Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/e44bd7-0f70-45c8-856e-40e2ef3383b0/1/lRc4eeb5QmK-s_hFtyHS4LeGAf8.roa
File: lRc4eeb5QmK-s_hFtyHS4LeGAf8.roa (raw, json)
Hash identifier: vHW95d7/J3h0xeAd8B5YxjSPHvyYJU0XLgTgRPva2Kc=
Subject key identifier: 95:17:38:79:E6:F9:42:62:BE:B3:F8:45:B7:21:D2:E0:B7:86:01:FF
Certificate issuer: /CN=7981ea4d507fb0ae07159f6f88def958430fd070
Certificate serial: 72BD82
Authority key identifier: 79:81:EA:4D:50:7F:B0:AE:07:15:9F:6F:88:DE:F9:58:43:0F:D0:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eYHqTVB_sK4HFZ9viN75WEMP0HA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/e44bd7-0f70-45c8-856e-40e2ef3383b0/1/lRc4eeb5QmK-s_hFtyHS4LeGAf8.roa
Signing time: Sat 29 Jan 2022 09:20:35 +0000
ROA not before: Sat 29 Jan 2022 09:20:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202269
IP address blocks: 89.106.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7519618 (0x72bd82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7981ea4d507fb0ae07159f6f88def958430fd070
Validity
Not Before: Jan 29 09:20:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95173879e6f94262beb3f845b721d2e0b78601ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:55:9b:66:88:e1:dd:0a:4f:c0:3e:41:35:e8:
55:9f:5d:ee:73:6b:d2:40:ac:39:33:04:07:fb:08:
f1:c2:e9:f6:00:66:be:36:55:4b:4e:ae:02:45:86:
c7:a0:7a:10:33:0d:f7:0e:f0:2b:f2:25:92:5c:5b:
84:49:fe:23:72:13:49:bf:8c:8b:3a:3c:53:4e:12:
19:d8:5a:3b:7e:9a:89:66:d9:7a:a0:e7:b2:e4:75:
60:ce:a6:9a:de:22:5a:e1:8e:60:d5:11:79:25:c6:
c5:ae:c1:41:0f:28:d4:0a:0e:e3:f1:e1:ae:cc:2d:
bd:4f:7f:7a:9e:ef:b5:4c:0c:8f:d0:60:fc:b6:0b:
db:cc:34:3b:24:25:1a:85:6e:63:51:57:e5:03:83:
e5:0c:30:91:91:62:9b:97:e5:e9:bb:62:5f:ec:b7:
07:1a:18:0f:a9:79:05:7a:c1:2c:d0:41:c8:9b:de:
0f:37:e9:cd:0e:fb:2b:a6:03:fb:7e:96:7c:39:0c:
86:16:64:d9:63:57:49:33:0a:6e:d5:1f:1a:33:55:
e0:70:6a:06:e8:7a:03:f0:26:04:48:0f:6c:3e:93:
cf:ad:83:44:ec:60:a0:6d:4b:16:5e:03:e2:bd:c1:
a9:c5:4b:f9:89:bf:70:ed:22:8b:1f:e8:1d:e2:7f:
88:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:17:38:79:E6:F9:42:62:BE:B3:F8:45:B7:21:D2:E0:B7:86:01:FF
X509v3 Authority Key Identifier:
keyid:79:81:EA:4D:50:7F:B0:AE:07:15:9F:6F:88:DE:F9:58:43:0F:D0:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYHqTVB_sK4HFZ9viN75WEMP0HA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/e44bd7-0f70-45c8-856e-40e2ef3383b0/1/lRc4eeb5QmK-s_hFtyHS4LeGAf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/e44bd7-0f70-45c8-856e-40e2ef3383b0/1/eYHqTVB_sK4HFZ9viN75WEMP0HA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.106.206.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:e8:d7:35:9c:e3:9c:aa:e3:2f:15:07:d7:e2:eb:1d:a6:02:
0f:69:38:8e:1e:6c:7d:bf:a4:36:b7:5c:2f:94:43:9c:e9:2a:
29:6d:56:08:df:e2:60:9f:6a:92:07:35:41:c5:51:f8:5b:d5:
4c:04:4c:b9:62:64:12:fb:b8:f5:df:6d:12:20:94:eb:38:d3:
07:f6:f0:8b:96:f0:5c:75:29:1a:db:bf:1a:74:b8:ac:94:ae:
30:e5:42:b9:8c:57:cd:be:8d:37:fa:b5:4d:92:94:f4:29:92:
1e:6e:64:88:e9:a5:c0:9c:59:18:b7:39:9d:e6:ea:1f:16:90:
7a:fd:ce:58:11:7f:50:7d:84:e5:34:20:bd:40:21:70:9a:b1:
0a:5f:29:f1:94:0c:8c:1f:e9:d1:3e:db:f8:48:17:39:92:d4:
e0:79:cb:69:9c:d1:33:ca:48:73:37:93:54:0f:e5:08:15:06:
a1:b6:94:3e:b9:2f:a9:0a:cd:56:18:92:95:8b:88:31:ef:19:
43:9e:fe:eb:e9:b4:1c:50:f3:c8:65:b1:74:e1:21:81:97:1f:
fc:5f:0d:61:52:cf:a1:28:83:4d:d6:ce:00:2f:bd:8c:b3:fe:
20:4c:59:f8:ef:6f:f2:23:11:c7:77:e2:ac:0d:ba:89:89:0c:
1c:e5:3b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:11 2023 by rpki-client on console-ams.rpki-client.org