Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/M81I2u9dF05Q2tWgZSwyAV6hgvY.roa
File: M81I2u9dF05Q2tWgZSwyAV6hgvY.roa (raw, json)
Hash identifier: LcbUKKwIFRW/Ig1ydyGPW8M1oRAZH74j9ar7CQ4eSKQ=
Subject key identifier: 33:CD:48:DA:EF:5D:17:4E:50:DA:D5:A0:65:2C:32:01:5E:A1:82:F6
Certificate issuer: /CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Certificate serial: 015C3E19
Authority key identifier: 0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/M81I2u9dF05Q2tWgZSwyAV6hgvY.roa
Signing time: Sun 16 Jan 2022 07:15:02 +0000
ROA not before: Sun 16 Jan 2022 07:15:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 89.248.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22822425 (0x15c3e19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Validity
Not Before: Jan 16 07:15:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33cd48daef5d174e50dad5a0652c32015ea182f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5b:dc:90:0c:4f:0d:ce:1b:69:33:0c:14:e5:
82:8b:2c:03:c2:3e:34:d1:25:04:3b:0a:ca:a6:d2:
c5:cc:47:9f:da:78:f5:00:59:a5:14:c2:1a:25:3a:
78:c0:e7:7d:fb:66:57:1a:50:cf:3f:b9:58:fe:a1:
39:dd:f2:fe:d7:95:1b:41:49:92:7f:b4:38:dc:4e:
15:58:79:a7:2c:53:c9:58:0e:d0:b8:ec:e4:f3:44:
b8:6c:ab:1d:b1:3d:8a:d1:19:21:d7:83:30:81:29:
3a:76:57:20:a7:15:a3:cc:72:e2:55:81:df:72:30:
3e:88:3b:8b:68:ff:61:b5:92:04:f1:6a:89:b2:30:
f8:6b:75:f4:95:29:68:e8:d3:f7:a5:72:66:10:46:
a0:c0:e8:2c:66:55:42:6d:a2:d1:ac:06:79:d8:98:
3f:9c:89:2b:c6:f2:00:5e:eb:a7:ec:50:5a:9b:a7:
e8:27:a5:16:6b:ce:4f:cb:05:70:14:7c:7f:bb:2b:
a1:ba:97:fe:be:55:bb:14:b8:45:e4:65:9b:74:b8:
2b:fe:63:01:18:6d:d3:6b:d1:55:2f:4e:26:45:b2:
3a:38:83:5d:40:0a:07:18:f1:db:df:8d:98:5a:66:
b4:37:59:ab:ca:38:57:f2:ee:2d:d8:1b:70:81:4f:
ba:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CD:48:DA:EF:5D:17:4E:50:DA:D5:A0:65:2C:32:01:5E:A1:82:F6
X509v3 Authority Key Identifier:
keyid:0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/M81I2u9dF05Q2tWgZSwyAV6hgvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/Ds2ZqhcBdjpaHtm7430swJMpybo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.71.0/24
Signature Algorithm: sha256WithRSAEncryption
df:b2:89:fd:ec:1a:93:3f:3d:24:6a:1f:80:32:ec:4a:e9:f6:
15:f2:11:76:30:f9:7a:46:8b:d9:84:7d:6a:ab:20:16:67:38:
09:26:7c:0d:75:9e:94:a7:d0:e1:c5:88:cf:17:c9:43:a5:03:
d5:93:53:ec:b1:f1:93:18:64:9b:60:6e:74:29:30:b5:d6:fd:
0a:0b:4d:39:58:9e:12:23:4f:a7:03:65:f1:ec:57:fd:61:b9:
91:82:02:6a:8c:cc:b9:b2:0b:6b:75:5e:6f:9c:82:fd:1c:13:
fa:84:d3:5d:d1:f4:9d:df:66:65:8b:d2:4d:36:c9:3d:7d:3a:
07:54:7c:22:5a:f8:45:4b:27:8d:be:99:3a:39:5a:6b:1e:77:
62:c7:c2:ba:1a:74:9b:fa:20:d2:2b:6b:7d:d3:e5:0d:ea:6b:
d2:3a:43:e5:07:cb:6d:2d:fc:00:09:49:ce:ad:b2:13:dc:6d:
c4:7f:d8:78:71:97:f9:fa:53:c2:88:0f:23:7c:e7:c7:2b:9e:
db:93:70:ec:7d:b2:74:0d:89:22:f1:83:ab:b3:57:81:c8:78:
2e:19:ff:7f:79:a8:e3:e5:de:73:08:4a:0b:b2:c7:58:42:e3:
4a:07:34:cc:c4:37:29:9d:e7:12:cb:b3:25:37:d8:c5:d5:25:
ff:02:41:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:48 2023 by rpki-client on console-fra.rpki-client.org