Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/bcRLJqCvZZu6egbuXmGZ_EZMZJ0.roa
File: bcRLJqCvZZu6egbuXmGZ_EZMZJ0.roa (raw, json)
Hash identifier: b7TWhrFV+42lY6aoan1In4oY7cU3op24nYQrU11umD0=
Subject key identifier: 6D:C4:4B:26:A0:AF:65:9B:BA:7A:06:EE:5E:61:99:FC:46:4C:64:9D
Certificate issuer: /CN=c38ca1d418c218e26f795181a9e3bb7b79d4443f
Certificate serial: 0D86382D
Authority key identifier: C3:8C:A1:D4:18:C2:18:E2:6F:79:51:81:A9:E3:BB:7B:79:D4:44:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4yh1BjCGOJveVGBqeO7e3nURD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/bcRLJqCvZZu6egbuXmGZ_EZMZJ0.roa
Signing time: Sat 01 Jan 2022 11:59:07 +0000
ROA not before: Sat 01 Jan 2022 11:59:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41203
IP address blocks: 89.207.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226900013 (0xd86382d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38ca1d418c218e26f795181a9e3bb7b79d4443f
Validity
Not Before: Jan 1 11:59:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dc44b26a0af659bba7a06ee5e6199fc464c649d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:83:42:05:54:dd:f5:36:bc:5d:d4:ee:4c:20:
c3:3c:5f:ce:89:74:18:06:04:a6:14:1b:bd:67:d7:
3a:36:55:a6:a9:9d:2a:43:d6:ad:b5:23:2c:68:b4:
41:10:1c:03:84:19:b4:f2:1a:ff:d8:ec:35:02:cb:
1f:db:3c:f6:cf:48:9c:4d:da:8a:0d:84:0f:a3:8e:
a7:7e:64:82:87:fa:57:69:9e:e1:aa:c3:0c:63:83:
10:88:6d:c8:af:00:44:da:dd:90:8a:b5:e1:01:7a:
9e:8d:e0:a4:d9:2b:2f:88:7c:61:4e:c4:76:3e:37:
a1:84:11:d3:c3:17:a0:b5:9e:30:53:ff:a0:ce:61:
08:75:61:38:19:55:b7:f7:08:e2:fb:7c:a4:16:43:
ae:bf:7b:fd:75:02:bd:5c:d9:0d:21:17:a5:12:38:
c0:19:1a:43:25:1c:c8:d2:ef:76:3a:29:7d:a2:82:
fd:21:1c:ff:3a:b7:42:f5:10:0c:28:ea:eb:b5:10:
7d:f5:67:4e:b0:db:88:39:5c:78:7f:1c:c5:14:6b:
ca:e7:53:d8:c5:de:f6:11:90:52:3b:db:ac:5e:13:
39:72:00:f3:aa:c1:10:ee:19:25:24:8c:7e:bf:56:
b5:45:7b:f2:2d:61:6e:4c:9d:80:fe:e5:d9:99:4d:
8b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C4:4B:26:A0:AF:65:9B:BA:7A:06:EE:5E:61:99:FC:46:4C:64:9D
X509v3 Authority Key Identifier:
keyid:C3:8C:A1:D4:18:C2:18:E2:6F:79:51:81:A9:E3:BB:7B:79:D4:44:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4yh1BjCGOJveVGBqeO7e3nURD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/bcRLJqCvZZu6egbuXmGZ_EZMZJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/w4yh1BjCGOJveVGBqeO7e3nURD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.48.0/21
Signature Algorithm: sha256WithRSAEncryption
b5:97:0a:97:0e:1b:fb:15:c0:7a:a0:ee:d1:c7:cf:89:f7:76:
6c:a0:98:28:7b:e6:3f:c5:0e:08:8d:75:38:03:ae:16:5c:16:
40:15:9c:63:94:52:75:dc:74:0f:24:07:61:0e:45:b0:e7:fa:
f9:15:15:76:fd:2a:40:88:86:e5:68:64:d8:cd:48:0e:3f:90:
1a:97:1f:7d:12:85:77:69:2e:91:c0:1e:8f:49:e4:ee:6c:9f:
4f:72:b6:5c:9f:f6:15:84:ca:ff:46:29:f1:57:ce:70:fc:02:
11:e9:bf:ad:13:ef:57:af:a6:a6:e3:bf:29:9f:42:ad:81:2b:
2e:81:82:49:0e:be:d9:d4:d8:2e:af:51:3c:bc:38:31:7c:45:
51:9c:75:b3:17:04:45:32:4b:e3:93:53:d5:8d:d6:9e:3c:2b:
6a:b4:f6:b0:8f:eb:c5:8d:fb:85:73:b1:f1:62:1f:49:35:ee:
0b:09:e5:2c:79:21:12:a5:9f:7b:b3:a4:8f:b4:8b:93:5d:64:
59:61:b1:ee:f4:52:5c:86:0f:43:43:50:b4:a0:60:be:bb:a5:
78:9b:e3:e6:91:6c:cd:34:63:bd:fa:21:94:42:e7:07:67:b7:
26:17:dc:60:3e:0e:ee:a3:55:dc:a1:d9:fa:b3:06:2e:02:12:
4a:ce:74:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:02 2024 by rpki-client on console-ams.rpki-client.org