Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/ObmB6mlDtwmueGopcwA_PEc3U8w.roa
File: ObmB6mlDtwmueGopcwA_PEc3U8w.roa (raw, json)
Hash identifier: +RZQpB4B7acLJ6CG1PUL7kzjr7kUbUaoBFysmooYtaQ=
Subject key identifier: 39:B9:81:EA:69:43:B7:09:AE:78:6A:29:73:00:3F:3C:47:37:53:CC
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 4293F9DD
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/ObmB6mlDtwmueGopcwA_PEc3U8w.roa
Signing time: Thu 21 Apr 2022 11:08:50 +0000
ROA not before: Thu 21 Apr 2022 11:08:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60694
IP address blocks: 89.40.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116994013 (0x4293f9dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 21 11:08:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39b981ea6943b709ae786a2973003f3c473753cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b6:0f:dd:73:aa:0b:8e:2c:05:15:0f:b7:55:
e3:d5:14:ac:7f:a0:d8:6b:20:6a:57:84:72:a1:4c:
63:09:b2:77:e9:57:5e:e9:91:42:97:2b:dd:91:56:
b7:1c:b1:24:24:2d:b6:22:16:a5:00:34:8b:6a:82:
a4:b3:3a:0e:68:b0:86:cc:50:01:3b:e0:2b:a8:6a:
f3:7c:fe:f5:e5:b7:5c:f2:0b:78:4e:8f:47:dd:a3:
54:b6:0e:19:c1:44:8f:37:bf:50:c1:92:4e:f4:7b:
90:4a:32:dc:75:ae:e9:f0:2d:ce:77:83:1b:8d:2a:
d1:e6:8c:fe:06:62:5f:5a:fe:39:cc:a2:fc:63:ab:
03:71:74:a3:23:8e:0e:f9:49:cf:fb:bc:67:08:14:
a2:96:b0:6e:15:94:6e:8d:4c:a2:8e:e8:5e:a5:22:
7f:af:92:b4:47:26:59:8d:48:db:9c:5c:60:8b:99:
d6:a3:65:a3:de:49:60:54:81:74:14:45:ba:b5:48:
66:09:5c:46:43:19:31:ec:c1:77:1a:f4:c4:f8:01:
56:58:26:b3:71:da:fb:5c:b0:a1:5b:a3:48:76:e3:
29:01:a1:f8:b9:f6:14:23:22:b2:db:8c:12:ed:a7:
57:aa:f0:31:8b:12:55:7b:d8:51:c3:cc:d8:99:93:
50:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B9:81:EA:69:43:B7:09:AE:78:6A:29:73:00:3F:3C:47:37:53:CC
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/ObmB6mlDtwmueGopcwA_PEc3U8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.167.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:86:58:12:e9:f9:c0:51:86:48:20:ef:4c:8f:38:e7:2f:fb:
3b:53:04:17:dc:6b:1f:a3:b7:c1:e5:cb:f1:52:a5:30:e9:f4:
f1:43:e5:35:62:00:56:9e:38:ba:fa:52:a0:02:a4:10:49:79:
54:8c:e0:aa:a1:ff:d2:b0:c8:12:50:6a:bc:ce:ec:fc:a1:66:
9e:bc:1f:7a:0b:62:3b:2c:a6:47:70:44:db:38:b1:cb:17:50:
9f:af:39:f1:f2:6e:d3:b5:8b:8b:27:12:2d:0f:0b:84:9b:73:
84:75:cc:ba:44:5f:18:e3:d1:ef:47:b4:48:4a:33:a9:11:df:
56:7a:bd:0e:e7:df:82:86:b0:d0:a7:7e:51:e0:86:e6:cc:53:
1e:2f:cd:54:d1:b9:71:cd:23:f2:15:05:fd:4f:23:27:b6:81:
2d:f1:e2:cf:3a:c2:a3:d0:ba:48:59:dd:0e:30:be:b2:f4:1e:
8e:df:14:e7:9b:1a:7a:48:f6:5d:3f:64:2d:ec:cd:3b:be:08:
7e:28:87:79:3c:93:3d:43:89:b8:4d:60:6d:97:eb:87:39:a7:
ca:d2:e7:df:87:31:cf:bb:72:66:84:28:f8:7e:b0:8d:98:3a:
d6:61:11:5c:16:7c:b0:fd:b4:e2:a5:00:55:0e:1a:b4:c3:e3:
c6:74:31:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org