Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-7TmP-oypNP_hv-epMVY8b0lpZY.roa
File: 1-7TmP-oypNP_hv-epMVY8b0lpZY.roa (raw, json)
Hash identifier: zmhwsytuYxhHDFD8PxUIDiFP+2eKIK/jmOyvAvBk5eE=
Subject key identifier: FB:B4:E6:3F:EA:32:A4:D3:FF:86:FF:9E:A4:C5:58:F1:BD:25:A5:96
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42AE8333
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-7TmP-oypNP_hv-epMVY8b0lpZY.roa
Signing time: Tue 26 Apr 2022 12:37:44 +0000
ROA not before: Tue 26 Apr 2022 12:37:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56570
IP address blocks: 89.36.79.0/24 maxlen: 24
93.114.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118733107 (0x42ae8333)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 26 12:37:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbb4e63fea32a4d3ff86ff9ea4c558f1bd25a596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:7d:53:c5:6c:63:d8:b0:01:a2:60:20:01:04:
f2:d4:b2:d5:dc:d2:18:69:53:39:b6:0a:bd:8e:d8:
78:9d:9e:b5:4c:78:ff:31:ca:32:26:f8:6d:b2:6d:
d9:bd:44:91:78:1f:fc:eb:7b:c3:ed:ff:3a:e6:f4:
f0:9f:e9:49:6f:b6:aa:d5:c1:b5:cc:a0:49:0b:28:
20:f6:21:8a:f1:60:21:ca:09:a0:9e:de:7e:42:35:
42:09:7f:9d:a8:ec:49:44:be:96:ee:ea:24:a0:65:
78:b4:bc:4b:a3:1e:df:1c:8d:36:ba:67:03:ab:b8:
b8:06:09:a2:1a:49:5e:04:0b:7d:47:61:b5:44:a9:
e0:81:87:ca:b1:a2:bb:c6:93:be:00:3a:10:4f:cb:
77:7e:b3:d7:cb:ba:d8:62:39:58:ad:8c:8f:46:98:
42:ad:dd:f7:c1:e7:0c:5c:36:f1:43:82:47:9b:32:
87:f0:07:8a:a3:93:ef:06:ef:83:3d:0e:6c:24:21:
10:84:b7:a8:90:db:4c:97:10:06:23:8c:6c:e5:f3:
73:9c:f2:74:f6:29:b9:8a:29:fc:1e:96:97:19:ae:
55:67:17:be:90:5c:b2:17:e3:43:75:5a:6e:b4:19:
9a:94:8a:4d:90:36:34:53:ff:c1:82:0f:37:44:ee:
b0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B4:E6:3F:EA:32:A4:D3:FF:86:FF:9E:A4:C5:58:F1:BD:25:A5:96
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-7TmP-oypNP_hv-epMVY8b0lpZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.79.0/24
93.114.66.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:05:87:aa:43:36:8b:57:c9:4d:df:95:a3:86:52:b2:52:cc:
4b:c5:0f:56:47:5f:ea:58:3f:c5:5b:2c:96:16:e0:22:be:27:
ce:40:8e:56:19:6c:81:2d:e0:5f:f6:47:6d:c2:f3:7a:d5:00:
15:5b:23:93:a0:81:8b:8d:9f:0f:d9:8e:9f:52:b5:51:ae:56:
1d:7e:67:42:35:78:06:ca:16:15:f4:f0:4b:10:2f:3e:de:90:
77:10:b4:cc:52:f7:b6:f0:30:0f:a6:b9:e9:28:67:cf:94:e5:
6e:e2:10:7e:5c:1d:80:56:a4:34:bd:ab:14:6c:78:9e:5d:8f:
5a:e3:3f:1d:d5:1f:c0:ed:d7:42:b5:48:88:e9:7c:6b:48:47:
a7:e6:7f:43:f2:82:79:c8:b6:ae:6d:2b:75:02:ff:3c:8f:88:
b4:72:10:7b:07:f6:88:26:56:26:a8:60:a9:c5:15:f1:f5:d8:
75:57:b7:24:88:27:d9:04:e8:ea:8b:8b:7c:e0:56:33:8e:d4:
09:91:6f:4a:c5:f8:66:30:06:fb:46:07:c5:aa:b9:ea:c9:1c:
3c:d9:54:40:50:bc:6b:64:aa:d9:aa:ba:76:ad:ae:78:a7:03:
0e:37:9e:2e:88:a9:0d:08:06:6a:73:00:80:c9:98:2d:68:0c:
94:b2:03:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org