Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/198c6b-d715-47b6-86c0-4d22c6b5b1fe/1/pQujSRFBF5uBWTO5dJx5urHbB9o.roa
File: pQujSRFBF5uBWTO5dJx5urHbB9o.roa (raw, json)
Hash identifier: Xr6YQwRVMi6NYn0kUqVjg1HcCJjTwBEIu8C3CwlCNlU=
Subject key identifier: A5:0B:A3:49:11:41:17:9B:81:59:33:B9:74:9C:79:BA:B1:DB:07:DA
Certificate issuer: /CN=762656c5e66b82c04654be1a25629b1fd6a59456
Certificate serial: 021FCCD2
Authority key identifier: 76:26:56:C5:E6:6B:82:C0:46:54:BE:1A:25:62:9B:1F:D6:A5:94:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diZWxeZrgsBGVL4aJWKbH9allFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/198c6b-d715-47b6-86c0-4d22c6b5b1fe/1/pQujSRFBF5uBWTO5dJx5urHbB9o.roa
Signing time: Sat 01 Jan 2022 05:56:03 +0000
ROA not before: Sat 01 Jan 2022 05:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54238
IP address blocks: 89.255.208.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35638482 (0x21fccd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762656c5e66b82c04654be1a25629b1fd6a59456
Validity
Not Before: Jan 1 05:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a50ba3491141179b815933b9749c79bab1db07da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5c:85:b8:fa:e2:80:96:b1:36:bb:5d:79:52:
8e:13:10:98:15:f9:a7:83:bf:16:92:82:0a:d3:c5:
4b:ba:ea:43:6d:d4:98:1c:bb:03:ee:e9:46:f4:b6:
89:75:16:d4:90:c0:80:0b:b4:95:72:bd:d2:fc:89:
71:af:37:87:a4:c9:d8:ad:ca:80:ac:22:0f:a2:65:
a1:67:54:4d:41:3e:fa:8a:4a:24:03:60:8a:da:a0:
74:d7:7f:33:72:85:a0:e6:a8:b8:99:cb:c1:d9:c6:
b1:58:a7:89:ab:72:0c:c0:d6:c3:f1:2b:c9:a0:05:
a7:ce:75:b4:c3:a3:16:bc:ee:ee:b8:d8:9c:0f:97:
a6:39:08:0a:c8:a3:f4:68:ae:4c:92:66:52:ba:3d:
e4:6c:db:a8:0e:f8:f1:77:ff:1d:97:c7:f5:a7:d1:
6c:e8:19:a0:c8:9a:88:90:a0:75:99:8b:96:c8:31:
50:15:1c:03:9a:50:46:14:11:fa:5a:46:74:02:d7:
53:ea:8f:b4:07:72:c0:a8:0f:fa:fb:aa:7a:42:b7:
63:ad:f3:db:2f:18:5c:80:1b:44:17:cc:95:65:fd:
1a:3e:ea:d8:0f:6e:3f:d1:53:fd:07:1e:18:8e:53:
55:2e:b7:88:83:83:3d:47:6c:37:cd:d0:a2:b1:84:
2b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:0B:A3:49:11:41:17:9B:81:59:33:B9:74:9C:79:BA:B1:DB:07:DA
X509v3 Authority Key Identifier:
keyid:76:26:56:C5:E6:6B:82:C0:46:54:BE:1A:25:62:9B:1F:D6:A5:94:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diZWxeZrgsBGVL4aJWKbH9allFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/198c6b-d715-47b6-86c0-4d22c6b5b1fe/1/pQujSRFBF5uBWTO5dJx5urHbB9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/198c6b-d715-47b6-86c0-4d22c6b5b1fe/1/diZWxeZrgsBGVL4aJWKbH9allFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.255.208.0/21
Signature Algorithm: sha256WithRSAEncryption
72:6d:06:87:bf:ca:9e:59:57:16:ad:07:43:1c:5b:43:13:a1:
3a:18:44:87:38:c7:03:a0:1e:65:70:06:ee:c9:44:b1:45:23:
f0:38:5c:1e:ae:e6:e9:e0:5c:ae:af:ba:53:3b:d4:d6:a2:42:
d5:a8:c0:66:d9:78:86:a1:6a:c1:8e:f3:ef:c8:bd:02:09:b3:
10:d0:1a:da:32:30:3a:07:49:24:30:f3:0b:4c:62:7d:79:0b:
47:8e:a1:35:54:ba:41:e0:8b:43:78:02:f3:b2:ff:db:5f:d9:
dc:b9:b8:81:20:48:6f:78:cb:84:9b:85:47:71:61:70:5a:9f:
3e:ab:5e:f2:6c:7e:9b:80:4b:61:31:81:ca:a7:e5:bb:01:2f:
97:89:ed:ad:6a:c8:09:d4:ac:12:d8:4d:8d:c8:b9:14:a1:4b:
5d:88:b7:e8:dc:33:68:fd:39:7a:6d:a8:14:86:5e:48:0b:04:
a6:01:a7:cf:33:fa:0e:30:a0:59:6e:b2:fd:b6:37:41:5f:08:
5f:ba:11:51:82:70:18:3f:f6:8d:a2:53:69:3b:a1:7e:d3:7a:
11:c7:8d:4b:4f:1c:e7:88:f7:1d:d5:8c:2f:6b:e1:7d:81:3c:
03:a5:5f:0d:36:e6:da:1c:b5:60:2b:7b:3a:5b:02:6d:8e:04:
84:64:cf:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:12 2023 by rpki-client on console-ams.rpki-client.org