Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/PyNvvjVb3J1TJ4_fozNQo4NoWJ4.roa
File: PyNvvjVb3J1TJ4_fozNQo4NoWJ4.roa (raw, json)
Hash identifier: 6uQJOUEOxuyAx7TFYUxPiVk5S+orY3ayoIadXZgW4PM=
Subject key identifier: 3F:23:6F:BE:35:5B:DC:9D:53:27:8F:DF:A3:33:50:A3:83:68:58:9E
Certificate issuer: /CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Certificate serial: 0B92057E
Authority key identifier: E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/PyNvvjVb3J1TJ4_fozNQo4NoWJ4.roa
Signing time: Sat 01 Jan 2022 08:56:21 +0000
ROA not before: Sat 01 Jan 2022 08:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197740
IP address blocks: 89.29.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194119038 (0xb92057e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Validity
Not Before: Jan 1 08:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f236fbe355bdc9d53278fdfa33350a38368589e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:29:09:af:b4:d2:1b:50:41:f3:90:e7:f9:20:
b3:41:bc:ce:55:80:f1:25:c4:2e:c8:1f:16:0c:0c:
40:d6:da:73:98:2e:b9:82:ee:c2:73:51:8e:6b:e1:
5c:3c:61:6e:8e:6e:6a:61:ae:69:ea:01:a2:1a:c2:
b0:41:97:01:69:b3:f4:92:c4:4c:ef:3d:b5:c7:ba:
e2:da:08:7c:03:2f:ca:bf:dc:82:58:d3:d1:6b:47:
3e:ca:7a:2d:1b:64:fb:bd:af:ff:0b:e9:9d:b4:f4:
23:21:69:00:00:f8:c1:5f:7a:ce:57:55:40:99:6e:
b4:0f:5e:a7:21:6a:76:18:6d:3d:17:a2:45:57:f1:
03:99:87:2f:ae:4c:8c:8f:61:69:cf:5f:17:d4:0e:
7c:38:08:f4:73:68:52:62:85:57:55:bb:ba:f1:d5:
9b:0d:b0:c7:24:c6:cc:38:af:0e:5b:dd:de:de:e4:
07:eb:46:ee:70:6e:d0:51:fa:51:0e:0b:5a:f4:ef:
d4:7a:a8:a7:e1:c1:78:fd:e6:45:1f:bb:95:aa:21:
a9:26:f9:9f:70:5f:c3:82:3a:0d:df:66:fc:87:25:
0a:3c:28:3f:9c:0c:88:74:a4:8e:6c:89:8d:f5:ed:
2b:56:74:01:38:17:b2:96:a7:56:e5:c0:54:db:41:
0e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:23:6F:BE:35:5B:DC:9D:53:27:8F:DF:A3:33:50:A3:83:68:58:9E
X509v3 Authority Key Identifier:
keyid:E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/PyNvvjVb3J1TJ4_fozNQo4NoWJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.29.252.0/24
Signature Algorithm: sha256WithRSAEncryption
14:33:eb:d0:fa:4b:f8:d0:d6:e8:43:6c:ac:2f:e3:f7:1a:f9:
4e:14:de:53:83:61:f4:2a:15:1c:e1:62:7e:9e:0d:81:cd:e9:
1a:81:9c:0f:23:62:2b:e2:31:94:b5:d7:d5:e6:35:cf:8d:bc:
69:5d:fd:51:ab:d9:e5:f6:28:83:70:b1:4b:75:b5:f9:21:aa:
21:02:b6:61:52:ad:d0:e1:d5:fe:dd:a6:b3:7e:57:43:a8:d3:
81:ad:10:22:45:cc:a3:07:e8:35:41:73:a9:49:75:ea:21:69:
f5:f5:6c:4a:62:ae:13:fc:0c:74:a9:52:ad:af:bf:4f:13:67:
0a:d9:b4:c4:7a:a1:3c:f4:79:35:98:3e:b6:39:0b:03:57:61:
9f:f4:5e:37:dc:4a:74:9d:6a:4f:62:7b:55:e4:f8:70:6c:25:
aa:2d:2d:95:44:78:0d:97:13:cf:a5:5d:97:36:63:1c:da:51:
eb:a8:9f:15:db:e8:16:c3:b2:e1:bd:57:ea:b5:f0:1d:cc:f9:
8b:98:1a:24:08:20:2f:95:aa:6c:6e:fb:28:ce:a0:d7:5b:79:
35:c0:55:c1:63:3c:6e:17:19:cb:cd:ec:d2:0b:73:3d:10:fe:
1a:52:19:b1:24:c2:8c:0f:0b:f9:6c:45:40:9d:81:b3:28:d9:
2a:08:af:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-fra.rpki-client.org