Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/NP7JBY3mWTcukRscsHGu2AIsbhU.roa
File: NP7JBY3mWTcukRscsHGu2AIsbhU.roa (raw, json)
Hash identifier: vygjWaUH4ekG0NfSi510mjP2mRH4bkDuA21ADxJrDS0=
Subject key identifier: 34:FE:C9:05:8D:E6:59:37:2E:91:1B:1C:B0:71:AE:D8:02:2C:6E:15
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 0182B1080332481B38B695D6A6E4FD3D274C
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/NP7JBY3mWTcukRscsHGu2AIsbhU.roa
Signing time: Thu 18 Aug 2022 12:57:48 +0000
ROA not before: Thu 18 Aug 2022 12:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204746
IP address blocks: 89.117.223.0/24 maxlen: 24
89.117.246.0/24 maxlen: 24
89.117.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b1:08:03:32:48:1b:38:b6:95:d6:a6:e4:fd:3d:27:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Aug 18 12:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34fec9058de659372e911b1cb071aed8022c6e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:21:0e:b9:33:21:3c:69:88:a6:1a:4c:72:7a:
9a:3a:b3:88:ed:41:9b:d2:9f:9e:4b:d0:fd:ca:0a:
42:96:b0:5a:df:ac:24:e7:af:16:a8:91:a8:5f:50:
8e:06:24:c9:62:37:6d:99:16:41:b6:c9:d2:4d:3a:
94:88:76:0e:96:10:63:05:3f:ad:5b:6b:37:ef:70:
5d:1f:34:e3:d4:3c:b6:55:9c:1e:a4:c3:c8:b3:c8:
b4:47:67:0b:a0:26:3b:14:f1:bb:23:89:17:16:ad:
b0:65:e9:4a:3a:00:9b:5d:13:6b:49:ab:63:21:f2:
14:1f:c4:d8:b6:0d:0d:3e:bd:f3:40:84:65:87:5d:
cc:39:1c:de:be:7e:57:f4:89:ec:be:5b:e6:ea:95:
2f:ac:d4:25:0b:5c:6b:6f:13:aa:2b:df:5d:56:64:
5d:a9:c4:61:06:ad:83:c6:c0:0c:f1:78:10:1a:88:
3a:e6:e5:52:7e:43:e8:62:43:af:3e:5d:43:a7:df:
46:f0:89:b2:f7:cc:24:7e:fa:47:a8:0f:a2:7e:90:
9a:3b:fe:23:07:d3:73:d1:26:e1:f0:db:fd:27:56:
27:84:72:00:dd:6f:3d:eb:23:dd:80:6b:31:ca:a8:
3b:7f:87:7c:49:7a:71:fd:90:76:b3:2b:0c:ae:54:
1f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FE:C9:05:8D:E6:59:37:2E:91:1B:1C:B0:71:AE:D8:02:2C:6E:15
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/NP7JBY3mWTcukRscsHGu2AIsbhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.223.0/24
89.117.243.0/24
89.117.246.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:8f:46:27:ad:00:52:b0:56:a7:e6:3c:76:7b:bd:9f:ed:f7:
4a:2e:62:c7:c4:34:72:a2:93:87:fd:3d:13:db:6e:ad:48:8d:
1d:4b:e7:11:b7:1c:ec:74:36:11:67:4f:54:2c:99:21:45:3b:
3a:e5:1d:6c:68:2c:97:a8:6b:0d:93:61:0d:7e:ee:d0:4d:d5:
ba:91:80:73:88:f7:9e:ee:00:94:ac:d8:d7:46:0c:e2:33:53:
1d:a0:64:29:74:8c:4d:14:92:ea:86:27:71:c6:4d:a6:35:e9:
5c:03:2b:88:9c:ab:56:3f:b3:ce:88:4c:47:c3:17:fc:78:23:
ed:2d:b9:23:3c:69:27:3c:fd:7c:81:98:49:8b:5f:2e:9a:7d:
be:06:a9:16:67:c7:fa:8d:6b:0a:dc:82:ac:ed:77:52:d9:bd:
3a:52:f3:28:e8:4b:9e:1c:45:a5:b0:90:82:fc:8f:21:ae:8a:
18:7a:fd:f2:05:a7:54:c0:3a:7a:5c:8a:cd:d2:9d:eb:02:88:
a5:6d:ac:2f:d4:6c:3e:73:7c:36:b6:4d:b3:20:5f:a1:70:4d:
05:ab:73:e6:22:07:9d:d2:1b:c5:6f:93:fc:69:d8:94:cf:45:
76:98:fc:cb:fb:50:c3:0e:87:b2:ed:b6:2a:d9:66:9d:ca:39:
1e:ad:43:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:26 2023 by rpki-client on console-fra.rpki-client.org