Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/y9tXgHkr0SnZxa8ugw5c6Mt5-C0.roa
File: y9tXgHkr0SnZxa8ugw5c6Mt5-C0.roa (raw, json)
Hash identifier: j3PrCs9hSHCM1F2CMU7aGKFMlC66PZBBEhbgySJsJ0k=
Subject key identifier: CB:DB:57:80:79:2B:D1:29:D9:C5:AF:2E:83:0E:5C:E8:CB:79:F8:2D
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42C9C7D8
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/y9tXgHkr0SnZxa8ugw5c6Mt5-C0.roa
Signing time: Mon 02 May 2022 13:05:59 +0000
ROA not before: Mon 02 May 2022 13:05:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41850
IP address blocks: 89.39.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1120520152 (0x42c9c7d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 2 13:05:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbdb5780792bd129d9c5af2e830e5ce8cb79f82d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:19:be:b4:0a:13:eb:01:93:5a:35:01:88:f0:
ae:3f:02:4b:9a:62:4a:17:e0:0b:d9:34:2d:e2:04:
ad:6f:a6:5b:a6:19:37:57:af:bd:e0:1d:e2:97:a7:
b0:d0:eb:4a:dd:8c:35:59:d7:10:55:c1:a0:16:e0:
f9:59:d0:9a:93:52:a0:92:da:2e:dc:19:b5:24:8b:
80:48:aa:ae:b9:79:06:57:de:c0:4d:48:6d:df:bc:
4e:68:de:e5:c7:39:f2:0c:f8:af:8f:91:d5:a3:20:
f3:6e:21:8a:41:6c:4e:90:c3:bb:52:30:69:b3:b8:
4e:8b:25:1c:d1:ad:0d:d0:03:0f:dd:1a:db:bb:05:
e8:1e:45:5f:0c:57:e8:a8:1d:ba:c4:5f:d6:86:48:
3b:a0:8f:74:52:8b:04:85:4d:a5:0b:4e:ae:40:cf:
6b:ef:e1:d6:48:a1:1a:f0:16:7b:29:3c:d3:96:c7:
de:4c:76:2d:70:53:01:f5:4e:9e:9f:32:b6:e0:63:
fe:f0:a7:9d:4a:a1:bc:b8:81:2b:82:a2:f4:f0:06:
1e:86:fa:73:0e:03:61:d7:cd:7a:41:10:59:e4:0f:
8e:59:fc:27:b8:62:3e:74:d3:a0:e0:60:d1:f7:50:
f4:f5:65:7f:56:6b:e0:38:f8:90:c4:58:0e:63:2c:
16:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:DB:57:80:79:2B:D1:29:D9:C5:AF:2E:83:0E:5C:E8:CB:79:F8:2D
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/y9tXgHkr0SnZxa8ugw5c6Mt5-C0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.248.0/22
Signature Algorithm: sha256WithRSAEncryption
49:8c:af:d9:09:14:28:5e:86:3b:aa:e9:0b:e3:88:93:d7:b0:
70:98:10:be:92:05:ec:d0:d8:9a:a9:c4:fc:3a:ad:4c:65:38:
c4:b1:02:ab:c7:0b:f4:85:58:2f:26:83:75:73:22:20:da:67:
1c:01:e9:10:52:7d:f3:d4:95:aa:85:47:95:f8:12:1d:60:97:
8f:e3:4d:63:c1:78:53:3f:dd:a3:63:48:7a:be:5b:bd:06:36:
62:ff:32:d2:a9:28:17:5b:76:81:ba:a4:0a:68:ad:8b:77:59:
47:52:fb:c4:8f:38:ca:1b:48:ec:ea:41:a5:d0:e2:42:7f:48:
9f:29:65:6a:ea:b0:41:90:db:5b:cc:a5:17:61:02:ea:0b:51:
5a:27:c6:d9:7f:d5:f9:2a:fd:c5:8f:dd:75:44:d8:24:e7:48:
c8:50:13:07:50:aa:55:28:f8:b7:1c:45:d8:a8:24:25:65:5d:
e3:02:8f:32:41:2a:11:fa:0b:45:f7:44:e8:e6:c8:18:f2:30:
ae:84:b2:95:d6:86:8f:fa:bc:8d:f3:17:19:78:fd:aa:ef:d4:
50:6c:22:3e:dd:d9:01:ad:73:59:63:d5:e5:2c:5a:98:db:2e:
fb:e5:7b:9c:8d:a8:d1:ae:5d:fc:6c:7f:88:8e:c3:9a:57:ba:
d8:30:c6:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:55 2025 by rpki-client