Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/xkv34ngBoD1X-XlL7ZC41lz6y8s.roa
File: xkv34ngBoD1X-XlL7ZC41lz6y8s.roa (raw, json)
Hash identifier: y79qrlqVShULPC4kimOPNGVhVT79OMCggsWR0Jq1yjE=
Subject key identifier: C6:4B:F7:E2:78:01:A0:3D:57:F9:79:4B:ED:90:B8:D6:5C:FA:CB:CB
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 081E1C53
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/xkv34ngBoD1X-XlL7ZC41lz6y8s.roa
Signing time: Thu 06 Jan 2022 14:28:48 +0000
ROA not before: Thu 06 Jan 2022 14:28:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2010906
IP address blocks: 89.116.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136191059 (0x81e1c53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 6 14:28:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c64bf7e27801a03d57f9794bed90b8d65cfacbcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:50:63:0a:e7:1f:d7:ec:46:3e:da:2a:64:4d:
4d:2a:50:38:ce:b5:65:a1:dd:3b:a0:e8:61:32:18:
25:e2:6e:5d:d0:4b:cd:7c:0a:34:f6:cb:03:eb:59:
86:2b:a0:6b:9d:78:48:12:c4:12:f6:f9:92:c4:18:
75:4a:87:0c:72:cf:32:95:73:ef:35:b4:9c:ee:dc:
68:70:1b:62:4e:50:1b:b1:56:6c:c1:6e:4d:c5:a7:
76:94:29:8a:89:99:95:d1:cc:00:e6:25:5d:69:36:
45:6e:45:19:29:df:f0:3c:43:ca:f9:61:94:10:90:
76:c9:8a:df:15:20:e7:66:36:90:91:f7:47:96:86:
19:d2:61:f6:8e:9e:05:85:99:cd:99:e6:7f:96:a1:
9e:19:0b:2d:ab:72:8e:83:a0:1a:e2:44:df:c2:ff:
aa:81:97:28:67:86:5a:a9:49:02:52:db:d3:56:71:
6e:fb:ec:8d:de:36:90:c1:69:d2:d4:46:5d:68:a1:
da:a8:76:3f:62:4d:50:46:78:eb:16:2c:69:60:4c:
db:c4:37:f8:17:47:aa:1d:cf:43:cf:d3:e3:1d:74:
e2:74:63:66:9a:55:79:01:15:cf:4c:4f:3b:bb:fc:
eb:20:0b:f3:c2:d5:a7:7b:8a:c4:44:d2:d0:e3:e6:
a5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:4B:F7:E2:78:01:A0:3D:57:F9:79:4B:ED:90:B8:D6:5C:FA:CB:CB
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/xkv34ngBoD1X-XlL7ZC41lz6y8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.97.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:fb:66:5b:f5:e9:34:ae:aa:4f:3a:2c:4f:16:79:22:19:3c:
03:de:5b:fd:10:e6:2b:a7:dc:69:6a:35:49:1f:c3:0f:b0:23:
28:c4:eb:61:a6:02:b6:67:85:d2:a1:60:1e:6a:30:0a:a1:a8:
db:10:97:5b:4e:18:57:2c:bb:41:66:65:e6:6d:d6:3d:99:bb:
d5:13:47:40:e6:78:47:c2:c4:ce:e2:12:02:95:63:61:7c:f4:
92:36:ad:2c:4d:c8:5f:8f:64:33:53:38:24:ae:36:9f:2f:71:
93:49:85:60:2d:c8:4a:a5:b9:1f:94:8f:98:f2:6f:cf:44:09:
c0:b3:2d:d7:81:5f:ce:c0:49:38:94:63:55:99:97:0a:58:8a:
5f:4c:1f:88:f9:c0:59:5f:da:b5:d3:64:09:31:07:0a:a7:12:
3e:cc:b1:78:89:40:dd:02:f0:1b:65:b3:22:0c:2e:6a:1b:97:
f6:08:05:3a:56:3f:1e:51:9d:0c:e9:16:13:36:32:8e:1e:a7:
ce:02:e4:7f:c8:b0:12:85:63:cb:dd:e4:82:9a:3a:0e:14:1d:
4c:60:31:69:2b:56:af:c3:57:2a:d6:4c:5b:93:bb:78:ba:92:
2a:f2:f5:71:39:c2:cb:59:ba:a5:70:3c:78:07:9f:54:82:2d:
c9:2f:fd:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:26 2023 by rpki-client on console-fra.rpki-client.org