Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/Gi9ky-4kUB5Wuk0pPhw5Q62QIu8.roa
File: Gi9ky-4kUB5Wuk0pPhw5Q62QIu8.roa (raw, json)
Hash identifier: QrFJc1TJpGb05jgBM8KUkuKTQ8lnedERKq6yY/cngzg=
Subject key identifier: 1A:2F:64:CB:EE:24:50:1E:56:BA:4D:29:3E:1C:39:43:AD:90:22:EF
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 43147F08
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/Gi9ky-4kUB5Wuk0pPhw5Q62QIu8.roa
Signing time: Tue 24 May 2022 08:36:13 +0000
ROA not before: Tue 24 May 2022 08:36:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60125
IP address blocks: 89.35.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1125416712 (0x43147f08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 24 08:36:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a2f64cbee24501e56ba4d293e1c3943ad9022ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d7:bb:1f:20:75:b6:29:b5:e1:45:9a:b0:a5:
96:70:02:74:14:4f:9a:db:99:4f:be:89:d5:56:2a:
a2:50:98:22:89:c3:2b:91:61:ca:41:55:86:18:4d:
d5:56:e4:c5:f5:31:f8:a6:e0:99:f6:55:bd:e7:2e:
4c:46:7f:d9:d6:9f:ed:30:28:c2:6d:25:03:ca:a0:
c3:4a:25:5a:88:a7:49:44:f7:27:1e:a7:48:cd:4b:
ba:c8:94:a8:3b:92:1b:13:5b:65:11:a8:39:5a:c2:
07:ac:bd:90:b1:38:41:14:8a:4b:18:6d:cc:a7:c1:
90:f4:8b:a8:ed:eb:5e:02:99:d5:19:f6:ba:b1:c5:
fa:c6:73:78:ba:bb:86:60:bf:bd:97:ee:4b:b1:d1:
12:89:dc:33:97:cc:1b:43:0e:b6:cc:5e:7b:d2:01:
81:de:cb:2b:d5:ca:63:2b:c8:a3:00:69:0a:76:d9:
d0:75:a5:7b:40:fd:06:11:03:88:7c:39:b2:f0:a6:
9e:61:f2:20:5d:2c:2b:7d:36:39:2c:db:9c:36:a5:
67:6e:3b:5a:09:52:f3:35:bb:94:8c:fb:e1:0d:f1:
bc:ed:cb:a1:56:8f:7b:8b:fb:e0:24:8d:5c:f2:ab:
98:87:e1:6f:d6:f3:b5:45:9b:e3:a3:ea:d9:86:37:
94:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:2F:64:CB:EE:24:50:1E:56:BA:4D:29:3E:1C:39:43:AD:90:22:EF
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/Gi9ky-4kUB5Wuk0pPhw5Q62QIu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.113.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:e1:75:b8:07:1e:08:0c:35:74:b8:6c:9d:22:85:8e:bd:68:
90:5d:38:66:1d:37:31:48:92:c0:71:3e:ba:39:d1:db:12:01:
40:60:34:6f:19:e4:bd:58:82:9b:fc:6b:81:b9:6a:c0:32:d0:
71:67:c5:16:10:57:6b:53:80:ae:77:fc:4b:47:88:46:54:3a:
a3:ae:5d:97:76:df:c6:8b:cc:65:0f:ab:c6:07:a8:69:df:52:
8d:e0:07:ef:5d:8b:76:96:f2:a8:0c:51:6b:2b:09:6c:7b:70:
8c:9d:28:5d:b8:12:c0:cc:eb:8f:a7:d0:1e:88:2f:54:e5:ab:
cc:42:47:3e:ef:7e:fd:03:cb:57:c6:32:23:ba:6f:45:2b:ee:
e3:81:2b:67:5e:4d:92:47:a2:ea:55:d6:56:b4:29:ef:47:bd:
7a:2d:f4:7d:f1:36:2f:d6:0f:a2:09:3f:43:56:2a:83:c0:c3:
2a:cd:66:9d:9c:c5:7c:c5:07:60:48:ea:38:6e:22:25:6d:83:
4d:78:22:74:13:ed:66:c6:6e:b2:e2:88:5e:04:22:94:40:c5:
af:d2:f5:b5:e0:2b:5c:0b:39:9e:70:87:58:3e:47:bd:df:13:
ad:6a:bf:a5:01:dd:32:ad:f3:43:81:9b:87:be:ed:a8:1e:74:
6c:0a:3e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org