Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/pLlQOPRRRN5y7iEEOO6Kl6sGi9Q.roa
File: pLlQOPRRRN5y7iEEOO6Kl6sGi9Q.roa (raw, json)
Hash identifier: zVavnmPMDtCD0pSdjksy34j3Dkp7HQ5+0f3j8l0pHRc=
Subject key identifier: A4:B9:50:38:F4:51:44:DE:72:EE:21:04:38:EE:8A:97:AB:06:8B:D4
Certificate issuer: /CN=89a6cd9f4beb7b0c04d31ffe5c674a87a7739d21
Certificate serial: 08844967
Authority key identifier: 89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iabNn0vrewwE0x_-XGdKh6dznSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/pLlQOPRRRN5y7iEEOO6Kl6sGi9Q.roa
Signing time: Sat 01 Jan 2022 10:00:22 +0000
ROA not before: Sat 01 Jan 2022 10:00:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49190
IP address blocks: 87.239.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142887271 (0x8844967)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a6cd9f4beb7b0c04d31ffe5c674a87a7739d21
Validity
Not Before: Jan 1 10:00:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4b95038f45144de72ee210438ee8a97ab068bd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:06:e1:6d:7f:c3:46:5e:9b:24:e1:35:4e:ab:
dd:91:04:a6:fc:a7:5c:f0:53:ce:bb:7e:d5:cb:2f:
3e:f9:ff:cf:58:90:22:5f:2b:0c:81:32:b2:ad:d8:
38:26:61:2a:ab:11:ac:2e:58:df:49:c0:87:7a:cf:
3f:44:5b:8f:8d:8a:fa:3f:b0:fc:60:64:53:8a:b1:
02:2b:1e:6a:ca:4a:89:61:42:36:db:2f:c0:01:79:
4b:ab:a1:3f:f2:df:93:67:b1:0b:77:95:d3:fa:31:
df:33:4e:f1:79:20:6a:ce:c7:cc:3b:73:b1:43:a3:
ff:7e:31:b3:b3:af:50:09:cb:bc:56:f4:9c:c9:89:
e6:9b:11:5d:8a:42:88:cc:a9:bf:a1:04:d2:3a:c1:
78:58:67:75:fb:58:5a:9d:8e:ca:e4:f7:85:cf:5b:
bc:aa:3c:8e:5f:6e:b4:cf:38:2b:ea:08:41:a2:d2:
64:f4:43:95:4c:cb:07:be:85:e9:98:08:e8:69:dc:
8b:13:11:93:7b:b8:72:d9:b0:60:ac:66:3f:b1:c2:
0f:df:6d:23:47:f6:93:f3:eb:0b:cb:05:38:fb:25:
7c:a2:29:0c:32:71:41:42:ae:db:44:eb:13:21:56:
c5:8a:a9:91:35:24:5d:41:1b:ce:66:ff:f5:d2:18:
34:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B9:50:38:F4:51:44:DE:72:EE:21:04:38:EE:8A:97:AB:06:8B:D4
X509v3 Authority Key Identifier:
keyid:89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iabNn0vrewwE0x_-XGdKh6dznSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/pLlQOPRRRN5y7iEEOO6Kl6sGi9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/iabNn0vrewwE0x_-XGdKh6dznSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.199.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:e1:71:d4:7b:04:4e:0f:2b:97:fa:0b:bf:fa:1d:4d:e1:14:
f5:7d:3f:27:60:c9:6f:4c:f5:e4:ed:13:10:be:5e:a8:38:1b:
7a:95:6e:88:27:e9:a7:20:f5:2e:ab:0e:3e:01:61:6e:06:88:
dc:02:ab:59:1d:cb:5b:11:41:bc:1f:10:d7:09:75:6e:33:1d:
f6:df:84:12:3f:fe:57:8d:7f:ee:73:49:64:a8:51:7e:8e:2e:
a2:7b:6a:e8:e1:07:8c:a5:93:17:1a:8f:01:b1:cf:58:63:4e:
20:3e:76:de:b4:ec:a6:74:9f:1d:19:0c:a3:59:b3:f8:b0:90:
9a:dd:32:f7:2d:e0:3d:86:72:56:04:e0:ae:21:7f:01:aa:a7:
e2:70:92:41:7d:ab:b1:7d:00:1a:03:8c:9f:52:71:cb:db:ca:
0c:7c:a2:4f:3e:36:f3:af:9b:38:94:02:20:ac:46:70:e2:76:
b9:d3:fb:d7:21:1f:27:ab:c7:b0:7f:e9:41:18:a8:c6:48:26:
95:a6:55:43:e4:4a:48:d2:8b:f3:14:71:b7:72:91:28:a4:9e:
d7:fb:bd:a4:4c:e6:ca:a5:7c:ed:d6:f8:c3:6a:1c:95:7d:9e:
45:78:14:4b:c1:4b:01:40:7b:de:cf:1c:97:fb:8e:7a:9e:a9:
4b:53:52:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:27 2024 by rpki-client on console-ams.rpki-client.org