Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/myQJtbd7XqcyzHN9jINOBB_Bhc4.roa
File: myQJtbd7XqcyzHN9jINOBB_Bhc4.roa (raw, json)
Hash identifier: 6QPcDDzyGVbA1Kg238nkcS896L+uoD1Vf2voU7G3BaM=
Subject key identifier: 9B:24:09:B5:B7:7B:5E:A7:32:CC:73:7D:8C:83:4E:04:1F:C1:85:CE
Certificate issuer: /CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Certificate serial: 038AB731
Authority key identifier: A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/myQJtbd7XqcyzHN9jINOBB_Bhc4.roa
Signing time: Thu 10 Feb 2022 14:02:10 +0000
ROA not before: Thu 10 Feb 2022 14:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209372
IP address blocks: 89.22.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59422513 (0x38ab731)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Validity
Not Before: Feb 10 14:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b2409b5b77b5ea732cc737d8c834e041fc185ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:28:52:6d:a1:dc:3f:ce:07:8f:2d:04:2c:52:
c4:04:c3:c4:33:31:f7:5a:a2:a0:ad:33:ca:f0:65:
08:f3:73:c3:86:a7:07:ba:38:77:d5:ef:b1:3b:8f:
6f:88:cf:89:ec:b5:fb:c5:a0:42:10:a1:62:8b:3d:
15:de:12:a0:e8:ca:c8:71:ad:70:2a:3a:f4:00:17:
39:01:c8:d6:51:a3:35:1c:a5:51:1a:eb:70:54:5d:
63:6a:b1:c7:99:e5:59:02:03:b2:8b:42:a6:b8:cf:
e8:c9:af:2e:58:6b:0b:29:cd:0e:a6:2e:50:0c:52:
fa:1b:a6:91:23:fc:f2:71:37:ee:b1:04:0d:07:9f:
a1:16:bd:c2:ce:ad:45:ca:c2:7e:02:c7:1a:c5:fd:
f5:08:ee:43:ee:16:4f:92:5e:4d:49:67:f5:e9:84:
e9:02:86:96:2c:03:14:3d:41:8c:3e:30:14:3d:1d:
1b:6a:bb:dd:00:70:9c:1a:e1:1e:65:71:e1:1a:ac:
ea:3b:28:ff:23:8c:e9:03:cf:0e:6d:4c:b3:96:69:
9a:52:07:ce:df:49:9b:4c:9a:f8:b6:96:c4:18:e3:
ab:65:92:ef:9c:be:43:c5:7f:aa:06:56:b3:e0:64:
32:dd:d8:80:b2:2c:19:42:d1:2f:a7:1d:6f:ee:b8:
74:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:24:09:B5:B7:7B:5E:A7:32:CC:73:7D:8C:83:4E:04:1F:C1:85:CE
X509v3 Authority Key Identifier:
keyid:A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/myQJtbd7XqcyzHN9jINOBB_Bhc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.22.224.0/20
Signature Algorithm: sha256WithRSAEncryption
87:3d:1c:c1:68:91:76:65:d2:08:67:92:41:06:04:26:e2:6f:
4d:18:9e:ef:0e:53:48:c1:6e:60:9d:e0:e9:2e:be:c8:2b:36:
3c:8d:23:23:83:c6:a6:e2:56:87:20:d3:88:ca:00:f1:97:7f:
67:a2:c9:07:d0:3a:28:e4:85:40:48:0b:0b:f6:f6:cf:5f:10:
f1:a1:8a:a5:82:69:00:f1:43:27:01:71:93:0e:20:00:28:d9:
c0:85:4a:36:a7:a7:0f:82:57:07:37:40:7b:ba:6e:fb:9e:b4:
e6:80:d9:e6:23:80:27:f2:8c:48:84:01:c9:eb:a3:8b:89:56:
97:0d:11:87:74:45:a8:8c:ba:6a:be:04:d9:ce:4c:62:f9:6a:
e7:2a:56:70:28:fc:53:d5:a8:69:24:4c:b1:03:40:a8:c2:92:
f2:bc:c4:20:c1:a2:1f:86:b1:5b:93:bb:67:82:f2:69:df:b0:
c4:26:5d:c7:ec:c0:cc:a3:19:32:44:b2:5e:50:d4:88:79:83:
ec:99:cb:52:ca:56:b3:a1:a8:6e:ec:98:db:1a:e4:99:ff:ae:
0d:07:0c:c3:91:a7:7f:c9:c5:62:1c:1a:1e:fc:d1:c2:d2:89:
ec:f4:8e:27:6e:1e:d9:56:81:db:ee:f7:4e:3c:87:fc:96:1e:
ea:09:f7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:16 2023 by rpki-client on console-fra.rpki-client.org