Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/_g2o6oSQkWvP2VtmJs8YE9-_R7c.roa
File: _g2o6oSQkWvP2VtmJs8YE9-_R7c.roa (raw, json)
Hash identifier: u83v6drp4f26v+P1jZFE1o35zTnhGD09RoAFdlgHc4k=
Subject key identifier: FE:0D:A8:EA:84:90:91:6B:CF:D9:5B:66:26:CF:18:13:DF:BF:47:B7
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 0181D2C49A58D7BC4F8748719A3C90723EE8
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/_g2o6oSQkWvP2VtmJs8YE9-_R7c.roa
Signing time: Wed 06 Jul 2022 09:08:28 +0000
ROA not before: Wed 06 Jul 2022 09:08:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61050
IP address blocks: 89.44.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d2:c4:9a:58:d7:bc:4f:87:48:71:9a:3c:90:72:3e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jul 6 09:08:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe0da8ea8490916bcfd95b6626cf1813dfbf47b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:56:06:4e:a8:44:ba:47:8e:8e:d5:e3:72:2c:
f3:33:f4:7f:d4:85:45:66:c9:34:c6:f9:47:fa:4e:
7d:72:75:72:a8:32:f8:7b:de:be:e4:92:b7:76:ef:
b7:5c:bd:c7:8a:3c:74:f0:de:61:7a:34:b0:30:26:
f7:f6:62:df:81:53:e3:ed:72:d4:24:9f:43:4e:03:
1f:67:86:20:03:bb:18:be:4a:ff:97:f2:2d:9a:dc:
5e:45:1b:21:3a:e1:83:13:fe:47:49:ba:5c:fd:f3:
50:65:20:94:ba:e7:38:bb:0e:88:ab:6b:96:bf:b5:
da:fc:c8:31:96:7c:04:33:b4:36:c7:1e:6a:50:fe:
35:31:af:8d:95:17:3b:35:c6:ec:3e:20:0d:79:f3:
e8:2e:b3:07:46:bc:f9:87:77:d5:a6:74:ab:8e:77:
98:d8:60:f1:56:f6:37:b2:b9:be:20:fc:21:bc:1a:
58:ec:bb:c1:f5:d1:99:04:cc:e4:1e:d2:67:9c:98:
1a:f9:70:fb:8d:67:1c:b7:2b:70:6c:fa:bd:28:6c:
12:b4:6c:bc:e8:95:1c:ce:0d:f8:38:e0:75:64:66:
48:e5:ac:34:0c:92:d2:e1:04:c8:a9:b2:de:bc:61:
9e:08:3a:c1:42:73:bc:37:7e:be:55:a4:a0:6f:db:
4d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0D:A8:EA:84:90:91:6B:CF:D9:5B:66:26:CF:18:13:DF:BF:47:B7
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/_g2o6oSQkWvP2VtmJs8YE9-_R7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.122.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:f0:a9:38:fd:c7:19:46:e0:40:8e:4c:79:4d:d5:ba:2a:ad:
80:41:ce:f8:b2:04:f2:9c:39:ff:de:bc:4c:f5:18:99:f7:27:
fc:d8:99:11:a4:b0:1d:12:b4:4a:a9:1a:17:7e:f1:cd:0b:ea:
04:5c:47:3d:ff:3f:8a:03:3e:02:91:4b:7b:95:a8:e5:a0:af:
2d:9f:83:f9:8b:53:b3:d8:a0:0c:87:d6:53:6c:a9:82:ba:ee:
77:81:6b:82:de:a3:a9:b3:43:be:ad:78:7f:9e:8f:31:8c:29:
3d:30:28:73:a9:5a:65:12:15:00:99:ab:59:80:cb:37:34:ad:
14:95:58:ec:7e:d0:a6:b2:e1:d5:8b:05:52:f4:d4:63:e7:2a:
dc:9d:e7:a6:bc:7a:4b:92:dd:69:ed:73:b4:00:2e:18:85:2f:
93:df:93:11:15:fe:f2:da:91:5b:06:95:3c:ea:b7:fc:b2:7a:
9a:9d:cb:b3:33:18:c5:d4:a6:ed:16:94:df:d9:21:84:96:4c:
db:ff:35:07:c0:1b:4f:da:5c:df:82:7f:5c:96:4e:a4:d0:79:
01:46:e7:08:07:ff:ba:57:5b:fe:b6:78:57:48:e4:09:94:7b:
c8:d5:c6:69:d4:26:98:ba:e7:07:66:11:bd:23:f5:37:81:6f:
9e:4c:b3:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:45 2025 by rpki-client