Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/_UwlxIswfnk1Lw89SR71TzvDCKE.roa
File: _UwlxIswfnk1Lw89SR71TzvDCKE.roa (raw, json)
Hash identifier: 4UBt9e7Gy4KKhall2aiVYZbCpkt7nBTRpFoFo0akBQs=
Subject key identifier: FD:4C:25:C4:8B:30:7E:79:35:2F:0F:3D:49:1E:F5:4F:3B:C3:08:A1
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42933B6A
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/_UwlxIswfnk1Lw89SR71TzvDCKE.roa
Signing time: Thu 21 Apr 2022 10:04:22 +0000
ROA not before: Thu 21 Apr 2022 10:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41807
IP address blocks: 89.45.166.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116945258 (0x42933b6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 21 10:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd4c25c48b307e79352f0f3d491ef54f3bc308a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3b:9f:b3:dd:f5:73:62:d4:33:83:80:4f:63:
6c:e0:7c:3d:63:41:12:fb:2c:94:63:02:58:31:50:
4b:0b:89:6e:3a:b8:3f:0e:31:5a:94:5a:b5:8e:1b:
be:be:d2:84:16:f2:d2:4c:93:d6:36:9c:5d:2c:9f:
91:d6:ae:2a:f9:b0:81:fa:ff:d7:9c:dd:68:28:fe:
28:d6:f3:3f:79:39:e4:7b:b0:eb:91:59:90:7e:97:
33:b1:58:40:84:4f:10:ba:da:b8:83:a6:05:6f:31:
3d:da:29:f2:92:ea:e2:e5:be:1e:0a:13:e8:d1:5f:
96:3c:61:ba:c6:5b:46:16:6d:f2:f6:f6:10:64:17:
43:66:b9:3f:1e:fe:92:7c:2c:05:ce:d2:6f:0d:dd:
f9:99:80:8d:52:d3:f9:5a:d6:d8:74:df:f2:cd:20:
71:bb:55:d4:dd:7c:6d:28:bd:37:40:0a:1e:9b:e8:
46:9d:37:2b:68:06:5b:26:94:d8:e6:ff:02:57:6c:
39:9a:7e:2a:1f:70:be:47:12:d8:ae:b4:16:30:ee:
64:0d:94:ca:82:f7:8a:02:55:cd:95:52:d8:cf:73:
50:48:c5:4c:10:6f:80:9b:d6:fb:91:8d:cf:dc:84:
79:5d:e0:52:e8:c0:a0:42:2a:1a:1a:3e:43:75:8a:
8d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4C:25:C4:8B:30:7E:79:35:2F:0F:3D:49:1E:F5:4F:3B:C3:08:A1
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/_UwlxIswfnk1Lw89SR71TzvDCKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.45.166.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:5c:f4:38:1f:3d:32:89:57:8e:e4:15:a4:4e:cf:93:76:41:
45:e4:29:89:d4:9d:9e:ae:85:74:2d:4b:32:d1:54:35:60:e5:
8d:aa:01:9f:51:35:bc:51:c9:09:54:fc:6e:45:ba:4a:df:79:
31:01:ea:d7:7f:b8:e7:c0:54:3c:13:73:ca:f6:43:b2:38:0b:
25:c2:1e:c8:67:f5:e9:3f:1d:ad:f9:62:29:50:3e:a7:eb:65:
3d:14:3e:65:04:d4:3f:40:9f:50:63:2f:d5:1d:b9:4a:6f:4a:
61:0d:bb:20:17:8c:96:1e:fa:69:d2:e2:2c:01:e3:44:8e:2e:
ac:f6:79:cb:ef:c9:be:13:21:9d:d7:58:69:47:04:3c:38:54:
8b:a5:a5:c6:31:18:a0:45:51:ac:31:22:23:55:a0:22:ab:39:
d8:6b:9e:1b:5e:c8:09:70:b2:82:01:a0:5c:0e:de:26:cf:49:
26:c8:cc:fb:53:82:66:4f:6e:03:6b:ff:ab:fa:3c:0d:5c:15:
0c:12:9b:45:4b:e4:29:1e:63:63:91:39:53:64:af:ae:e0:98:
10:ef:10:f4:ec:3a:87:13:32:ba:65:1c:9c:75:8d:d9:73:79:
fd:3c:a1:1a:e1:c3:7e:da:c5:fb:d0:de:34:77:4e:a8:3c:62:
59:14:25:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:41 2025 by rpki-client