Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/5CAlwh1ilNjcKQ3HyGM0JmB5G1Q.roa
File: 5CAlwh1ilNjcKQ3HyGM0JmB5G1Q.roa (raw, json)
Hash identifier: NK2D1rwcBhekGaZdb/VRrHn0jpAeBQjdzzTLgLAkhJM=
Subject key identifier: E4:20:25:C2:1D:62:94:D8:DC:29:0D:C7:C8:63:34:26:60:79:1B:54
Certificate issuer: /CN=59c3cc99899373c85974f01c9cd7aa057ab97fab
Certificate serial: 08EC2025
Authority key identifier: 59:C3:CC:99:89:93:73:C8:59:74:F0:1C:9C:D7:AA:05:7A:B9:7F:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WcPMmYmTc8hZdPAcnNeqBXq5f6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/5CAlwh1ilNjcKQ3HyGM0JmB5G1Q.roa
Signing time: Sat 01 Jan 2022 12:05:17 +0000
ROA not before: Sat 01 Jan 2022 12:05:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 89.207.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149692453 (0x8ec2025)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59c3cc99899373c85974f01c9cd7aa057ab97fab
Validity
Not Before: Jan 1 12:05:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e42025c21d6294d8dc290dc7c863342660791b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:63:67:e3:a7:fd:51:ff:bb:96:be:8b:23:54:
71:ed:92:c6:bd:94:84:1d:c8:53:aa:33:47:df:a9:
d4:6e:2f:f7:e8:cb:97:17:7e:7e:04:87:49:8a:22:
42:5d:1e:a7:8a:9f:68:d7:6f:7d:3a:55:51:0a:0a:
f3:1a:3d:bc:b9:59:c0:fb:bb:33:98:f1:a6:26:42:
68:23:7e:7d:ed:ef:b3:25:3e:4a:ac:9f:16:5d:b6:
7b:db:4a:e1:8a:f4:ea:4e:55:f5:92:2e:5f:ad:46:
40:58:6f:d4:06:7a:44:f4:70:af:76:cd:a0:89:bd:
b0:dd:4d:03:b3:02:5a:47:03:7d:ac:f0:f8:b1:2a:
58:59:d9:34:0c:36:52:ef:1f:f3:d3:2b:36:c3:e7:
d8:d6:db:71:31:92:6a:11:e6:5c:bc:c8:fd:b3:e6:
ca:8a:0e:5e:d2:78:fd:73:b4:be:ac:84:81:e6:9a:
b5:af:93:70:2e:03:66:60:68:de:a7:9e:3e:3c:9f:
28:c2:8e:7e:ea:59:d6:90:01:0c:fa:72:6d:32:81:
ac:fd:19:08:bd:c7:cb:0c:46:d6:81:59:b0:ca:6d:
3f:cf:ae:2f:f4:3a:3c:c7:25:22:d7:ea:94:6f:b9:
77:67:27:aa:15:de:5b:f1:f8:c4:cf:2b:b0:90:bc:
a0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:20:25:C2:1D:62:94:D8:DC:29:0D:C7:C8:63:34:26:60:79:1B:54
X509v3 Authority Key Identifier:
keyid:59:C3:CC:99:89:93:73:C8:59:74:F0:1C:9C:D7:AA:05:7A:B9:7F:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WcPMmYmTc8hZdPAcnNeqBXq5f6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/5CAlwh1ilNjcKQ3HyGM0JmB5G1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/95f051-5e1d-4d36-a593-1a5eb50885ae/1/WcPMmYmTc8hZdPAcnNeqBXq5f6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.40.0/24
Signature Algorithm: sha256WithRSAEncryption
02:e6:70:b7:43:09:81:39:81:47:4a:90:6e:29:a0:0d:09:cc:
c2:d1:42:d1:e4:d5:07:38:f0:51:c5:62:7b:91:42:26:59:25:
2c:e1:d3:6d:72:03:24:a0:54:49:dc:9f:27:7e:fa:1a:d1:11:
3d:b5:34:b9:49:d8:49:16:d3:78:f3:3a:c9:eb:60:df:54:a0:
6f:3a:70:42:1a:c3:48:c1:91:66:8c:04:71:ed:ee:24:30:7b:
84:0d:ec:b9:3d:ae:c1:ed:80:31:aa:ee:e6:e2:d0:d8:e9:8d:
61:ec:16:ee:67:b6:58:be:c2:55:ca:55:42:12:4f:a8:9e:c7:
fe:b0:0b:7c:48:99:2f:89:68:bb:4c:ea:65:61:0f:89:40:93:
f2:09:4a:9d:d6:5c:82:c1:37:9b:82:ac:fc:e6:12:98:ac:09:
4a:fe:9f:2a:c3:f9:5e:7e:79:d4:20:71:41:2f:16:e7:3b:29:
49:f2:60:fd:dc:25:d7:c9:e3:f1:3c:7e:fb:f5:e8:cd:3b:d9:
03:e8:cb:bd:b7:bb:10:b7:4a:7a:c5:41:03:4d:c0:25:fe:c4:
3d:c9:05:34:0a:73:49:0f:52:d2:f0:c2:cc:e9:61:35:87:f8:
ed:31:05:1a:8e:3d:27:1e:43:58:10:85:5b:25:40:7a:ba:91:
04:6a:e2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:48 2024 by rpki-client on console-fra.rpki-client.org