Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/0AoBLMqbHoTL9q7UZX5NTHCAcXY.roa
File: 0AoBLMqbHoTL9q7UZX5NTHCAcXY.roa (raw, json)
Hash identifier: 8+p/PtxiLCSwcE9YyRUwIzKWMsK2Hzq6x4+yO8dMcN8=
Subject key identifier: D0:0A:01:2C:CA:9B:1E:84:CB:F6:AE:D4:65:7E:4D:4C:70:80:71:76
Certificate issuer: /CN=2cc57499546c4efd730ff871df3bd1afbf3b9f01
Certificate serial: 34C3
Authority key identifier: 2C:C5:74:99:54:6C:4E:FD:73:0F:F8:71:DF:3B:D1:AF:BF:3B:9F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMV0mVRsTv1zD_hx3zvRr787nwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/0AoBLMqbHoTL9q7UZX5NTHCAcXY.roa
Signing time: Thu 17 Feb 2022 16:53:51 +0000
ROA not before: Thu 17 Feb 2022 16:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209626
IP address blocks: 89.106.200.0/24 maxlen: 24
2a12:5240::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13507 (0x34c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc57499546c4efd730ff871df3bd1afbf3b9f01
Validity
Not Before: Feb 17 16:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d00a012cca9b1e84cbf6aed4657e4d4c70807176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d3:91:54:e7:6c:f7:77:ec:2a:94:82:69:bc:
2e:f1:8d:27:c7:ed:42:9e:3b:e3:d8:67:d6:03:a8:
a1:80:ff:d2:11:ec:db:a2:54:16:75:75:95:0e:b6:
b1:09:86:15:04:92:2d:22:fa:a9:97:39:2e:f3:ce:
af:99:9e:14:77:04:ed:ff:36:c1:9c:b3:57:3f:4a:
69:b4:6b:2e:69:9a:7e:f1:7b:31:15:75:bb:bf:30:
74:3b:e9:db:03:cd:7d:de:8b:75:da:55:fe:e6:ac:
0f:a8:08:d7:4e:bf:82:51:39:70:eb:24:b6:73:27:
f8:16:33:6d:35:4f:29:43:46:40:bb:87:6a:7f:bb:
2b:97:0d:21:5a:1e:56:fa:d0:b2:d5:1d:14:2b:d1:
54:ba:a1:ba:db:d3:e1:76:57:e8:98:5a:1e:77:6f:
2a:39:58:ff:7c:4a:69:49:59:93:9d:48:5e:a0:b5:
24:d4:47:b3:f7:95:2e:c9:44:31:37:07:4b:f7:d5:
48:18:91:95:6d:85:9c:04:0c:ce:87:b5:f5:6e:04:
ef:fb:06:04:bc:b5:5b:8f:15:93:0b:28:1b:a4:2f:
f9:fc:8a:c6:04:d0:15:9e:6a:d2:ab:03:a1:d9:02:
b0:28:b3:60:07:78:dc:0b:4b:18:cb:76:dc:44:a8:
d6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0A:01:2C:CA:9B:1E:84:CB:F6:AE:D4:65:7E:4D:4C:70:80:71:76
X509v3 Authority Key Identifier:
keyid:2C:C5:74:99:54:6C:4E:FD:73:0F:F8:71:DF:3B:D1:AF:BF:3B:9F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMV0mVRsTv1zD_hx3zvRr787nwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/0AoBLMqbHoTL9q7UZX5NTHCAcXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/LMV0mVRsTv1zD_hx3zvRr787nwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.200.0/24
IPv6:
2a12:5240::/29
Signature Algorithm: sha256WithRSAEncryption
3a:07:8b:ea:7e:37:82:4a:3f:93:84:85:9c:ff:70:d7:7f:34:
e9:e2:34:27:a4:81:44:c1:9f:4a:cd:14:45:1c:f5:8c:c3:63:
b4:f5:f9:6c:90:7f:61:1d:9b:a2:63:7e:0f:ce:22:e4:a9:ea:
6d:b3:47:6b:36:24:6f:15:91:f2:2a:25:75:f2:33:b4:cf:01:
91:a3:00:32:54:81:50:7a:08:59:28:03:ab:85:52:07:d0:44:
8a:2d:6f:93:e8:1e:17:88:16:25:92:28:19:13:e2:cf:98:18:
25:a1:15:80:dd:c0:86:67:6b:ae:8f:70:ff:62:e0:26:02:ad:
c3:ce:4d:4a:4e:ca:39:a3:ba:64:e8:e2:85:f7:92:dc:2d:f3:
4c:3a:e3:71:1f:7f:3e:b4:64:d3:d6:b4:e0:c0:61:e6:d7:86:
10:5b:7e:de:7d:7d:5f:bf:8e:6b:09:a3:62:70:f0:a7:54:ff:
a5:a5:87:0a:2a:02:28:b9:58:24:fd:0e:d4:41:e4:9f:68:0b:
af:89:dd:4c:54:8f:b7:6d:34:b8:2b:7c:41:f0:d1:a6:fa:a9:
c7:5f:f9:13:93:8f:f8:e0:f4:0e:8f:df:00:97:a6:a3:2e:94:
10:8b:2b:36:7b:9d:9e:0b:c7:6c:a1:91:9e:0a:18:d3:d9:67:
72:46:33:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:47 2024 by rpki-client on console-fra.rpki-client.org