Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/XZHP9Lo1JLdgKNAcTOhw1ceMFSM.roa
File: XZHP9Lo1JLdgKNAcTOhw1ceMFSM.roa (raw, json)
Hash identifier: WcEmbbQt2LZpEpOm/pA2qTYz+GcH8IXd15b68/8DaXY=
Subject key identifier: 5D:91:CF:F4:BA:35:24:B7:60:28:D0:1C:4C:E8:70:D5:C7:8C:15:23
Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd
Certificate serial: 0D87636A
Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/XZHP9Lo1JLdgKNAcTOhw1ceMFSM.roa
Signing time: Sat 01 Jan 2022 06:06:23 +0000
ROA not before: Sat 01 Jan 2022 06:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39766
IP address blocks: 89.185.192.0/19 maxlen: 19
185.14.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226976618 (0xd87636a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd
Validity
Not Before: Jan 1 06:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d91cff4ba3524b76028d01c4ce870d5c78c1523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3b:ff:02:e4:a2:97:54:a8:42:3a:28:2c:23:
52:ec:a5:6d:e8:05:c0:2e:a5:0c:ed:6f:b7:d0:c1:
e6:79:3e:1c:6a:c1:18:e7:d0:c3:b5:fd:0d:0f:e0:
aa:14:fc:10:68:2f:ab:c4:a7:b3:c6:52:30:f9:54:
e9:36:bc:fa:e5:dc:38:36:ce:97:f4:d6:25:ae:4b:
b7:2d:ca:c5:0c:eb:85:10:7d:b6:c7:55:a2:ba:b3:
22:41:37:0b:9c:b9:3a:fe:eb:75:c4:58:c5:b1:61:
86:18:a5:d2:90:5a:e7:62:71:3b:96:b9:68:a7:60:
4e:c9:72:6b:85:2c:84:c7:39:65:57:72:60:57:c9:
12:ff:6b:91:26:77:24:bc:66:a1:84:65:01:b7:98:
f1:8e:ed:45:3c:6f:0a:f9:a4:15:b2:61:8d:5a:cd:
64:09:41:10:d4:80:49:2d:63:fd:63:4c:55:94:5b:
c1:3e:b6:b1:e1:d4:8b:2d:fb:7d:82:64:be:23:ee:
08:54:8b:14:ed:90:23:7b:30:d9:4a:f2:7d:1d:67:
5d:b5:42:06:96:4b:0b:50:d7:57:e8:31:7b:7e:3e:
19:b6:16:e5:b2:17:d1:2d:76:46:5a:0f:17:d6:ba:
0b:fa:e9:23:3e:06:06:b2:56:7b:dd:06:53:47:b5:
ee:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:91:CF:F4:BA:35:24:B7:60:28:D0:1C:4C:E8:70:D5:C7:8C:15:23
X509v3 Authority Key Identifier:
keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/XZHP9Lo1JLdgKNAcTOhw1ceMFSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.192.0/19
185.14.204.0/22
Signature Algorithm: sha256WithRSAEncryption
15:01:df:d0:e6:e9:e8:fc:c2:1c:49:75:6a:eb:3e:11:e2:b5:
ce:b2:74:83:0c:3b:f9:49:88:41:8f:85:d9:a8:9a:4c:be:c0:
51:e2:0c:dd:98:d5:c9:e4:d9:a0:5a:78:0b:45:18:06:de:19:
a9:82:9f:9d:e1:6b:f5:4e:df:08:1c:71:a9:bc:3f:79:72:bb:
9e:61:94:58:7b:50:6d:f5:ef:e3:33:53:45:23:c2:cd:e3:1e:
90:86:b1:95:bf:1b:a2:fb:0f:f0:22:03:49:ad:f9:b9:df:7b:
72:23:3e:0d:86:18:99:3f:57:6d:31:c4:23:6c:ab:6b:5e:b8:
17:10:6b:af:33:b5:87:ca:82:77:95:cd:65:66:b9:23:92:58:
d5:29:37:21:8a:5d:23:f0:fe:3e:6e:e5:0a:7d:b4:5c:b0:67:
4f:42:24:f6:66:2f:8e:e3:c4:db:b9:93:79:95:47:fa:e3:db:
af:21:db:86:81:6f:41:63:e4:08:13:a9:aa:53:1a:9e:5d:bb:
29:aa:80:33:62:4e:65:bc:d3:64:76:7f:88:70:8c:7d:3a:6f:
35:90:f6:29:93:12:47:0f:f9:1e:1d:d3:c1:b6:c7:8d:09:fe:
a4:3f:a4:31:2e:c1:d2:44:7f:74:d2:4d:cf:7b:24:63:01:34:
c4:76:41:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:22 2024 by rpki-client on console-fra.rpki-client.org