Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/X_yCYd9J6fS18oBJjEt3X7vUQsk.roa
File: X_yCYd9J6fS18oBJjEt3X7vUQsk.roa (raw, json)
Hash identifier: ZWxuKJiq5hCqxKBuuGEQrrBOzQIfKbaw1aP4QO87rbs=
Subject key identifier: 5F:FC:82:61:DF:49:E9:F4:B5:F2:80:49:8C:4B:77:5F:BB:D4:42:C9
Certificate issuer: /CN=2cc57499546c4efd730ff871df3bd1afbf3b9f01
Certificate serial: 0402EB
Authority key identifier: 2C:C5:74:99:54:6C:4E:FD:73:0F:F8:71:DF:3B:D1:AF:BF:3B:9F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMV0mVRsTv1zD_hx3zvRr787nwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/X_yCYd9J6fS18oBJjEt3X7vUQsk.roa
Signing time: Fri 18 Feb 2022 13:35:27 +0000
ROA not before: Fri 18 Feb 2022 13:35:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209626
IP address blocks: 89.106.200.0/24 maxlen: 24
2a12:5240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262891 (0x402eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc57499546c4efd730ff871df3bd1afbf3b9f01
Validity
Not Before: Feb 18 13:35:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ffc8261df49e9f4b5f280498c4b775fbbd442c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c0:38:49:bd:55:6e:71:d2:ad:6e:ea:00:64:
69:3a:63:75:ee:b5:51:80:8a:44:42:02:6a:19:cd:
06:48:2e:fd:64:c0:83:cf:43:25:28:a1:cd:04:c8:
8f:0b:25:c8:7e:6c:34:d5:c6:ff:f4:8e:f7:02:82:
6f:1d:43:4a:10:0d:a7:0f:68:9e:88:39:05:d5:8e:
20:78:bd:64:c9:a7:b2:98:1c:c5:7a:ad:01:5e:f7:
9f:74:e0:63:e0:81:7d:ed:9e:b4:60:5f:1f:93:f0:
fa:2d:15:50:8e:18:b6:31:b4:80:87:a8:58:0b:52:
a6:6b:28:21:09:5b:6e:2d:86:59:ab:5a:58:d9:93:
41:4c:c7:46:18:01:79:35:f6:0d:0b:6e:34:4f:40:
5a:25:a4:cd:f4:1d:cb:4a:33:97:d5:3a:b2:c7:8a:
fc:f9:d9:1e:c8:0c:69:c9:35:71:37:41:65:4e:ad:
3e:b8:d1:81:b2:7d:e4:09:f4:5a:82:2f:7c:a9:0a:
96:f9:79:4b:d2:ef:a1:94:25:bb:f1:6f:39:d8:45:
08:8e:b2:53:ef:d6:55:6b:ba:a5:15:a0:61:fb:d2:
bd:8e:69:24:cc:50:e8:cf:cc:08:7e:e1:e6:93:3d:
e1:bc:87:dc:c3:cb:63:ae:d7:8c:28:3f:8f:3a:60:
69:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:FC:82:61:DF:49:E9:F4:B5:F2:80:49:8C:4B:77:5F:BB:D4:42:C9
X509v3 Authority Key Identifier:
keyid:2C:C5:74:99:54:6C:4E:FD:73:0F:F8:71:DF:3B:D1:AF:BF:3B:9F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMV0mVRsTv1zD_hx3zvRr787nwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/X_yCYd9J6fS18oBJjEt3X7vUQsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b5ba29-b29f-4065-98fb-b529b0cf5411/1/LMV0mVRsTv1zD_hx3zvRr787nwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.200.0/24
IPv6:
2a12:5240::/48
Signature Algorithm: sha256WithRSAEncryption
af:c1:ef:40:5d:59:af:74:63:2d:8a:5d:cf:3f:ac:26:34:fa:
fa:ed:a0:04:1a:7f:7b:b1:39:07:99:12:af:ce:8b:25:3f:83:
2b:06:73:8b:9e:16:4b:7c:aa:da:8b:ef:28:3e:e8:4e:d9:fe:
43:5c:75:02:a9:30:b8:43:39:6d:6c:16:38:22:d1:96:f0:f4:
e3:57:21:c0:3f:cc:a7:93:c5:42:70:79:26:c8:85:98:45:28:
ba:5b:f8:76:9d:6d:1f:0c:89:c9:80:24:d3:1f:38:8a:6e:36:
94:08:29:3e:02:b6:66:74:f6:b9:b6:95:e4:f2:0e:5c:54:7a:
8e:3d:f7:fe:2b:e0:3c:22:48:28:6a:ce:74:57:05:86:b6:be:
5b:42:8e:98:a5:f7:91:54:32:b9:14:b6:e4:a8:f8:c7:e0:d5:
03:3a:e3:09:ed:65:e6:85:85:78:95:5d:76:73:3c:80:7f:f0:
07:da:d0:d9:f9:be:25:39:3f:6e:ec:92:7c:bd:3e:c0:64:0a:
92:16:77:8d:37:3f:bd:95:80:e0:95:4d:d8:54:23:9a:98:06:
14:cc:96:3f:e9:96:fd:51:90:4c:61:a4:d6:ab:68:d1:3d:ae:
d0:6c:96:35:be:3c:3e:2d:96:7f:02:c0:c6:ef:f1:9d:80:26:
6a:94:cc:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:47 2024 by rpki-client on console-fra.rpki-client.org