Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/dpoLJQmHxfJ8X4x29maVAGVzROg.roa
File: dpoLJQmHxfJ8X4x29maVAGVzROg.roa (raw, json)
Hash identifier: zk1LyIfS15BYmpKsQoGhy4dtwqpcuv2Tmpy68SyXdmY=
Subject key identifier: 76:9A:0B:25:09:87:C5:F2:7C:5F:8C:76:F6:66:95:00:65:73:44:E8
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0C9B23FE
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/dpoLJQmHxfJ8X4x29maVAGVzROg.roa
Signing time: Wed 27 Apr 2022 15:19:46 +0000
ROA not before: Wed 27 Apr 2022 15:19:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42614
IP address blocks: 89.43.200.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211493886 (0xc9b23fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Apr 27 15:19:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=769a0b250987c5f27c5f8c76f6669500657344e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a3:c8:e8:fc:50:2e:e1:67:83:58:71:e2:68:
37:87:42:5c:17:99:b8:fb:b6:c7:96:64:36:9d:91:
8f:f3:07:61:62:e9:8b:22:75:ad:72:d1:f7:2f:69:
fd:e4:b3:43:17:27:69:4e:01:e0:ce:f9:7b:80:e8:
2d:0d:6d:9d:f9:df:25:18:04:ee:d7:db:fb:30:ae:
99:89:67:07:52:22:0d:28:10:dd:d5:20:18:4a:4d:
6d:12:d1:d3:12:24:96:89:84:ee:94:65:55:81:d5:
09:c4:8f:89:e8:5e:53:c0:72:02:71:7a:69:f3:59:
5e:3b:f8:ce:7e:53:db:b6:d5:5a:00:34:7e:48:35:
d2:71:94:69:e9:41:03:94:a1:70:58:df:ba:3a:62:
e0:6c:6a:f8:b4:41:e3:b2:98:dc:dc:23:65:ec:db:
01:59:cb:91:c4:94:fa:80:f5:9e:01:6f:d1:4a:73:
ab:ba:dd:47:bd:32:9c:30:12:2a:de:87:74:96:3f:
71:75:08:47:e2:66:0d:df:47:5e:82:a4:75:7c:0f:
67:fe:71:e2:2f:48:84:9d:47:9e:2b:38:22:93:0b:
28:b1:74:f1:7b:e6:55:d7:bf:67:81:52:95:78:e7:
cc:d2:b4:7a:e8:59:d5:33:ea:29:3f:62:1a:34:05:
a2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:9A:0B:25:09:87:C5:F2:7C:5F:8C:76:F6:66:95:00:65:73:44:E8
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/dpoLJQmHxfJ8X4x29maVAGVzROg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.200.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:69:1b:99:9e:99:a3:c9:aa:af:a1:5c:0f:bf:08:15:a3:92:
29:9d:6c:14:13:8c:2a:0d:35:d8:5d:9c:1d:bc:28:c7:b2:2e:
4a:9f:80:49:2e:e1:6f:e1:23:37:c9:bc:31:42:12:fb:e7:08:
ed:fb:b3:eb:e4:ce:26:ca:8b:6d:57:7b:a2:a2:98:7b:39:eb:
39:76:e6:7f:25:ae:b9:01:a1:5b:b0:c2:89:f2:49:16:18:77:
eb:96:05:ad:62:59:8e:14:51:c6:5c:50:07:a3:ce:0c:40:fd:
97:23:d7:d5:3e:5d:0c:81:db:18:ae:ce:34:38:9f:77:2c:d7:
d6:b4:92:e9:94:02:76:fa:74:bc:41:f0:5e:5b:cd:07:42:fe:
0c:c5:51:bd:3e:d7:6f:0c:2a:d6:02:5e:09:1a:1f:f7:3d:98:
d7:04:cc:a6:ce:8b:9c:66:c1:a9:79:a9:78:e9:0b:80:c3:30:
a2:59:70:29:3d:d9:7c:44:7e:89:31:e9:ed:5f:e8:cc:54:db:
1b:b6:a2:20:ee:0b:96:08:64:de:35:24:eb:df:02:06:a1:14:
81:58:b4:0e:08:d3:d9:7b:14:ec:a4:30:ae:60:85:cd:10:3c:
0f:09:74:5e:df:c0:aa:22:0d:db:3a:9a:71:2c:fb:dd:58:e7:
2e:1d:5b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org