Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/qEdW2FB-O1C6-nYh_jAgdsDVs5w.roa
File: qEdW2FB-O1C6-nYh_jAgdsDVs5w.roa (raw, json)
Hash identifier: JS59XhIVlJt+jWUscCyh4stGQt0hPGRG9gI9xicc81U=
Subject key identifier: A8:47:56:D8:50:7E:3B:50:BA:FA:76:21:FE:30:20:76:C0:D5:B3:9C
Certificate issuer: /CN=4cd47b8b8aa9fbcccff3d507814fc74464a2abf0
Certificate serial: E31D
Authority key identifier: 4C:D4:7B:8B:8A:A9:FB:CC:CF:F3:D5:07:81:4F:C7:44:64:A2:AB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNR7i4qp-8zP89UHgU_HRGSiq_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/qEdW2FB-O1C6-nYh_jAgdsDVs5w.roa
Signing time: Fri 22 Apr 2022 05:27:28 +0000
ROA not before: Fri 22 Apr 2022 05:27:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60090
IP address blocks: 89.200.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58141 (0xe31d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd47b8b8aa9fbcccff3d507814fc74464a2abf0
Validity
Not Before: Apr 22 05:27:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a84756d8507e3b50bafa7621fe302076c0d5b39c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:e3:3d:b3:85:7c:21:b0:2e:d7:0d:a9:a2:
6c:41:6d:49:8f:01:30:f0:e3:fc:f1:09:f5:2e:c8:
45:41:3b:f8:83:1e:e0:d4:23:5e:cf:81:54:fd:7a:
db:3d:0d:5e:10:a4:0d:23:03:4f:fc:c5:2f:c9:a7:
66:e0:b3:dd:7c:5d:1d:f1:e6:a6:d2:48:bb:14:52:
26:e6:d3:f0:05:e8:07:99:88:73:49:4f:1c:7f:c4:
5d:67:cb:27:6b:b4:ae:98:4e:75:4e:e7:d4:3e:52:
1c:64:04:54:c4:5e:b3:ee:64:97:f6:b2:34:03:0c:
12:03:fc:a6:bb:d7:6b:37:c6:e8:63:1b:75:f3:a2:
c9:45:d9:c6:07:4b:5b:f9:91:bc:b8:d9:39:c9:5d:
e8:b8:97:65:d4:c5:86:b8:28:19:83:6b:49:42:97:
a1:bc:e2:45:60:7d:8e:0a:1d:b9:44:95:7c:9f:b9:
7c:69:cc:2e:c6:5e:65:da:f5:0c:cc:59:b4:65:00:
38:af:76:57:4c:7a:6b:ff:0e:f5:bc:c6:a1:63:81:
15:ae:89:e0:2b:41:2f:29:ee:33:c5:bf:0a:65:20:
ae:94:6c:43:51:96:9d:6f:5f:51:14:f4:c4:53:ba:
8e:c7:47:a5:b9:ba:ce:36:3c:6f:cc:e4:ab:e1:2a:
90:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:47:56:D8:50:7E:3B:50:BA:FA:76:21:FE:30:20:76:C0:D5:B3:9C
X509v3 Authority Key Identifier:
keyid:4C:D4:7B:8B:8A:A9:FB:CC:CF:F3:D5:07:81:4F:C7:44:64:A2:AB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNR7i4qp-8zP89UHgU_HRGSiq_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/qEdW2FB-O1C6-nYh_jAgdsDVs5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5ca294-897b-4e49-a9c7-bc48b41f498b/1/TNR7i4qp-8zP89UHgU_HRGSiq_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.200.243.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:46:c6:ff:42:3e:d7:ba:ec:f8:78:4a:3f:cf:17:3e:de:68:
96:c6:91:2a:3a:52:d6:27:cb:d1:c3:8d:4b:2f:21:a8:4e:7d:
d3:39:b0:87:9c:75:fd:52:c1:81:b0:df:85:93:51:84:54:0c:
9e:cb:95:03:a8:f2:ea:93:e2:33:33:8a:d3:a4:2b:26:1f:d0:
b7:f5:c3:78:17:17:77:e5:05:4a:b4:59:59:27:3a:dc:7f:57:
25:f9:7e:ec:ec:3a:be:71:49:68:c4:ee:bb:ec:99:d3:02:f7:
09:8d:43:c9:c3:9a:af:fc:1b:ed:e3:2d:c3:c1:8b:f8:0b:73:
d2:e1:0f:0d:b7:f5:4e:d3:82:ca:0c:5a:c2:d7:4b:33:c7:e2:
a9:2c:fa:65:dd:9d:95:0b:0b:72:33:9b:2b:ea:33:75:34:41:
f2:b9:0f:a9:f7:e0:65:60:69:73:c4:5b:2e:5f:7f:69:59:0a:
4c:c4:ef:9f:8f:02:2b:c0:0a:ad:d3:88:73:66:b6:74:d6:5e:
e3:c1:84:37:62:6b:0b:17:b2:3f:ff:8b:b0:17:dc:b7:7c:d0:
b9:bf:8f:29:43:c6:40:5d:08:68:5d:27:ac:41:a8:d4:cf:fb:
82:07:8f:40:d9:a0:e4:c0:a3:a9:d5:71:e7:23:7c:41:55:c3:
62:d8:78:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:46 2024 by rpki-client on console-ams.rpki-client.org