Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/zyJFtiRm1Y5Qgvaj5X_bIyuAj7I.roa
File: zyJFtiRm1Y5Qgvaj5X_bIyuAj7I.roa (raw, json)
Hash identifier: 0Nl3piI5oBZmzzYFxNBOh3FO7KeVelOxbXVM1hH/kgs=
Subject key identifier: CF:22:45:B6:24:66:D5:8E:50:82:F6:A3:E5:7F:DB:23:2B:80:8F:B2
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0183A2CE32B797E1A421D858C79FF7E7A619
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/zyJFtiRm1Y5Qgvaj5X_bIyuAj7I.roa
Signing time: Tue 04 Oct 2022 11:42:45 +0000
ROA not before: Tue 04 Oct 2022 11:42:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48359
IP address blocks: 89.46.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a2:ce:32:b7:97:e1:a4:21:d8:58:c7:9f:f7:e7:a6:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Oct 4 11:42:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf2245b62466d58e5082f6a3e57fdb232b808fb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:cf:3c:a4:ed:42:5f:96:ea:85:d6:01:f7:7b:
ca:90:a1:2d:d1:c5:0c:6f:dc:9c:20:20:8d:96:13:
93:a3:a8:40:fb:6e:7c:15:f7:d9:9b:72:a4:14:e5:
f5:29:c6:aa:43:64:63:76:7b:ab:c4:63:c2:e3:f7:
96:f1:8b:02:f3:1c:db:63:5a:2d:e6:1f:73:5b:f1:
76:26:22:69:d9:80:1d:fa:5d:d6:5c:d4:86:d0:da:
6b:7f:b6:2b:e0:f4:4a:ec:80:cc:33:c3:2f:11:dc:
7e:44:aa:67:27:da:d1:39:c9:3a:90:89:87:25:d5:
89:d1:fb:69:1c:9a:88:f0:d4:b8:24:2c:d1:c8:08:
6c:ca:a3:93:67:fc:6d:a6:4e:d7:4d:cd:74:85:d4:
76:50:0b:9b:3b:31:9f:79:28:32:04:bf:c2:70:e8:
06:77:9c:61:df:34:6c:b4:54:57:4a:bf:46:54:50:
d9:da:90:d1:d7:bd:7a:93:36:3f:27:3a:53:78:d7:
54:58:94:cc:37:90:1f:79:c9:f7:c1:3a:be:38:f6:
07:66:f6:df:44:15:1f:35:f8:fb:ad:90:ba:1b:4e:
8a:b8:0a:63:d9:6b:8a:5a:d1:55:8f:e1:f6:f1:e9:
ff:18:bc:5f:40:9f:d4:bb:79:c1:15:85:c7:ab:d1:
a8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:22:45:B6:24:66:D5:8E:50:82:F6:A3:E5:7F:DB:23:2B:80:8F:B2
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/zyJFtiRm1Y5Qgvaj5X_bIyuAj7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.217.0/24
Signature Algorithm: sha256WithRSAEncryption
07:78:88:f2:bd:34:e6:e9:6a:41:7b:75:41:c2:3a:23:41:43:
99:10:09:22:44:eb:8c:97:f7:d7:43:6b:61:90:cf:4a:79:53:
a8:53:46:f3:6f:ba:df:b7:df:a0:c9:b8:e5:95:40:a6:b0:29:
0f:49:b3:6d:ec:ae:3a:68:2a:e8:77:12:00:06:69:8c:b0:ef:
bf:b2:5d:b4:76:2e:9e:22:2b:b3:bc:b5:ff:82:ad:69:30:4e:
ee:c0:44:2d:02:09:e3:9a:18:6d:e2:5a:3b:87:51:92:a6:b7:
c3:e9:de:30:ae:1b:ff:6b:4e:34:5e:ad:64:de:08:f7:9e:f0:
bd:6f:b6:c4:ae:5c:86:b1:6c:85:6b:44:16:1f:ac:64:28:82:
a1:99:7d:ff:55:41:bd:d1:04:43:94:d9:e6:e3:09:bb:14:4f:
db:47:8e:61:18:b3:2b:3c:8b:15:d9:d1:3b:0c:00:9e:b7:72:
b8:be:ee:bb:17:d2:2e:92:61:f3:84:c8:06:ba:b0:90:ec:c6:
b9:6f:59:dc:fc:9d:05:5b:fe:73:b4:0f:f1:07:4e:2e:f6:9b:
ff:f6:d2:b8:76:c6:42:63:49:cf:95:bc:3e:c3:e4:0e:d6:96:
de:74:2e:e6:c9:15:b6:00:0f:23:6a:63:80:f7:91:eb:38:63:
af:7e:6a:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:10 2023 by rpki-client on console-ams.rpki-client.org