Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/e9eNyq8mdkLOY_WDydRIpqUV680.roa
File: e9eNyq8mdkLOY_WDydRIpqUV680.roa (raw, json)
Hash identifier: mtHFspnvBYyFmU5xXy+LsR++t/wIa7brJtvJzpauVBE=
Subject key identifier: 7B:D7:8D:CA:AF:26:76:42:CE:63:F5:83:C9:D4:48:A6:A5:15:EB:CD
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 018332EB1469CF158BC5FBDDEC73B1B17949
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/e9eNyq8mdkLOY_WDydRIpqUV680.roa
Signing time: Mon 12 Sep 2022 18:16:50 +0000
ROA not before: Mon 12 Sep 2022 18:16:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 89.46.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:32:eb:14:69:cf:15:8b:c5:fb:dd:ec:73:b1:b1:79:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Sep 12 18:16:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bd78dcaaf267642ce63f583c9d448a6a515ebcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:3a:53:b1:1e:a6:a7:e3:c9:ec:1e:6e:21:
ea:fa:2c:c7:08:5b:0b:77:5f:a7:cc:0e:8c:eb:07:
62:b8:36:36:56:71:ea:e0:2b:8a:1e:7a:32:68:cc:
f0:ce:ad:75:31:a4:49:e7:93:9f:9b:8f:e3:0f:c4:
45:2b:c4:5f:03:cf:4f:74:c0:1a:3d:34:52:60:e5:
78:2b:35:26:72:ec:4c:95:a3:8e:6d:86:e1:6c:17:
7b:7b:13:bb:1f:7e:f7:e4:43:26:4c:a0:d8:6f:19:
78:bc:30:7b:a2:c8:58:9a:f9:41:53:05:76:b1:bc:
05:e5:0c:5e:3d:f1:35:ad:1c:75:de:95:29:42:79:
92:69:24:de:55:0a:f1:8f:b0:7b:94:c6:ea:25:c4:
4b:6b:f9:76:4f:8a:5c:41:01:c3:78:f9:55:85:21:
78:59:12:de:13:e9:56:70:b3:cc:73:71:b6:de:10:
67:0c:ed:13:c1:a5:e6:07:45:0e:5a:e7:e9:d5:0d:
d5:23:01:b6:7a:ad:18:e6:66:ff:7c:74:6f:67:db:
cb:17:9a:9a:f8:f0:b3:91:87:13:69:1f:e3:6d:7b:
b6:56:53:88:1f:e4:46:f3:e9:fb:c9:e2:23:bd:c8:
19:09:b8:e9:30:f1:4a:f9:96:96:32:09:43:95:44:
9d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D7:8D:CA:AF:26:76:42:CE:63:F5:83:C9:D4:48:A6:A5:15:EB:CD
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/e9eNyq8mdkLOY_WDydRIpqUV680.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.11.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:e5:e2:8f:e6:02:6a:c5:55:12:f7:86:92:8d:05:06:22:64:
d7:eb:8a:d4:f3:5a:e5:a0:4a:07:b1:1c:56:95:35:9f:8b:f9:
f4:8d:33:37:be:98:9d:65:0a:f6:fd:29:84:a5:53:84:19:a3:
b4:f3:3c:55:64:fb:b5:5f:6a:af:14:0c:48:af:f3:90:bb:5c:
0e:17:3d:d8:49:1c:cc:0f:2e:30:5f:06:06:e9:4b:8a:2a:d0:
bd:1d:a4:4d:c7:59:ab:0a:38:b6:be:36:43:b2:f4:5e:e1:0e:
e7:98:80:c9:da:e8:be:c3:43:84:11:46:bd:9e:d2:da:50:f9:
fa:e9:14:ef:3f:a9:5d:03:13:23:88:02:fc:47:59:70:10:05:
15:90:cf:f7:d8:0a:d1:3c:d1:cc:dc:9a:a9:d9:2f:fc:f2:96:
13:a4:f7:d3:b2:73:c1:af:70:4c:1a:c5:7d:d9:b0:f1:b7:bc:
e9:57:ea:0c:d9:f8:e7:ad:35:d7:05:48:61:a2:9b:82:99:58:
51:c6:28:5f:5b:74:9b:be:76:51:b2:53:15:dd:63:8a:dc:48:
08:9f:6e:ae:09:2c:b4:a8:2e:a1:10:06:41:45:96:5f:0f:20:
a9:c0:e7:19:df:31:db:1d:e3:7a:84:b2:60:15:52:cb:96:d0:
ef:ec:a6:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:14 2024 by rpki-client on console-ams.rpki-client.org