Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/5Y-6FIH9HhUWdSbZ6PrbeEq-xUU.roa
File: 5Y-6FIH9HhUWdSbZ6PrbeEq-xUU.roa (raw, json)
Hash identifier: k1uy/3dSJfb5U9fUk/6J8Gb1HA/mekWtEmZX+adFhZ8=
Subject key identifier: E5:8F:BA:14:81:FD:1E:15:16:75:26:D9:E8:FA:DB:78:4A:BE:C5:45
Certificate issuer: /CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Certificate serial: 0327C357
Authority key identifier: 40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/5Y-6FIH9HhUWdSbZ6PrbeEq-xUU.roa
Signing time: Sat 01 Jan 2022 12:02:32 +0000
ROA not before: Sat 01 Jan 2022 12:02:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57034
IP address blocks: 89.36.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52937559 (0x327c357)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Validity
Not Before: Jan 1 12:02:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e58fba1481fd1e15167526d9e8fadb784abec545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c6:28:6c:98:46:27:89:1e:01:e2:ec:3f:98:
5d:ed:ab:ee:21:3f:2b:58:54:a9:a9:58:a5:89:c2:
37:24:08:8f:ca:95:2b:21:d3:6a:c3:fe:e1:0a:5c:
21:35:72:3a:af:64:db:1e:f9:ac:02:7d:4d:f1:53:
83:b7:3c:9e:b5:4f:00:cd:d0:08:3d:1f:0c:1b:bd:
4d:74:c7:06:e0:60:55:86:bc:b5:13:f8:ac:e3:2b:
19:72:fb:ce:e2:70:b8:15:3f:84:43:e4:9f:9a:d8:
2d:63:3b:e0:aa:7c:8a:b4:9d:73:42:df:c5:fc:15:
4b:20:d3:ef:fe:5d:ec:f4:fc:e2:a5:9d:6a:cf:cd:
3b:89:b6:cc:ed:f5:81:05:3e:a7:1b:a2:89:1a:a2:
05:31:75:10:94:04:fc:51:86:89:02:8a:3e:af:d9:
43:4c:40:53:ad:0a:d9:f8:5f:09:a8:36:b3:7a:d4:
8d:b8:b9:d3:0a:97:6a:3f:ea:07:56:45:1f:38:55:
e5:b3:dc:33:be:15:9c:43:69:6b:fd:b9:97:9d:8f:
87:4a:4f:a7:48:70:e2:1e:84:7c:ac:62:71:0a:79:
f6:6b:7a:bb:c6:42:4c:e2:c2:ec:fd:e3:5f:34:27:
5c:16:d0:a3:6d:ce:d3:03:05:39:a0:bb:e1:84:9d:
87:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8F:BA:14:81:FD:1E:15:16:75:26:D9:E8:FA:DB:78:4A:BE:C5:45
X509v3 Authority Key Identifier:
keyid:40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/5Y-6FIH9HhUWdSbZ6PrbeEq-xUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.131.0/24
Signature Algorithm: sha256WithRSAEncryption
62:f0:ff:a8:69:dc:70:69:86:ad:f6:84:80:b6:3a:36:83:f2:
2b:09:0e:dd:3d:4e:04:f4:24:7f:6b:2f:83:04:ac:0c:69:32:
80:8d:7e:40:ec:c0:25:4a:21:5f:08:d6:c1:e9:fb:e4:19:d6:
9c:91:15:86:62:e8:85:ea:f7:78:f5:66:b6:7b:7b:c7:33:19:
73:e8:22:fe:36:cb:c8:02:31:4c:a8:bc:17:ed:de:b1:c2:34:
d1:54:0a:c7:21:f3:be:89:90:f0:86:ea:d5:07:4b:b1:10:fe:
de:ee:5d:2f:24:d4:69:03:86:0e:8f:9f:fd:10:69:1d:4d:ee:
5c:38:b6:9c:0d:73:0d:a7:a1:ba:5c:74:21:94:ec:83:37:82:
8e:7d:21:ea:96:fa:bd:3d:48:15:dd:7d:d5:99:1b:1c:3a:77:
b0:0a:2a:da:b7:f3:5e:6f:77:37:86:c4:1a:ea:6a:f3:ad:a5:
53:7b:95:48:30:7c:43:6c:c5:c4:af:4e:d9:91:7e:bc:a3:f3:
20:90:2a:52:32:17:c8:ee:db:55:b0:df:e2:5d:18:0d:3a:c0:
44:78:7d:16:28:67:83:9e:e4:b6:b5:73:8c:93:dc:ea:11:f2:
12:5d:ef:7c:8e:4e:8c:c4:78:d7:6d:4b:52:6e:95:5f:b1:55:
50:f3:ba:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org