Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/iDRREryVu4t1T2bYjYj2kgOq5j8.roa
File: iDRREryVu4t1T2bYjYj2kgOq5j8.roa (raw, json)
Hash identifier: HXnCHO5l0ADqWDZ2O4NYcAZxMXCC0YJqBvxpw34faD4=
Subject key identifier: 88:34:51:12:BC:95:BB:8B:75:4F:66:D8:8D:88:F6:92:03:AA:E6:3F
Certificate issuer: /CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Certificate serial: 04278213
Authority key identifier: 2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/iDRREryVu4t1T2bYjYj2kgOq5j8.roa
Signing time: Sat 01 Jan 2022 12:06:24 +0000
ROA not before: Sat 01 Jan 2022 12:06:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61250
IP address blocks: 89.43.15.0/24 maxlen: 24
89.43.14.0/23 maxlen: 23
89.43.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69698067 (0x4278213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Validity
Not Before: Jan 1 12:06:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88345112bc95bb8b754f66d88d88f69203aae63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:58:52:a9:f1:4b:9b:c1:c5:37:4c:33:eb:ec:
a7:e7:07:5c:16:2e:e8:d0:76:5d:a1:4c:20:11:aa:
6a:b5:10:96:5a:92:47:bb:32:6a:56:1d:3a:12:49:
e0:e9:9e:41:cb:94:46:0b:df:a6:38:41:fd:91:da:
79:b8:4d:92:32:0e:9f:54:0b:8b:0f:fb:f9:3b:1e:
14:0b:0d:a9:7b:bb:79:36:56:15:9e:24:e6:3a:71:
f8:05:e8:92:59:e2:7c:44:93:af:39:15:b3:a0:f1:
1e:d3:de:f2:d8:59:19:72:af:ff:c5:bf:f9:85:11:
a5:c0:c5:d0:5f:1d:af:7a:e8:53:ec:59:ce:97:3c:
53:7c:ad:da:2a:ea:75:4b:17:9f:0a:22:2e:7c:5e:
9a:ea:74:34:a0:7c:23:13:81:2f:0c:7b:06:8c:21:
90:59:fa:62:be:36:a9:10:48:53:da:6b:7d:f6:48:
c7:ff:93:36:5d:f8:f9:c9:47:8a:4d:ef:70:b1:3e:
5f:32:04:d3:47:ed:d8:97:01:0b:65:14:1b:90:d5:
a9:86:8d:7c:66:b0:b2:a4:6c:22:53:3d:58:6e:4c:
5a:1f:82:fb:ef:29:55:a8:22:20:94:94:13:36:aa:
52:71:de:7f:71:f2:9f:30:fe:c2:1a:ae:d2:79:30:
6d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:34:51:12:BC:95:BB:8B:75:4F:66:D8:8D:88:F6:92:03:AA:E6:3F
X509v3 Authority Key Identifier:
keyid:2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/iDRREryVu4t1T2bYjYj2kgOq5j8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/L2pDTEtdI5xObkG35YXI1Y-Jlas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.14.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:cb:e0:fa:ae:f0:2b:76:f2:3c:03:48:35:0f:d5:8e:b7:eb:
00:43:3a:2d:f9:6f:91:d9:d2:76:42:f6:1c:43:c5:67:35:df:
fa:87:8a:19:ac:ef:e7:21:f6:39:b8:65:9c:3c:b7:26:69:82:
a2:c7:f8:c8:f3:33:45:fa:6e:2b:0c:9f:4e:7c:69:5c:35:b2:
e0:94:ca:b5:a6:b1:57:e2:2e:ee:b8:21:f2:7d:20:76:94:23:
e0:bc:dd:24:55:ec:e7:0b:b9:e0:b8:26:f6:e1:35:f4:78:99:
75:d9:bb:3e:9e:a7:10:76:95:ba:f8:5e:60:ac:33:86:58:e9:
b5:3c:7a:57:bc:ee:ab:b5:ad:3a:0e:85:d8:4d:87:65:04:fd:
95:ea:d8:23:d5:d3:ce:84:63:81:dd:50:32:9a:48:10:aa:79:
58:c3:33:68:dc:57:66:0e:90:1c:40:cc:d2:7b:2b:bb:e9:11:
a6:e6:88:d6:d4:38:16:9d:21:53:b6:dd:d5:af:32:7a:7e:b9:
37:5c:5d:c8:34:f3:30:f3:fb:e0:ae:96:13:6f:4d:05:db:98:
29:68:1b:6b:8d:93:7e:12:1e:ef:2d:2f:20:ce:a4:9e:a4:3f:
d4:cc:c2:83:99:74:26:94:5a:12:27:49:e9:1f:61:78:bd:5f:
e4:14:d3:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:34 2023 by rpki-client on console-fra.rpki-client.org