Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/LGhT5yg3G3z-_PKyKvfe9itCSeU.roa
File: LGhT5yg3G3z-_PKyKvfe9itCSeU.roa (raw, json)
Hash identifier: fSDfHonSFaoCqdegBIlcj09vio4calIyiJt7FNRZj8A=
Subject key identifier: 2C:68:53:E7:28:37:1B:7C:FE:FC:F2:B2:2A:F7:DE:F6:2B:42:49:E5
Certificate issuer: /CN=8b69fc6128be591401acf82bc2461af636ebe8e6
Certificate serial: 36A0A0A1
Authority key identifier: 8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/LGhT5yg3G3z-_PKyKvfe9itCSeU.roa
Signing time: Sat 01 Jan 2022 07:03:15 +0000
ROA not before: Sat 01 Jan 2022 07:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205530
IP address blocks: 81.89.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916496545 (0x36a0a0a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b69fc6128be591401acf82bc2461af636ebe8e6
Validity
Not Before: Jan 1 07:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c6853e728371b7cfefcf2b22af7def62b4249e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7d:52:5a:97:81:fc:8c:1b:a0:2e:5e:24:80:
79:b3:4a:31:d1:04:f3:4a:5a:9a:6b:1d:c0:3d:27:
ba:e0:b7:76:6b:c1:9f:19:28:8f:88:dc:96:cd:9a:
56:2a:54:06:47:28:e1:8e:4a:f8:c1:2f:1d:09:d3:
5b:c9:82:02:39:14:2d:69:90:d6:ce:6d:44:34:a6:
41:54:da:49:29:11:91:e3:b8:6b:1f:c9:49:8b:6c:
5b:e3:86:2b:41:08:a9:f6:48:6b:26:64:7e:ea:38:
cb:10:79:d8:fe:0d:2b:b8:ae:bf:4c:45:6e:50:13:
de:8c:30:3b:46:44:53:a4:3e:1d:3b:ac:c1:4b:ba:
8c:03:7d:8b:89:64:f9:e1:cb:6d:66:3c:87:57:cf:
85:f2:98:f5:99:f4:59:9e:23:d8:d1:e7:32:da:d0:
65:5c:51:fc:61:3f:32:ba:0e:1d:7d:e8:43:c4:c0:
be:4c:73:41:79:41:f9:1d:1f:0f:c9:be:9d:8c:26:
50:85:5d:42:0e:ff:f9:f2:21:16:1f:e1:ce:f5:8c:
41:ea:41:df:ba:31:95:1d:91:4f:4a:0f:d0:0c:36:
27:ea:84:02:f7:cd:93:79:c3:6d:05:3c:93:3c:56:
02:e6:86:b1:57:e2:10:0c:1f:5d:0a:b8:e5:7d:51:
65:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:68:53:E7:28:37:1B:7C:FE:FC:F2:B2:2A:F7:DE:F6:2B:42:49:E5
X509v3 Authority Key Identifier:
keyid:8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/LGhT5yg3G3z-_PKyKvfe9itCSeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/i2n8YSi-WRQBrPgrwkYa9jbr6OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.89.88.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:f2:a4:7f:3c:64:bf:7f:48:69:79:e8:dd:d7:2b:5d:de:a4:
33:0d:1d:a2:8b:f5:c9:21:ff:24:ed:81:65:d5:6e:47:e8:2a:
93:b6:e6:4a:8a:8e:bf:9a:5d:0d:77:c0:22:5c:67:df:f3:c0:
8b:3b:ed:5b:7b:2f:7c:d9:df:fc:ab:fe:aa:d1:fb:af:fc:08:
98:0e:1f:7c:47:a2:d2:c4:81:50:7d:a3:46:07:90:41:0d:15:
64:b4:35:6c:fe:b8:cf:da:77:60:58:9e:f7:4f:ae:ac:9e:78:
76:37:72:6b:0c:ec:55:0c:ff:76:bd:7b:50:70:90:41:42:5a:
3c:67:57:d3:e1:c4:55:a2:fa:cd:21:07:58:4d:9a:13:b7:c5:
7c:d8:bb:84:e2:5c:db:82:4a:7a:52:1b:63:f9:81:23:a6:6d:
a7:78:05:ab:a8:6f:0b:4a:eb:2a:cc:2d:ca:e1:0d:55:03:bb:
b2:af:cf:01:82:d7:4b:22:11:ff:84:58:5c:a5:06:19:d1:d6:
95:48:39:67:86:d8:4d:77:b8:84:a2:3f:93:dd:3b:64:fc:12:
f8:2a:b7:e7:18:a4:ab:39:c9:d5:c9:f5:96:53:89:7a:72:0e:
af:f6:09:f0:07:fb:52:9c:30:83:9f:07:f9:a8:72:5c:6d:22:
6d:80:a5:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:01 2023 by rpki-client on console-fra.rpki-client.org