Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/q6yh6PbizU4H-56wAje6qgJLBZc.roa
File: q6yh6PbizU4H-56wAje6qgJLBZc.roa (raw, json)
Hash identifier: BwG7nmTNve7uVcG4Iie/KSZFsbSiZSKgwnWg9nUYjk0=
Subject key identifier: AB:AC:A1:E8:F6:E2:CD:4E:07:FB:9E:B0:02:37:BA:AA:02:4B:05:97
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42D7DC44
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/q6yh6PbizU4H-56wAje6qgJLBZc.roa
Signing time: Tue 03 May 2022 09:40:20 +0000
ROA not before: Tue 03 May 2022 09:40:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42123
IP address blocks: 89.41.136.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1121442884 (0x42d7dc44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 3 09:40:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abaca1e8f6e2cd4e07fb9eb00237baaa024b0597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8e:07:7d:a8:84:28:34:7a:77:b6:00:98:df:
57:24:46:b9:e0:d4:68:ef:c3:5f:f5:8b:76:70:22:
9f:5e:4e:59:70:a4:f5:5e:b4:4c:37:a0:6a:eb:a4:
14:a2:3f:e4:b7:ad:21:df:1b:ab:fe:ba:b2:30:5c:
fe:a4:8f:64:29:a5:ae:4d:0d:22:e4:0e:49:38:5b:
3d:96:12:04:34:ba:7b:71:f4:b1:9d:30:73:2c:da:
9f:c3:f4:5f:29:a7:bb:fd:09:9a:8c:2e:c5:6a:6f:
70:c0:d9:3a:dc:47:5e:14:85:66:f7:2d:06:96:c8:
9d:a9:16:25:83:1f:20:1c:31:1c:f4:ff:c3:70:db:
b0:29:64:0a:17:74:c0:97:49:a2:da:04:4b:51:f0:
9b:be:76:81:4e:03:6a:87:40:69:02:ce:3a:60:87:
66:ab:4a:36:93:ee:48:d8:4a:4a:55:1b:b9:95:ce:
43:f0:84:b7:22:0b:ad:0f:ca:e9:13:fe:73:eb:6b:
30:3f:25:fb:38:b5:40:1c:cb:b2:af:a7:9d:62:f3:
5d:99:b0:3e:d3:f1:fa:cf:ba:eb:07:60:4d:33:f6:
ee:12:93:b5:c3:38:51:4e:ed:1a:86:44:fd:ff:f7:
a7:61:90:0f:d7:61:b3:9e:89:a0:01:cf:20:ba:df:
c5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AC:A1:E8:F6:E2:CD:4E:07:FB:9E:B0:02:37:BA:AA:02:4B:05:97
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/q6yh6PbizU4H-56wAje6qgJLBZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.41.136.0/23
Signature Algorithm: sha256WithRSAEncryption
49:3f:b4:35:44:c7:86:10:69:29:88:e8:96:dd:39:80:06:20:
b7:48:1d:97:73:7d:ef:04:fc:3b:8f:2e:ec:a7:35:c5:ba:aa:
5e:71:05:a6:19:dd:92:97:8d:b5:c8:7d:b8:cd:17:b1:55:f9:
94:07:6b:bc:b5:b0:29:67:9f:84:e6:ed:7a:d8:25:dc:4f:f2:
e1:e6:de:c8:b6:4a:b1:35:6d:60:bb:08:8f:ad:ab:a6:b6:0e:
88:3e:76:19:c1:21:71:d7:3a:60:12:9e:21:2d:57:c8:9e:99:
c9:95:0e:90:aa:98:d2:6f:bb:a9:6d:38:de:24:1e:e3:90:f9:
23:67:42:97:26:bc:ad:4a:c4:68:7a:7f:ef:3f:86:06:82:3c:
4b:02:f3:1f:18:c2:36:bc:fb:4e:7b:1a:6f:9d:39:c5:75:4a:
57:a3:37:06:75:c8:8a:e2:2b:d2:67:8b:43:03:e7:1d:2c:8a:
8b:f4:e6:69:ca:13:ae:89:0b:1c:12:11:b1:22:29:44:48:f3:
cf:2f:27:3f:c3:2c:4a:46:0e:c1:eb:a1:df:84:ee:84:0e:36:
7a:d6:12:33:d9:39:c7:8b:46:a5:cb:be:1e:dc:0b:b2:ec:9e:
e3:3b:1d:44:fd:2d:77:d7:a9:63:14:c5:c8:5c:cf:15:37:29:
cb:c8:1b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:59 2025 by rpki-client