Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/pPl0ZBvCSOvo9o_0_mh8iznzh3A.roa
File: pPl0ZBvCSOvo9o_0_mh8iznzh3A.roa (raw, json)
Hash identifier: CAZHUt7DBfg5LON99Gb6M0pYBB2TD9MbFBspN5O6DYg=
Subject key identifier: A4:F9:74:64:1B:C2:48:EB:E8:F6:8F:F4:FE:68:7C:8B:39:F3:87:70
Certificate issuer: /CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Certificate serial: 03CF492C
Authority key identifier: A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/pPl0ZBvCSOvo9o_0_mh8iznzh3A.roa
Signing time: Thu 10 Mar 2022 16:48:37 +0000
ROA not before: Thu 10 Mar 2022 16:48:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 89.22.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63916332 (0x3cf492c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Validity
Not Before: Mar 10 16:48:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4f974641bc248ebe8f68ff4fe687c8b39f38770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:95:4c:2d:b8:f5:a4:7c:dd:cd:b3:4c:88:ae:
16:88:b9:c9:eb:87:d1:1e:65:b0:cc:20:8b:3e:ec:
f5:e7:47:47:4b:91:48:cb:a8:24:0c:40:1d:ae:26:
40:c6:e0:76:ce:44:48:9b:fe:ab:ad:39:c7:d3:19:
2d:8b:2a:6d:e1:ab:a1:00:6a:98:15:55:65:67:16:
89:b5:56:81:bc:0f:70:75:6b:80:d2:1d:8b:4c:6a:
be:5c:a9:2d:df:f8:da:f3:3a:a8:1e:0e:b5:f4:84:
41:38:b2:5a:17:f2:b0:48:07:90:45:c1:ca:76:c7:
0e:fe:74:b2:1f:51:52:5f:dc:c9:d9:b7:0a:8e:f9:
94:4d:03:78:17:6b:31:16:7b:07:50:d9:67:51:93:
3f:bd:7b:46:a0:4d:7c:6d:d8:1d:f9:1c:6d:4e:db:
48:80:f3:a8:46:8f:98:a5:af:b6:1b:fb:50:96:2f:
87:be:e9:83:9d:21:ab:e4:49:db:9a:4b:82:61:dd:
8d:7e:20:68:5d:d1:ba:57:05:cd:c2:27:e2:8a:d0:
e0:72:4f:d3:04:48:81:d2:10:11:c1:dd:ee:3d:6b:
87:31:1a:65:d1:a9:4e:74:3c:ae:3e:ed:6d:5d:4e:
0f:ac:10:5f:f1:c7:c3:fe:53:e0:8d:d8:6a:52:d0:
3f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F9:74:64:1B:C2:48:EB:E8:F6:8F:F4:FE:68:7C:8B:39:F3:87:70
X509v3 Authority Key Identifier:
keyid:A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/pPl0ZBvCSOvo9o_0_mh8iznzh3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.22.224.0/20
Signature Algorithm: sha256WithRSAEncryption
18:0b:bc:34:c3:03:52:ea:ed:11:a9:b4:97:d2:de:51:69:3c:
91:eb:aa:61:29:7b:c9:ef:1e:92:82:33:12:dc:bc:e2:c8:e2:
49:ac:fa:e1:7f:5a:5f:11:10:2f:a7:70:7f:b8:f3:16:ee:c6:
04:a0:63:cb:83:3b:60:bd:84:48:0e:fa:74:e6:10:b4:fd:77:
3f:68:59:7a:49:86:3c:68:f9:a0:79:22:32:dc:0d:ff:a7:45:
bd:e0:16:d7:99:0e:6b:80:25:f8:16:cd:ac:a6:7a:ea:eb:16:
b8:36:b6:86:e9:93:a2:c7:4e:0a:85:ee:1e:67:87:1e:07:79:
4b:35:76:84:a7:83:50:b1:6b:8b:87:46:41:a0:3a:e3:53:42:
09:e9:53:b8:bc:a5:0f:9c:24:e2:b0:3d:70:2e:6f:95:86:2f:
1f:78:3a:ab:ee:90:80:11:4c:da:58:6a:43:93:af:fb:b2:33:
b2:03:32:52:75:2f:e3:a3:48:9e:6a:59:6b:28:12:2c:90:4c:
17:d0:a1:8d:3e:87:5f:43:ae:a3:50:04:e6:09:1f:8e:af:f8:
b9:93:b2:ac:cb:d7:7e:cb:eb:c2:1f:9d:44:f7:d0:4e:fc:25:
8d:e8:ba:b7:14:33:11:76:54:ac:15:55:a6:67:51:68:5d:c3:
31:1e:14:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:02 2024 by rpki-client on console-ams.rpki-client.org