Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/PLlkokH35d1ertjjQEa4PRL22vE.roa
File: PLlkokH35d1ertjjQEa4PRL22vE.roa (raw, json)
Hash identifier: c/2MM995z175egYLQteunTKt1rbQDCZG1o6FOKxKwHg=
Subject key identifier: 3C:B9:64:A2:41:F7:E5:DD:5E:AE:D8:E3:40:46:B8:3D:12:F6:DA:F1
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD54A2A6EA16C6F70B551BEF1965351
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/PLlkokH35d1ertjjQEa4PRL22vE.roa
Signing time: Mon 02 Jan 2023 00:15:27 +0000
ROA not before: Mon 02 Jan 2023 00:15:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205275
IP address blocks: 89.44.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:4a:2a:6e:a1:6c:6f:70:b5:51:be:f1:96:53:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cb964a241f7e5dd5eaed8e34046b83d12f6daf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:16:55:59:2f:26:1c:3e:53:f1:12:d3:c1:76:
93:99:52:81:8b:d7:1b:c4:37:05:21:47:f9:fe:59:
7c:c0:b3:aa:28:0d:e0:c2:8c:f7:31:d0:17:ad:da:
71:a0:a7:5e:b2:2f:ea:b7:37:d7:b6:52:55:24:d7:
32:2a:76:05:db:39:0f:5c:b3:cf:2a:58:89:2b:e8:
7e:d9:61:de:5e:3f:bb:b7:24:43:80:1c:e9:04:aa:
9a:37:11:f2:e4:2c:d7:d9:90:91:12:15:33:4e:2a:
9b:dc:ea:5c:a0:45:68:71:b0:1c:69:65:05:4f:ea:
0b:81:bb:23:c0:d5:39:9b:d4:af:e9:c3:d0:1f:9b:
2f:d2:3a:c2:45:58:3d:dc:59:d5:9d:48:65:ad:1c:
dc:fc:40:e5:1a:e0:15:9e:a4:ac:d7:a2:90:e5:dc:
69:bf:89:b6:e2:75:72:d8:c3:fc:4f:2b:a7:a7:13:
ec:ae:99:79:26:0a:a7:78:8f:ca:81:a7:46:94:eb:
c6:f2:92:66:32:3d:c3:a2:47:05:5b:08:d4:46:55:
09:6a:f3:62:37:ab:bb:40:2f:25:c6:99:53:c5:d7:
1e:5a:15:9f:bc:69:5d:6a:59:d2:80:cb:c1:5e:33:
13:32:10:95:1e:21:a8:10:0e:8f:f5:58:9c:0b:c5:
7b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B9:64:A2:41:F7:E5:DD:5E:AE:D8:E3:40:46:B8:3D:12:F6:DA:F1
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/PLlkokH35d1ertjjQEa4PRL22vE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.124.0/24
Signature Algorithm: sha256WithRSAEncryption
37:6d:51:e7:c2:9a:49:9e:c3:f4:6f:73:a8:c9:c0:39:d2:07:
73:f2:ed:fe:b4:85:73:98:10:c3:15:ff:4c:c3:8c:92:01:bc:
92:ef:3f:48:84:26:a5:02:8b:b4:e8:b0:bc:27:5c:5b:1a:86:
74:62:a5:d1:c5:64:69:6e:ad:bc:a5:dd:90:5e:af:63:71:8e:
35:80:03:a7:33:a5:97:e6:4f:21:34:2b:4b:b2:b9:c7:da:1b:
be:2e:9b:6d:cf:de:22:ae:55:d1:35:35:03:4e:7b:78:aa:91:
b2:6c:e0:b8:d4:cc:1c:a7:18:cd:83:47:e5:bd:33:5a:77:4f:
ca:a5:a5:13:59:9c:76:49:87:d3:39:8b:a2:00:54:97:34:e8:
ff:84:66:1f:51:79:10:15:a1:f4:89:ac:59:f2:53:2c:83:ce:
ff:2c:00:5a:4b:1f:0f:83:c0:be:88:a2:9a:1b:6f:0a:8f:35:
41:96:cc:57:98:5a:64:67:08:f5:aa:99:6b:ac:80:37:14:85:
60:1c:90:ce:0d:81:1e:b3:04:94:36:e0:d9:8d:62:c0:52:94:
bc:cf:b8:68:a2:eb:ff:21:b0:9d:35:eb:c8:4c:a0:af:ef:62:
66:5c:b7:c4:00:0f:9a:6a:6a:71:85:12:4f:b8:84:2c:5b:be:
0a:c2:79:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:34 2025 by rpki-client