Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/jUVtN14Lb13sSiVcsOfx-MLEYng.roa
File: jUVtN14Lb13sSiVcsOfx-MLEYng.roa (raw, json)
Hash identifier: WbZqgPlQe18GWDQ9WkAs5/m8PI2RtAX0qiTBQ0nE8ac=
Subject key identifier: 8D:45:6D:37:5E:0B:6F:5D:EC:4A:25:5C:B0:E7:F1:F8:C2:C4:62:78
Certificate issuer: /CN=ee1b0899e38a96b54fc4cbcd10ef539c54ed4d38
Certificate serial: 073D3332
Authority key identifier: EE:1B:08:99:E3:8A:96:B5:4F:C4:CB:CD:10:EF:53:9C:54:ED:4D:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hsImeOKlrVPxMvNEO9TnFTtTTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/jUVtN14Lb13sSiVcsOfx-MLEYng.roa
Signing time: Sat 01 Jan 2022 06:01:41 +0000
ROA not before: Sat 01 Jan 2022 06:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8789
IP address blocks: 90.155.112.0/21 maxlen: 21
90.155.112.0/20 maxlen: 20
90.155.120.0/21 maxlen: 21
90.155.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121451314 (0x73d3332)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1b0899e38a96b54fc4cbcd10ef539c54ed4d38
Validity
Not Before: Jan 1 06:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d456d375e0b6f5dec4a255cb0e7f1f8c2c46278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2e:48:6a:f0:fd:08:9c:62:6b:04:5c:36:bf:
e2:a1:0d:c2:b9:f5:ee:1d:6e:c4:13:8e:69:c6:ff:
18:54:8b:2d:02:3b:65:86:95:df:88:0d:9f:9f:ad:
89:2a:66:07:01:6d:61:c3:1f:19:1a:16:ad:29:89:
4a:b1:7c:56:45:69:d9:d5:f3:4f:bc:d3:f0:a0:e0:
7e:bb:31:81:90:3e:ec:52:47:9e:7c:29:04:e0:fe:
b2:75:42:95:f3:b7:9e:d2:6b:6d:97:b2:2e:70:54:
8a:1a:95:1d:1b:7c:34:5e:93:af:18:4a:a6:f9:c8:
9a:bd:af:66:c6:41:90:bb:1f:98:f1:a5:cc:c7:29:
d0:f7:12:55:ed:c2:64:a3:be:30:29:f6:bf:c8:fc:
b5:95:62:74:f2:63:ec:ea:1b:35:15:6c:5f:fb:39:
ef:5a:9c:17:ca:e4:af:6a:5d:f5:89:5a:3d:95:d4:
08:2e:1d:c8:f3:66:b0:79:a1:3e:b3:6b:cb:2d:41:
83:32:08:53:2a:b7:2f:30:9e:de:a3:8e:0d:f7:f8:
84:9b:57:c3:3b:b1:09:1c:1d:2e:e1:c2:04:f9:01:
8d:de:c7:75:60:a9:f6:8b:75:56:79:a5:fa:fb:20:
cf:76:5c:90:68:70:bc:ee:1a:42:2c:58:b0:d1:b7:
90:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:45:6D:37:5E:0B:6F:5D:EC:4A:25:5C:B0:E7:F1:F8:C2:C4:62:78
X509v3 Authority Key Identifier:
keyid:EE:1B:08:99:E3:8A:96:B5:4F:C4:CB:CD:10:EF:53:9C:54:ED:4D:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hsImeOKlrVPxMvNEO9TnFTtTTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/jUVtN14Lb13sSiVcsOfx-MLEYng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb5a43-817b-449b-bcfc-adf6dab88c84/1/7hsImeOKlrVPxMvNEO9TnFTtTTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.155.112.0/20
Signature Algorithm: sha256WithRSAEncryption
20:34:10:ea:08:05:6b:32:b3:78:2e:fe:16:cd:2e:16:d3:25:
ab:d6:49:e2:56:17:7e:9a:1f:54:da:c0:75:5e:c7:3f:50:4f:
13:b6:66:ac:b0:ca:aa:4d:0c:b9:8d:68:31:85:b4:3f:13:a1:
d1:eb:cc:8f:c1:fc:ca:35:d4:7d:8a:cd:cb:d9:69:b4:07:20:
a3:98:f4:48:68:e7:da:86:fc:78:bb:9d:ef:65:44:eb:30:e6:
3e:e1:a8:01:e7:61:bf:a1:f3:38:0c:6d:44:bb:08:f2:88:68:
7a:a5:0d:4b:cc:72:49:59:86:47:9b:cc:7c:0e:31:12:32:1b:
f6:37:0e:85:1c:2d:e3:6b:8a:fa:21:76:d9:80:3f:de:8b:59:
de:2c:04:6b:95:ee:24:97:b0:5a:05:92:20:c2:44:18:e3:73:
77:be:96:68:b5:45:d2:85:4b:9c:66:c5:48:59:25:d2:6d:f8:
59:21:ca:e2:49:23:96:86:5e:bb:6a:1d:1d:de:6b:8e:cc:b2:
07:86:1f:4e:05:29:a7:f6:b6:5b:17:6b:0d:45:39:92:33:af:
33:a8:d6:d0:d2:ed:27:2f:70:b0:0f:c3:cb:4c:4d:b2:ce:21:
d6:74:6a:76:30:75:1d:a1:e5:e6:63:0f:1f:df:14:34:ab:c8:
fc:31:bb:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:24 2024 by rpki-client on console-fra.rpki-client.org