Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/B48u8rXhA2i2PPdYeLN7Td5qNlU.roa
File: B48u8rXhA2i2PPdYeLN7Td5qNlU.roa (raw, json)
Hash identifier: 4Q9CnVdAEGJ1xwiEMBfH6WRrLq6s5HZ+gxwV8NoEctg=
Subject key identifier: 07:8F:2E:F2:B5:E1:03:68:B6:3C:F7:58:78:B3:7B:4D:DE:6A:36:55
Certificate issuer: /CN=2cc57499546c4efd730ff871df3bd1afbf3b9f01
Certificate serial: FFB9EF
Authority key identifier: 2C:C5:74:99:54:6C:4E:FD:73:0F:F8:71:DF:3B:D1:AF:BF:3B:9F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMV0mVRsTv1zD_hx3zvRr787nwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/B48u8rXhA2i2PPdYeLN7Td5qNlU.roa
Signing time: Wed 15 Jun 2022 07:24:45 +0000
ROA not before: Wed 15 Jun 2022 07:24:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209626
IP address blocks: 89.106.200.0/24 maxlen: 24
2a12:5240::/48 maxlen: 48
2a12:5240::/47 maxlen: 47
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16759279 (0xffb9ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc57499546c4efd730ff871df3bd1afbf3b9f01
Validity
Not Before: Jun 15 07:24:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=078f2ef2b5e10368b63cf75878b37b4dde6a3655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:73:6c:77:76:9d:56:a7:d7:b9:f8:c8:60:2d:
84:3b:0f:1d:fc:d7:2a:d0:69:50:2c:4e:c9:33:3e:
c9:9b:97:02:79:0b:e5:40:f5:3e:d1:2d:6e:4c:c1:
fa:d3:20:21:38:b6:b1:39:f0:8c:20:e1:66:f7:b8:
84:b6:ee:fa:3c:b4:24:20:e6:e8:3e:85:e5:64:2c:
43:3a:8b:f1:1d:cd:37:b9:5f:5f:3e:3d:6e:bb:68:
b8:ce:00:16:d4:3a:f9:f9:15:e2:26:9b:7a:b1:73:
ec:2c:36:e3:59:67:15:ae:8f:aa:fa:1f:c8:a0:0b:
a4:15:80:3c:df:22:04:08:98:73:1f:8e:9b:97:4a:
bd:d2:00:87:6a:14:f6:21:60:35:01:b0:76:99:a9:
46:ab:b0:ef:df:f2:76:fe:5e:4d:15:c5:d4:b9:d2:
1f:75:1a:da:6b:54:63:7e:cf:18:36:9f:de:92:0c:
6b:8f:d5:0f:8b:7d:e2:54:ce:6c:62:6f:97:78:b6:
63:01:25:e3:cb:bb:13:20:72:5e:5e:d9:5f:cd:ba:
90:90:dd:b2:e5:d4:9e:6a:0d:90:31:ab:02:bc:27:
a4:a3:f8:78:37:b6:42:ce:5e:a5:76:b6:c8:cf:ee:
de:84:8a:d5:6e:0a:6f:49:e6:3d:7d:ef:9c:7a:53:
83:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8F:2E:F2:B5:E1:03:68:B6:3C:F7:58:78:B3:7B:4D:DE:6A:36:55
X509v3 Authority Key Identifier:
keyid:2C:C5:74:99:54:6C:4E:FD:73:0F:F8:71:DF:3B:D1:AF:BF:3B:9F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMV0mVRsTv1zD_hx3zvRr787nwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/B48u8rXhA2i2PPdYeLN7Td5qNlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/LMV0mVRsTv1zD_hx3zvRr787nwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.200.0/24
IPv6:
2a12:5240::/47
Signature Algorithm: sha256WithRSAEncryption
4e:5e:80:9a:cc:02:0c:bf:7e:bd:5c:43:48:6a:50:2b:14:d0:
f3:b7:33:7a:90:9b:b7:2a:35:64:d3:55:e3:21:22:36:b0:8a:
c3:db:c0:ab:69:3d:b0:25:ab:70:7f:a1:6c:69:54:0f:14:fe:
f4:81:9b:d1:c0:a4:c1:75:fc:d6:e5:d7:cf:46:c6:f8:9a:47:
07:d3:f3:c4:ad:a1:43:20:46:87:36:6b:09:2c:41:c9:b2:ee:
4f:1f:49:2d:9d:02:27:b6:89:00:f1:f6:0a:c4:86:6b:81:57:
71:3e:bb:4b:9e:5e:cf:22:a0:03:f2:63:d7:a2:6c:fa:ac:e5:
d0:43:38:99:eb:e7:af:5e:f6:39:89:2b:fb:ae:e8:fc:bc:3c:
c8:32:1d:7f:a5:e7:83:c9:d9:ba:9a:ee:95:09:bc:aa:27:ad:
e8:68:31:55:6b:04:ca:40:0e:de:72:a4:0f:72:08:61:12:97:
6d:5a:40:3e:4c:ec:26:c3:51:e6:3e:9c:ef:87:ca:65:d8:18:
79:c8:3c:4d:55:ba:d9:41:26:a4:d3:c3:ec:9f:69:4f:34:3d:
57:ba:2b:19:0a:4c:f1:45:fa:ae:00:5b:54:d1:ab:9d:0e:f5:
35:6c:2b:c7:7f:c9:fb:68:e5:69:38:fc:3b:04:82:ac:69:03:
c4:05:93:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:47 2024 by rpki-client on console-fra.rpki-client.org