Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/DuY2PQ9spAc_VgMJuKH5u2qHwqg.roa
File: DuY2PQ9spAc_VgMJuKH5u2qHwqg.roa (raw, json)
Hash identifier: 8Q+vd/+GimF1748Y/GDHfllUDd5ACY3GSwYgH3nIRmk=
Subject key identifier: 0E:E6:36:3D:0F:6C:A4:07:3F:56:03:09:B8:A1:F9:BB:6A:87:C2:A8
Certificate issuer: /CN=f82554a856a422b061ae64c577630f91d408cd4a
Certificate serial: 080739F1
Authority key identifier: F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/DuY2PQ9spAc_VgMJuKH5u2qHwqg.roa
Signing time: Sat 01 Jan 2022 10:04:23 +0000
ROA not before: Sat 01 Jan 2022 10:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197922
IP address blocks: 89.234.142.0/23 maxlen: 23
89.234.149.0/24 maxlen: 24
89.234.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134691313 (0x80739f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f82554a856a422b061ae64c577630f91d408cd4a
Validity
Not Before: Jan 1 10:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ee6363d0f6ca4073f560309b8a1f9bb6a87c2a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6b:8c:39:f1:20:23:e4:a5:bd:98:07:5f:e2:
a5:9a:d1:f7:82:3e:4e:4d:78:72:e3:a8:c9:b9:84:
77:53:95:10:04:c5:b1:66:16:e3:53:72:12:e7:1e:
f7:77:f4:09:e4:74:d1:c4:e9:16:c6:50:36:67:c0:
4d:5c:f5:a7:dc:3d:60:af:28:98:ed:b4:50:de:a5:
7c:ba:b5:12:46:76:62:33:e4:a6:da:94:03:97:c0:
e8:90:e9:86:c0:ae:51:6d:33:c9:13:ba:8d:df:7e:
72:4e:ec:71:aa:4b:82:b6:e7:c9:53:6a:24:ab:cf:
3b:41:77:31:ca:02:7f:78:b8:00:4f:6c:46:f8:fa:
c1:4f:61:f1:cc:7f:a2:5d:fb:27:ea:30:75:37:fd:
47:fd:8d:4b:de:73:7c:75:45:b8:46:a0:db:28:61:
a1:77:4e:a9:58:3e:5e:c8:0c:7e:62:a9:e6:21:16:
43:89:81:50:05:b7:8c:86:a6:79:a5:32:6d:71:09:
32:e7:a6:eb:bc:07:1b:c9:68:57:fd:19:b2:6e:7b:
e7:7a:b2:00:df:94:11:b3:a6:29:32:81:87:92:3a:
b8:36:d5:e5:be:79:0b:94:ed:15:93:db:58:75:93:
fa:f1:cd:63:be:bb:93:e5:65:55:93:e4:77:55:54:
09:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E6:36:3D:0F:6C:A4:07:3F:56:03:09:B8:A1:F9:BB:6A:87:C2:A8
X509v3 Authority Key Identifier:
keyid:F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/DuY2PQ9spAc_VgMJuKH5u2qHwqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/1-CVUqFakIrBhrmTFd2MPkdQIzUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.234.142.0/23
89.234.148.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:9e:07:2b:b4:b7:93:18:3c:b0:62:70:c4:be:cf:56:c0:5c:
5a:b6:9e:07:88:cf:b0:53:01:9d:52:46:78:af:18:1d:72:5b:
09:08:b5:b5:d6:83:0c:c2:6e:e4:25:cf:11:06:a2:7b:78:58:
9a:e2:e3:0f:79:91:37:26:b8:d7:d9:94:c1:16:41:84:17:bb:
cf:11:fe:e1:e2:11:09:27:36:8e:9f:41:90:e8:51:fd:93:f5:
6e:8b:8b:1c:34:00:f3:3e:04:f2:4b:9f:1f:0c:f2:10:de:a0:
06:2b:c5:83:4f:46:f3:2c:78:7a:04:17:c4:71:2e:dc:80:5b:
1f:45:61:d5:53:32:b8:9a:98:1d:6e:98:22:65:5b:e0:90:fb:
7b:1a:a6:2d:46:30:6b:43:38:61:ef:92:25:83:89:a4:2d:e8:
2e:d9:c5:c7:b7:33:8f:44:3f:de:bf:e3:12:54:55:63:76:06:
1a:4e:fc:a8:50:f0:b3:fe:41:a6:be:68:94:5b:13:39:c1:d2:
fb:f9:65:0c:cd:5b:3d:bf:36:c5:88:25:db:12:5f:1a:ed:a6:
de:1a:66:89:cd:ab:fd:76:08:0e:bc:11:1f:8a:3c:dd:e5:cf:
0a:2d:a9:dd:3b:4c:eb:14:21:79:7d:83:d6:15:99:6c:77:10:
26:60:d9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:02 2024 by rpki-client on console-fra.rpki-client.org