Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/hvVx5F_TWDisp8pcocnUJGX5qaQ.roa
File: hvVx5F_TWDisp8pcocnUJGX5qaQ.roa (raw, json)
Hash identifier: TlnJXJvbv+UUf1WxVfGxsD/ng8QqEqhBsp0XPtFi0hU=
Subject key identifier: 86:F5:71:E4:5F:D3:58:38:AC:A7:CA:5C:A1:C9:D4:24:65:F9:A9:A4
Certificate issuer: /CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Certificate serial: 0184D88BC2F8F3A191B9DC724CDDF8B34962
Authority key identifier: 0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/hvVx5F_TWDisp8pcocnUJGX5qaQ.roa
Signing time: Sat 03 Dec 2022 15:12:28 +0000
ROA not before: Sat 03 Dec 2022 15:12:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 89.248.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d8:8b:c2:f8:f3:a1:91:b9:dc:72:4c:dd:f8:b3:49:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ecd99aa1701763a5a1ed9bbe37d2cc09329c9ba
Validity
Not Before: Dec 3 15:12:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86f571e45fd35838aca7ca5ca1c9d42465f9a9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e3:2e:a7:82:7f:94:13:1b:e4:29:97:ce:9e:
95:6c:dc:47:a6:04:77:91:5c:48:3e:2b:31:68:b8:
5d:44:55:13:4c:e4:21:ad:12:a5:bd:bb:2f:f1:9d:
86:0b:07:f6:20:79:a6:df:73:4b:a2:86:36:67:0b:
39:fd:53:46:64:91:bf:f8:58:26:b9:2a:08:37:9a:
6b:68:94:9f:2f:eb:80:ed:03:c3:c4:3d:68:5f:07:
bc:dc:79:a1:19:6c:2d:c3:3d:6c:cf:42:b9:18:32:
78:ea:de:71:58:0c:de:4b:1c:2f:cc:f3:7d:45:d8:
35:d4:ee:51:6f:d4:47:25:64:e8:85:00:5c:8f:75:
98:87:4c:25:03:8f:b6:99:fc:e9:c7:0c:ae:43:43:
9d:4b:37:1d:44:90:fe:94:d9:23:be:34:43:3e:36:
0f:49:7f:70:bf:3a:3d:11:ba:f3:4d:42:fe:05:2e:
7f:1b:1e:d5:bf:48:6f:5a:9e:50:f1:42:38:f3:9d:
72:c4:ba:5c:c9:e8:79:ec:4b:cc:b3:e9:b6:2e:62:
5e:2f:35:bd:95:e9:6a:e4:97:93:57:65:20:d0:e9:
3e:61:15:13:80:dc:ca:00:72:2e:82:ea:0f:82:19:
6b:b8:fa:92:1e:91:3e:4e:de:e9:16:5c:97:84:21:
bd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F5:71:E4:5F:D3:58:38:AC:A7:CA:5C:A1:C9:D4:24:65:F9:A9:A4
X509v3 Authority Key Identifier:
keyid:0E:CD:99:AA:17:01:76:3A:5A:1E:D9:BB:E3:7D:2C:C0:93:29:C9:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ds2ZqhcBdjpaHtm7430swJMpybo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/hvVx5F_TWDisp8pcocnUJGX5qaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e1bd2f-6197-4465-a368-a7dea5727c2c/1/Ds2ZqhcBdjpaHtm7430swJMpybo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.71.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:6c:4d:9a:53:34:47:c3:79:e1:a0:73:31:6e:14:5e:91:8f:
3c:85:5f:6a:87:b1:80:d3:9f:dd:58:ba:e7:60:c2:47:a1:8e:
d2:93:b8:6b:e0:f0:fa:b1:91:00:c3:5b:e1:0a:61:1e:62:93:
12:b3:25:01:2b:b2:b1:45:e7:86:e0:fa:62:ff:04:46:ad:96:
00:98:73:60:8b:ec:a1:b9:0f:e6:a3:72:3f:59:a7:35:68:fc:
a7:2a:3c:49:aa:03:d9:df:7b:75:00:95:1a:a3:2a:a6:f3:25:
c3:48:37:51:f3:df:b7:92:e6:ff:82:17:08:35:10:8e:44:7b:
83:aa:6d:7e:7a:f6:2d:18:5d:14:6d:8a:96:60:0f:59:5e:c4:
a9:56:5e:d2:8b:96:67:b0:d5:5a:9b:30:53:e9:9d:ad:90:34:
3f:1c:a3:f0:3a:b9:8b:cc:a2:fc:56:2c:aa:82:c4:c0:0c:37:
11:6b:11:d0:ed:c7:a8:d1:01:5c:e2:db:13:19:df:58:42:aa:
f3:9f:1c:95:6f:8d:73:c7:f1:16:0e:47:bc:ea:4d:f5:2a:08:
d2:74:78:96:ff:fa:93:c8:bf:bd:7b:91:f6:7e:e5:9d:7d:f4:
26:91:85:3e:d0:44:a9:6d:c6:dd:3d:93:c0:0f:cb:d1:fe:cd:
45:72:07:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:48 2023 by rpki-client on console-fra.rpki-client.org