Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/16661c-e77b-41c3-80e4-14ee32fc5d06/1/87alsV7MaDcesmxZ_8tANFKumhY.roa
File: 87alsV7MaDcesmxZ_8tANFKumhY.roa (raw, json)
Hash identifier: TLiL5Vo5yFHK8gyBuYYrzBvnzVyJJSCDW2aM0ZonySI=
Subject key identifier: F3:B6:A5:B1:5E:CC:68:37:1E:B2:6C:59:FF:CB:40:34:52:AE:9A:16
Certificate issuer: /CN=9f0338b7db5440029410397515c930eb452d75b0
Certificate serial: 17AF1902
Authority key identifier: 9F:03:38:B7:DB:54:40:02:94:10:39:75:15:C9:30:EB:45:2D:75:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwM4t9tUQAKUEDl1Fckw60UtdbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/16661c-e77b-41c3-80e4-14ee32fc5d06/1/87alsV7MaDcesmxZ_8tANFKumhY.roa
Signing time: Tue 14 Jun 2022 12:45:02 +0000
ROA not before: Tue 14 Jun 2022 12:45:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199753
IP address blocks: 185.89.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397351170 (0x17af1902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0338b7db5440029410397515c930eb452d75b0
Validity
Not Before: Jun 14 12:45:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3b6a5b15ecc68371eb26c59ffcb403452ae9a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fe:56:aa:d3:81:82:ac:7f:4c:32:55:67:ab:
7b:ce:03:53:f1:f4:82:50:eb:28:fe:c6:1e:b3:bd:
ba:ae:a5:df:fa:5e:e2:66:b4:5e:2a:21:a2:ea:f1:
a4:de:4d:95:83:54:32:02:29:7a:55:0a:fe:c5:c6:
cd:25:51:be:c9:c7:46:6f:f5:f5:a5:fd:bb:f1:c7:
8b:c0:21:fa:f4:f8:49:61:93:69:cb:fc:58:83:77:
d0:a2:8d:ef:16:4e:7a:c6:2e:90:c7:0c:09:07:f8:
44:ec:64:5e:60:2d:5d:55:69:ff:44:26:db:41:eb:
24:ac:be:a6:03:47:e0:29:80:fc:bf:a8:41:96:10:
3e:bb:e3:00:10:b3:ea:ba:75:cd:17:2e:9f:93:8a:
52:8e:84:20:cf:b1:2f:c7:94:ae:cd:ca:aa:da:06:
2f:c0:18:17:84:af:57:9c:c3:a1:3b:e9:34:9c:14:
b5:f8:31:e4:97:f8:ef:6f:e8:c4:0b:5d:b1:91:8f:
90:50:51:be:7c:4f:bd:b3:a0:b8:a8:1c:25:a4:64:
77:32:58:0c:c4:35:2d:5f:08:c2:87:f6:e3:eb:8c:
d4:d0:41:61:6d:1c:15:0d:62:56:95:a0:c6:31:ad:
8a:5d:ae:08:90:36:4a:4f:5c:cf:e4:e0:52:07:a4:
81:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B6:A5:B1:5E:CC:68:37:1E:B2:6C:59:FF:CB:40:34:52:AE:9A:16
X509v3 Authority Key Identifier:
keyid:9F:03:38:B7:DB:54:40:02:94:10:39:75:15:C9:30:EB:45:2D:75:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwM4t9tUQAKUEDl1Fckw60UtdbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/16661c-e77b-41c3-80e4-14ee32fc5d06/1/87alsV7MaDcesmxZ_8tANFKumhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/16661c-e77b-41c3-80e4-14ee32fc5d06/1/nwM4t9tUQAKUEDl1Fckw60UtdbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.56.0/22
Signature Algorithm: sha256WithRSAEncryption
12:ef:45:11:e2:d9:04:a5:7c:21:87:26:85:df:1f:b4:6e:58:
10:b7:0e:83:46:88:db:29:59:36:c9:32:f9:7e:97:3b:89:6b:
58:be:e5:96:36:08:ca:95:44:29:3f:0f:be:09:e2:d4:e7:39:
b5:4e:7c:9e:c8:2d:fb:3e:7e:3c:27:3c:01:99:6d:e7:6a:16:
36:31:db:0b:50:33:94:bb:52:c6:87:5d:0d:68:7a:28:38:73:
87:4a:8d:ce:30:ff:e1:89:15:85:68:c6:eb:73:5c:9b:0a:69:
e7:40:81:00:53:2d:9b:df:51:80:ca:57:9b:83:6d:32:d1:26:
5d:a2:02:2b:28:c8:21:46:84:0a:e3:2f:f3:84:d9:65:5b:87:
81:e5:f4:91:c3:49:9b:b6:68:94:f6:7b:2b:ba:09:36:9a:e3:
5a:c7:1b:91:2b:a2:b3:41:5d:8a:80:49:0d:e5:6b:ea:e1:89:
8d:6c:89:2e:4d:ac:71:42:e8:e8:b1:f5:d3:13:50:c7:f8:66:
67:8c:97:7c:98:89:f3:8f:5d:fc:97:9b:35:03:fa:ed:2a:43:
fd:57:5f:c8:fa:8f:22:46:d8:46:e1:4a:a3:a0:6f:e4:b0:66:
fa:1e:d4:ab:2e:6b:bc:95:7e:a7:bd:d0:e9:a1:f4:33:22:67:
6c:db:90:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:46 2023 by rpki-client on console-fra.rpki-client.org