Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/K8x4PAVX27GwZg1qJqxkypqZfT8.roa
File: K8x4PAVX27GwZg1qJqxkypqZfT8.roa (raw, json)
Hash identifier: jI5mHKMoXjs82Uxnhqt4xy57UZJXmMQHNc5kliV3UJI=
Subject key identifier: 2B:CC:78:3C:05:57:DB:B1:B0:66:0D:6A:26:AC:64:CA:9A:99:7D:3F
Certificate issuer: /CN=f82554a856a422b061ae64c577630f91d408cd4a
Certificate serial: 095BD240
Authority key identifier: F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/K8x4PAVX27GwZg1qJqxkypqZfT8.roa
Signing time: Sun 05 Jun 2022 22:22:20 +0000
ROA not before: Sun 05 Jun 2022 22:22:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206059
IP address blocks: 89.234.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157012544 (0x95bd240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f82554a856a422b061ae64c577630f91d408cd4a
Validity
Not Before: Jun 5 22:22:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bcc783c0557dbb1b0660d6a26ac64ca9a997d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2f:42:af:ec:21:a1:b4:4e:ca:7a:f7:47:6a:
f7:76:89:bd:c1:62:f1:9d:ca:0e:9e:54:46:fd:44:
04:7f:93:00:e6:1e:41:98:79:fb:7d:95:14:ff:ca:
67:83:e6:54:8e:44:9a:cf:00:58:73:d3:ab:32:39:
f6:f2:4d:54:f1:c5:fe:c9:dd:c4:93:d7:da:f9:08:
13:ba:eb:1f:60:6a:2f:01:27:e7:e9:18:1d:29:69:
65:3d:f9:02:0d:65:2e:39:2f:25:bf:20:ed:1e:05:
1e:6a:98:90:58:7d:e0:88:eb:d1:71:fd:c0:99:c7:
26:52:c6:ec:b2:d1:3a:5b:c1:a3:6e:36:75:b1:a4:
fc:5c:8b:4c:5a:b3:0a:e7:87:c8:1b:fe:16:e0:99:
13:59:8b:e7:a6:9b:49:1b:cd:97:02:41:2e:5d:0b:
aa:2b:e2:bf:e5:b3:22:a6:12:16:4e:21:04:4a:e2:
6e:16:f1:a2:86:fe:2e:6c:0c:30:f5:06:b5:73:19:
72:b0:f7:4f:8f:93:f6:49:02:5e:9f:23:42:f4:f7:
f7:1d:eb:0a:27:b5:80:95:7b:da:f7:5f:62:c8:85:
c3:df:b4:c0:52:91:9b:b1:bf:9b:6b:96:30:bb:e0:
35:80:39:42:d3:d2:bf:8c:d7:d3:ea:f7:af:c6:e6:
fe:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:CC:78:3C:05:57:DB:B1:B0:66:0D:6A:26:AC:64:CA:9A:99:7D:3F
X509v3 Authority Key Identifier:
keyid:F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/K8x4PAVX27GwZg1qJqxkypqZfT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/1-CVUqFakIrBhrmTFd2MPkdQIzUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.234.188.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:55:2c:af:4c:9d:22:3b:8d:11:18:76:0d:67:e6:0b:1a:90:
65:36:25:0a:96:93:b3:af:c0:30:91:8b:5b:af:4c:26:32:15:
df:fa:d2:3a:b0:19:12:ae:e9:d2:62:33:27:57:ff:d1:11:5d:
26:e5:fd:20:50:f2:62:08:03:3b:26:64:03:fe:fc:cf:f3:cf:
fb:8b:b9:ee:50:8d:c5:54:23:d2:ea:b2:fa:a8:89:70:46:8f:
a4:91:da:c3:a1:cf:2b:e4:6e:8d:fe:52:c9:12:ac:74:27:5d:
05:99:1c:b6:53:b3:76:bb:4d:d3:75:9a:a3:14:d8:88:c4:0b:
26:c5:5e:1c:bb:3e:4e:bb:b8:e2:9d:64:6a:61:f7:ae:7d:d0:
3a:df:70:7a:95:b7:95:33:14:5b:e6:64:4b:8d:c4:0f:49:80:
a0:ac:3e:35:38:ac:1d:6b:9d:7f:a3:ca:43:cb:76:20:b1:a9:
4e:84:7b:e5:c4:10:bb:06:78:19:67:48:e6:79:6d:ee:1a:ff:
25:a4:9d:54:64:3e:db:ec:26:44:75:a0:52:94:88:e2:bf:a6:
4f:90:cb:4d:9f:57:6d:d4:9d:29:98:b4:4e:9a:74:38:0e:8c:
fd:af:49:f4:43:fe:20:41:48:e0:77:c9:69:95:6e:42:17:79:
4b:bb:ee:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:48 2023 by rpki-client on console-ams.rpki-client.org