Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/ghOScL0goQrcfmBpLZ8fw9_v_Ec.roa
File: ghOScL0goQrcfmBpLZ8fw9_v_Ec.roa (raw, json)
Hash identifier: qwjc/+ky3BWsQinwufVLtT6j7jJD1hCAflxb4i+p9a4=
Subject key identifier: 82:13:92:70:BD:20:A1:0A:DC:7E:60:69:2D:9F:1F:C3:DF:EF:FC:47
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B47F3BC
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/ghOScL0goQrcfmBpLZ8fw9_v_Ec.roa
Signing time: Sat 01 Jan 2022 13:04:58 +0000
ROA not before: Sat 01 Jan 2022 13:04:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41151
IP address blocks: 89.43.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189264828 (0xb47f3bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 13:04:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82139270bd20a10adc7e60692d9f1fc3dfeffc47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fa:fe:c9:68:0d:a6:dc:49:3c:85:3d:af:80:
ff:b4:93:28:ac:38:37:9d:ee:0f:46:06:80:0b:41:
e0:cb:03:e4:72:3a:e6:1f:fc:24:c8:9d:0e:bd:a3:
bd:7b:42:01:d3:b3:06:47:1b:55:44:82:97:53:5b:
7a:80:61:f5:b1:d4:fd:2b:25:db:9b:15:2e:02:4e:
46:53:e6:db:8d:11:57:e1:c2:0a:a8:2b:e5:4d:98:
f9:0a:a1:78:a0:5e:67:43:7c:c3:ce:ed:81:1c:eb:
b1:07:ff:da:f2:c3:7f:11:85:50:98:cb:3b:87:bf:
73:0a:fb:5e:a9:da:67:f5:74:97:0e:15:2e:67:8c:
9a:5f:28:29:97:32:44:4f:8c:7c:6a:0e:a3:77:97:
b2:39:d4:03:62:b3:a1:37:60:7f:68:6c:ec:e1:a7:
01:0a:5e:c2:2f:60:1c:42:62:52:ad:14:d9:7d:65:
34:ad:a2:cf:57:82:a4:f9:a0:b0:8f:0d:97:8f:b7:
63:f5:94:ed:f7:3b:09:7d:75:4e:65:21:05:fb:9f:
de:70:95:b2:1d:0e:7e:ad:74:54:66:9a:9d:49:58:
c9:a8:3f:08:02:0d:90:36:94:55:1c:14:65:e9:0e:
1d:8b:35:2d:7e:17:5d:ff:8c:1c:7e:85:1c:7a:fb:
aa:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:13:92:70:BD:20:A1:0A:DC:7E:60:69:2D:9F:1F:C3:DF:EF:FC:47
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/ghOScL0goQrcfmBpLZ8fw9_v_Ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.16.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:48:15:2b:cc:0e:09:54:8f:03:07:9e:5c:21:a4:df:1c:1b:
e3:4e:c9:bd:2f:e1:52:9f:2e:4d:c3:1f:5f:cb:85:dd:d0:32:
fe:62:ea:ec:3c:06:f2:b4:7a:f8:66:cf:2c:fb:66:3d:e9:fa:
ca:2f:6a:aa:a8:8a:58:52:75:d4:13:84:e7:5c:a9:08:04:e9:
69:c1:1f:1f:5c:27:99:ac:30:63:a8:31:1a:2c:27:ca:0d:f7:
9e:6f:f1:71:16:eb:db:8a:37:43:49:0b:20:1c:cc:92:48:78:
b7:30:fd:9c:9b:31:6c:1e:cf:4f:ae:42:8b:5f:a6:12:c7:e4:
c3:f0:44:c2:2f:56:5f:97:41:79:0b:fd:0c:ee:c5:ca:a4:7a:
3b:46:6f:ff:f3:b1:c7:e6:f0:84:be:74:ee:8c:fa:0d:7e:dc:
6e:5c:4e:aa:48:ae:88:e5:0d:8a:50:53:d4:6b:2a:e3:f4:e6:
7a:6c:ee:e9:b6:d7:58:1a:60:e4:db:8c:b7:83:0d:f4:ff:0e:
8d:2c:18:ba:9a:04:3c:4e:e2:38:cb:c5:e4:42:ba:1d:f7:97:
a8:e0:5e:ec:88:dd:e8:35:12:85:ee:e6:c1:3a:b6:e9:92:1f:
ea:31:6c:01:60:62:27:93:b1:66:5b:f7:2b:55:9b:6c:3d:53:
5f:90:e3:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org