Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/gx35pxXRbDgdrtvJH7vzxdYfchU.roa
File: gx35pxXRbDgdrtvJH7vzxdYfchU.roa (raw, json)
Hash identifier: aSby1TI99+6umjFPVqlU9D38Xv5CFeXClY9Vjjofkao=
Subject key identifier: 83:1D:F9:A7:15:D1:6C:38:1D:AE:DB:C9:1F:BB:F3:C5:D6:1F:72:15
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 433730F0
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/gx35pxXRbDgdrtvJH7vzxdYfchU.roa
Signing time: Fri 27 May 2022 05:02:13 +0000
ROA not before: Fri 27 May 2022 05:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59892
IP address blocks: 89.39.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1127690480 (0x433730f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 27 05:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=831df9a715d16c381daedbc91fbbf3c5d61f7215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6d:2e:c4:7e:2e:ca:0a:05:eb:d8:12:0e:ad:
bc:44:84:5c:8d:72:7f:82:c4:21:e3:10:5b:1b:8e:
9d:9d:9a:58:fd:aa:7c:e5:55:99:9a:99:29:39:b0:
79:9b:2f:10:cf:27:d0:7e:9f:d3:8a:65:db:5a:a2:
8a:f2:6d:cd:1d:be:95:24:fd:84:7b:5e:ab:9e:15:
82:85:f5:6b:8f:5e:a8:f2:ae:1f:6f:44:6a:05:b3:
9a:c3:5f:6a:c4:25:84:2d:73:55:4a:f1:4d:4b:bb:
09:06:7c:05:6d:89:d4:e3:a6:e2:67:f6:08:12:f7:
7b:d0:ba:2f:00:bd:44:03:ab:9b:21:be:86:b3:d9:
2c:d2:a8:1a:6f:86:cc:83:2b:bc:3b:53:bc:9c:fa:
c7:68:c2:1f:31:96:08:5e:0e:68:f1:01:4b:ac:9e:
e9:46:d0:01:90:63:08:03:49:e2:c5:78:5a:e5:f7:
b4:1c:14:85:e8:8c:92:01:ae:e4:7b:d8:40:37:c8:
90:01:40:e2:fb:4e:58:f4:50:5d:0b:ad:1f:49:3d:
80:6d:7a:d3:37:5f:5d:77:3f:4f:71:cb:53:ce:4d:
04:34:39:08:16:95:6a:c9:41:e7:84:51:54:78:9b:
60:d7:5a:04:41:43:30:13:06:e7:92:09:41:4a:79:
80:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:1D:F9:A7:15:D1:6C:38:1D:AE:DB:C9:1F:BB:F3:C5:D6:1F:72:15
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/gx35pxXRbDgdrtvJH7vzxdYfchU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.190.0/24
Signature Algorithm: sha256WithRSAEncryption
97:a9:bc:b3:9e:c9:20:ff:a7:c5:f5:58:59:f8:9f:10:28:da:
58:e8:c9:d3:a1:9f:c3:33:5f:71:eb:51:d2:4b:62:3b:57:64:
51:e1:2d:df:cd:86:94:0e:93:4b:44:95:64:60:93:bb:b6:a7:
e9:f4:d8:c3:cd:91:a1:53:d4:31:21:cc:1b:e0:91:18:f6:ae:
e4:4f:cb:64:9e:eb:47:a8:db:19:cf:48:44:87:15:54:ba:11:
4b:7b:46:ab:c7:89:08:a5:1f:8d:74:e0:8c:a8:2b:4a:66:df:
ab:4f:65:78:72:aa:7e:63:f0:5b:2f:74:f1:af:6a:ef:7f:95:
fc:77:27:d1:1f:b3:7a:9b:c0:c8:cd:65:7c:a6:f0:a3:83:1a:
c2:eb:2e:89:f4:0f:de:48:1e:1c:b6:7e:2d:06:d3:55:cd:b4:
db:f6:00:82:cc:86:e6:2b:26:62:ba:b0:ec:3d:1e:40:cd:a0:
2c:87:56:a3:a9:4d:d4:75:47:cd:cc:3d:85:8d:db:59:18:00:
77:6f:c3:5d:88:d6:fe:10:93:b1:85:84:d6:9b:4a:27:2a:b3:
93:e5:6a:d3:69:01:50:b7:9f:5d:26:d5:ba:6b:ef:3c:94:8d:
19:df:17:e1:36:b9:ca:f9:1d:6c:12:65:0b:3e:82:e7:63:13:
54:fd:ca:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org