Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/uKYr-I7vtnThEiU40madvIhvrnk.roa
File: uKYr-I7vtnThEiU40madvIhvrnk.roa (raw, json)
Hash identifier: MYKeE0qtbxLixaF8vW8/trS+1dl4pkWSexTdhyqx/QM=
Subject key identifier: B8:A6:2B:F8:8E:EF:B6:74:E1:12:25:38:D2:66:9D:BC:88:6F:AE:79
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0CE3EC82
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/uKYr-I7vtnThEiU40madvIhvrnk.roa
Signing time: Fri 20 May 2022 07:33:29 +0000
ROA not before: Fri 20 May 2022 07:33:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 89.43.46.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216263810 (0xce3ec82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: May 20 07:33:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8a62bf88eefb674e1122538d2669dbc886fae79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:78:b6:ef:13:48:21:e8:26:f1:2a:66:96:13:
1c:3f:19:f2:d8:d6:7f:b8:89:7c:a5:be:61:fe:cf:
2e:c6:8c:79:8d:f3:76:d2:16:8d:9a:ed:c8:ac:70:
73:d6:2b:e8:92:c6:ba:34:c6:b4:15:a9:92:ec:d9:
12:47:87:ae:24:5c:ed:3f:32:db:28:23:7c:de:3b:
d1:7c:44:29:95:47:be:61:32:fe:0c:67:a9:3c:e0:
2e:ce:b6:27:8d:28:ab:9d:8f:31:ef:42:6a:ca:f7:
45:67:f3:5a:6c:52:0e:88:d4:8f:b8:30:9d:4c:14:
db:98:93:47:29:a4:bb:b8:13:22:6f:0c:e9:e3:1d:
88:d0:45:47:2d:7f:41:c7:bb:ea:a0:75:c4:94:90:
65:53:ad:5c:cf:67:4e:e1:04:99:e9:c0:d7:04:61:
c0:4f:ae:85:38:1f:3d:ab:ef:50:aa:94:0a:bf:b5:
8d:09:3f:d2:07:1e:3f:eb:f3:74:c0:7c:20:53:5f:
da:58:89:93:3e:2d:85:59:e5:de:20:ec:ed:b5:87:
fc:54:65:92:77:2d:83:b8:0b:da:34:6d:3e:8e:9a:
5b:c7:36:06:e6:6e:ef:2b:90:ac:d0:1f:84:e9:bd:
ee:45:c8:75:27:a9:97:8e:1f:d0:00:8d:38:9f:7a:
ed:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A6:2B:F8:8E:EF:B6:74:E1:12:25:38:D2:66:9D:BC:88:6F:AE:79
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/uKYr-I7vtnThEiU40madvIhvrnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.104.0/24
89.43.46.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:e8:b4:66:f6:6a:20:86:aa:02:3b:ca:23:aa:b3:15:60:ec:
5e:b2:eb:9b:9b:be:39:45:cf:aa:4e:1c:40:8a:da:fc:ec:c6:
51:be:c5:3d:e2:39:4b:c7:d1:de:b0:52:25:5d:c8:57:b3:10:
d0:59:ed:e6:5f:bc:cd:01:8f:49:d0:f1:ce:9d:26:d5:fa:60:
a8:38:e7:5c:77:10:37:0c:60:02:ec:7f:1d:f1:22:f8:51:b4:
49:10:0e:3f:0e:a4:1c:ca:76:e9:d9:48:f9:8b:8d:8e:be:95:
4d:b4:48:c9:3c:77:4e:87:5d:42:b3:98:92:0e:be:46:fc:63:
4f:d0:80:4e:1b:48:17:9a:a4:4a:ae:c6:87:92:af:b3:e6:5c:
e2:41:22:78:d9:be:86:23:dc:54:58:a7:55:d3:05:ba:79:35:
5a:66:9f:95:31:cc:18:cf:95:d4:69:f9:f6:36:8e:6c:51:41:
a0:dc:0a:99:ea:b2:fc:96:ed:35:63:84:36:f2:a6:82:1b:9f:
ea:76:f9:4a:df:95:45:e3:8e:06:9a:41:cc:ee:a5:f2:25:e9:
12:4b:ab:7f:da:a5:cf:98:0c:ab:b7:c4:90:86:38:d0:a1:d0:
b1:13:da:23:47:e3:dd:65:f4:5e:fd:34:96:23:9b:0b:a1:91:
6d:3b:99:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org