Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/jXX2DNCMUeNj2NmUcfRgK-zOGCo.roa
File: jXX2DNCMUeNj2NmUcfRgK-zOGCo.roa (raw, json)
Hash identifier: YLbKNq+lcZB2dA0DIIa3m4ZguoaNRkT/wVNmxSZWxG0=
Subject key identifier: 8D:75:F6:0C:D0:8C:51:E3:63:D8:D9:94:71:F4:60:2B:EC:CE:18:2A
Certificate issuer: /CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Certificate serial: 01843CACD323BBF7C79F23D60013B26AB9C0
Authority key identifier: 29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/jXX2DNCMUeNj2NmUcfRgK-zOGCo.roa
Signing time: Thu 03 Nov 2022 08:47:50 +0000
ROA not before: Thu 03 Nov 2022 08:47:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 89.111.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3c:ac:d3:23:bb:f7:c7:9f:23:d6:00:13:b2:6a:b9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Validity
Not Before: Nov 3 08:47:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d75f60cd08c51e363d8d99471f4602becce182a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:73:80:31:d7:16:61:72:97:33:a2:b7:fd:4f:
06:1b:f3:76:5a:68:6c:e3:4f:23:7b:df:3b:ca:0a:
93:4d:0f:e7:a7:1a:3e:b6:06:85:0f:56:31:1a:4c:
0a:4f:a9:cb:c8:41:3c:a8:d5:af:65:ca:f2:9d:e0:
da:1b:2d:1e:c2:c3:8f:50:8d:e7:ec:ca:a0:42:d3:
8c:6e:d0:c1:67:fe:d9:35:4e:e8:af:20:ee:be:ef:
a7:93:21:a8:ac:3d:4c:cb:c6:99:ce:00:e8:51:04:
3b:f5:41:e5:cb:22:0a:9b:ee:84:94:5d:45:27:0a:
dd:a1:82:54:d9:40:f3:7f:95:e5:09:d0:70:08:68:
78:3c:15:da:35:ac:72:c3:df:76:a3:9f:a7:ef:b9:
d1:90:08:7d:be:c3:82:28:76:c5:08:85:07:49:41:
63:5c:f2:fe:b8:4e:db:04:8c:66:bd:6e:b6:f6:61:
12:09:7e:11:a0:b1:d6:b8:de:c3:90:b5:cd:2c:88:
ec:57:a4:bf:91:df:5f:22:d1:d4:9d:60:71:79:ed:
12:fd:05:92:da:0c:4c:20:31:90:84:90:8b:37:27:
9d:f6:92:db:a0:77:d5:0d:23:88:56:e6:be:51:22:
27:43:9b:d7:24:b7:f1:57:c3:fa:55:e3:be:48:ae:
b8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:75:F6:0C:D0:8C:51:E3:63:D8:D9:94:71:F4:60:2B:EC:CE:18:2A
X509v3 Authority Key Identifier:
keyid:29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/jXX2DNCMUeNj2NmUcfRgK-zOGCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/KamWTgzTX7NnV-VlP_p2Jqxd7ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.111.240.0/24
Signature Algorithm: sha256WithRSAEncryption
68:1d:72:80:f9:c4:e5:fb:b5:57:19:bb:3f:a4:4e:4e:7a:96:
c5:1c:42:06:7e:cf:bf:00:fc:86:ca:19:5c:5f:1c:cc:6d:bd:
1d:0d:6e:4c:f1:77:bc:03:6e:87:d3:15:19:2c:91:b0:3a:12:
be:91:46:51:3a:95:dc:35:d0:56:9b:9a:7b:b6:0f:af:88:9e:
10:66:b1:f2:d5:10:c7:2e:a9:f4:26:d3:86:64:b8:d7:3c:cb:
3e:7e:d8:02:90:a1:df:37:a1:37:2b:28:bf:b1:72:8c:d7:a9:
e0:67:67:e9:45:95:c9:2d:2c:da:64:e7:e7:e2:a6:7f:e6:28:
f9:a7:81:0d:c4:4c:8d:49:b4:a4:a1:4a:ba:45:e1:0c:86:2e:
2d:c9:8a:a6:39:ca:cf:c1:bc:f1:cf:4a:a3:7a:ed:76:9e:26:
7e:0c:44:36:9f:b2:87:19:6d:b7:e1:c0:0d:90:aa:01:c9:26:
0e:55:40:9b:f7:70:fa:d5:1d:c7:27:10:f6:80:76:57:e3:41:
f2:cd:7f:1e:65:c1:a0:0b:3b:a4:64:16:18:f0:ae:04:54:35:
16:10:68:59:48:70:61:08:e3:d7:19:25:c5:21:17:60:2e:8a:
92:bf:9d:24:96:d5:f9:89:20:a9:33:c3:34:fb:a6:83:01:8a:
9d:3e:39:bb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQ8rNMju/fHnyPWABOyarnAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5YTk5NjRlMGNkMzVmYjM2NzU3ZTU2NTNmZmE3NjI2YWM1
ZGVlZTgwHhcNMjIxMTAzMDg0NzUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDc1ZjYwY2QwOGM1MWUzNjNkOGQ5OTQ3MWY0NjAyYmVjY2UxODJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunOAMdcWYXKXM6K3/U8GG/N2Wmhs
408je987ygqTTQ/npxo+tgaFD1YxGkwKT6nLyEE8qNWvZcryneDaGy0ewsOPUI3n
7MqgQtOMbtDBZ/7ZNU7oryDuvu+nkyGorD1My8aZzgDoUQQ79UHlyyIKm+6ElF1F
JwrdoYJU2UDzf5XlCdBwCGh4PBXaNaxyw992o5+n77nRkAh9vsOCKHbFCIUHSUFj
XPL+uE7bBIxmvW629mESCX4RoLHWuN7DkLXNLIjsV6S/kd9fItHUnWBxee0S/QWS
2gxMIDGQhJCLNyed9pLboHfVDSOIVua+USInQ5vXJLfxV8P6VeO+SK64gQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI119gzQjFHjY9jZlHH0YCvszhgqMB8GA1UdIwQY
MBaAFCmplk4M01+zZ1flZT/6diasXe7oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2FtV1RnelRYN05uVi1WbFBfcDJKcXhkN3VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy8yMTQwNjMtZjg4Zi00OTU4LWFlNTIt
ZDliNTMzZjdmYmMzLzEvalhYMkROQ01VZU5qMk5tVWNmUmdLLXpPR0NvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy8yMTQwNjMtZjg4Zi00OTU4LWFlNTItZDliNTMzZjdmYmMz
LzEvS2FtV1RnelRYN05uVi1WbFBfcDJKcXhkN3VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWW/wMA0G
CSqGSIb3DQEBCwUAA4IBAQBoHXKA+cTl+7VXGbs/pE5OepbFHEIGfs+/APyGyhlc
XxzMbb0dDW5M8Xe8A26H0xUZLJGwOhK+kUZROpXcNdBWm5p7tg+viJ4QZrHy1RDH
Lqn0JtOGZLjXPMs+ftgCkKHfN6E3Kyi/sXKM16ngZ2fpRZXJLSzaZOfn4qZ/5ij5
p4ENxEyNSbSkoUq6ReEMhi4tyYqmOcrPwbzxz0qjeu12niZ+DEQ2n7KHGW234cAN
kKoBySYOVUCb93D61R3HJxD2gHZX40HyzX8eZcGgCzukZBYY8K4EVDUWEGhZSHBh
COPXGSXFIRdgLoqSv50kltX5iSCpM8M0+6aDAYqdPjm7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:28 2024 by rpki-client on console-ams.rpki-client.org