3f:4e:a2:87:4b:4f:07:a5:8a:c4:a8:9a:6f:08:8f:
78:75:66:11:02:8e:73:30:19:9c:92:5a:1a:bf:24:
69:80:06:ac:45:56:4b:12:37:61:2d:65:cb:ac:32:
7d:6f:94:f5:d8:cb:e2:1b:17:77:61:ae:b3:65:33:
d3:68:32:8f:61:76:a0:f6:18:a2:14:01:2e:1c:b2:
a0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:65:67:B3:4D:D9:21:AE:F2:D1:4D:9C:50:D9:B1:BC:6D:FA:34:39
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/jmVns03ZIa7y0U2cUNmxvG36NDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.89.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:6f:fd:82:74:84:27:81:d2:67:a5:ff:aa:fe:b3:04:c7:98:
a8:d6:0c:3f:a0:3d:d2:59:b5:eb:77:e3:ae:7f:75:90:e0:b5:
97:60:e3:0a:e7:39:1e:a2:94:2b:59:5e:7e:01:9e:a4:f6:af:
61:78:7f:3c:cf:60:44:40:43:96:26:24:11:09:3a:e3:c4:c5:
05:c9:eb:56:78:12:7a:7e:42:02:a5:1f:99:99:d8:c9:c9:2d:
3d:9c:00:c4:49:87:86:d8:cf:1b:a1:aa:4a:2c:a2:c6:94:21:
17:07:c9:e5:d5:48:27:43:90:c8:a0:92:80:4e:b8:77:fd:e3:
06:42:f5:63:db:88:8a:e7:82:da:17:69:97:50:9c:ea:42:cb:
4e:5a:bc:43:33:ff:fc:01:28:d9:be:32:7c:a8:88:5a:76:e1:
96:71:f1:b9:62:bf:9d:28:77:49:46:95:30:80:01:10:67:f9:
78:a8:5f:86:ff:8b:88:9a:eb:6a:45:d1:12:5d:16:8f:8e:7e:
1d:f7:ef:1f:02:12:8c:50:13:1a:26:fb:8d:52:a2:18:8c:39:
56:7c:9a:c2:ca:5f:9b:aa:bd:28:f6:be:ba:60:c5:30:73:ff:
f9:03:bc:e7:02:28:53:62:1d:8d:d9:d3:76:88:f2:98:0b:b3:
83:5b:ce:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:22 2024 by rpki-client on console-fra.rpki-client.org