Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/f6dc57-8268-4661-991c-84c3d302cf04/1/UQ-08FwAIFGRj5EDbLL02YlESRA.roa
File: UQ-08FwAIFGRj5EDbLL02YlESRA.roa (raw, json)
Hash identifier: RVUVoV1mw/I7E3Jgqx1mzgHkSdGEEEQDSUfYAfZ5nIM=
Subject key identifier: 51:0F:B4:F0:5C:00:20:51:91:8F:91:03:6C:B2:F4:D9:89:44:49:10
Certificate issuer: /CN=6ec92c898695e40198b9d92b681b9b954ebfaebb
Certificate serial: 03D3F5D1
Authority key identifier: 6E:C9:2C:89:86:95:E4:01:98:B9:D9:2B:68:1B:9B:95:4E:BF:AE:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsksiYaV5AGYudkraBublU6_rrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/f6dc57-8268-4661-991c-84c3d302cf04/1/UQ-08FwAIFGRj5EDbLL02YlESRA.roa
Signing time: Sat 01 Jan 2022 14:54:55 +0000
ROA not before: Sat 01 Jan 2022 14:54:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41311
IP address blocks: 89.249.128.0/21 maxlen: 24
89.249.136.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64222673 (0x3d3f5d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec92c898695e40198b9d92b681b9b954ebfaebb
Validity
Not Before: Jan 1 14:54:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=510fb4f05c002051918f91036cb2f4d989444910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e6:84:63:7e:b2:b2:e1:8c:a6:f6:bd:3f:7e:
6f:c0:9b:b7:ba:c6:64:e3:e1:5e:a6:48:08:41:1e:
6f:29:4d:67:0a:b5:97:f0:7a:82:a3:19:d5:ce:9b:
ca:72:70:e2:7b:e0:4c:b3:66:51:19:f6:7b:ef:9b:
e0:e3:04:c2:6a:8e:1b:ba:35:54:f6:f5:60:3e:38:
d0:bc:e5:33:74:77:a1:e0:d7:bc:52:dd:08:5f:74:
d7:d2:c7:9c:9a:5d:72:99:1b:90:d5:bc:b1:5b:8c:
42:56:c8:23:49:80:17:af:c9:dd:7c:07:5c:2f:44:
8f:79:f2:82:8a:c5:2b:24:74:d1:30:31:a3:9d:c8:
2b:22:3d:56:2f:42:44:83:6e:ae:50:c9:d2:c5:53:
1d:1e:a8:ba:f4:69:b9:1e:89:f4:4c:c5:89:4b:ad:
95:f5:a4:3f:13:8b:5f:48:1b:38:9a:cb:65:df:54:
3e:e1:65:b0:9f:60:fc:71:4e:80:60:0b:18:9b:b2:
40:65:ba:46:52:78:4a:b2:be:c3:b6:51:16:ed:91:
0b:7f:0d:dd:69:2c:14:d7:48:84:62:3f:c6:c3:5c:
7b:02:bd:2c:25:59:ff:ad:1f:f2:6d:b7:11:50:7f:
50:be:b0:9a:2d:6b:6d:9f:ef:05:57:76:6d:ba:df:
14:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0F:B4:F0:5C:00:20:51:91:8F:91:03:6C:B2:F4:D9:89:44:49:10
X509v3 Authority Key Identifier:
keyid:6E:C9:2C:89:86:95:E4:01:98:B9:D9:2B:68:1B:9B:95:4E:BF:AE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsksiYaV5AGYudkraBublU6_rrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f6dc57-8268-4661-991c-84c3d302cf04/1/UQ-08FwAIFGRj5EDbLL02YlESRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f6dc57-8268-4661-991c-84c3d302cf04/1/bsksiYaV5AGYudkraBublU6_rrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.128.0-89.249.137.255
Signature Algorithm: sha256WithRSAEncryption
69:fa:84:62:ff:3c:e0:16:53:77:4d:d8:f0:26:ef:97:e0:f2:
28:00:f2:55:f5:f1:ad:3b:35:21:3a:c8:9d:80:43:7a:08:04:
61:72:51:e8:52:c1:4b:11:e2:33:c4:94:1d:6c:6c:5d:b9:f2:
f3:84:8f:bd:2b:e8:31:b8:f8:2c:60:c1:e0:e5:64:a6:fa:03:
e4:5b:b0:6d:5b:52:b3:0a:de:6d:0b:a3:30:1b:69:38:1e:0f:
95:06:a0:01:93:c3:9a:76:ad:0f:d3:d8:78:8e:24:63:9b:da:
98:51:7b:08:31:09:81:08:81:5e:61:90:b3:16:cb:2b:2b:ce:
0b:18:71:b9:09:a4:2a:36:ea:b5:1d:3d:4b:20:25:e4:56:f4:
9c:67:9d:3f:c5:ac:f1:a9:22:ba:0f:96:8f:71:6a:3a:81:c8:
e6:23:8f:49:6f:06:71:04:9d:00:91:d5:f2:65:b1:ec:48:be:
c2:77:83:08:46:b0:35:4f:34:6c:ad:74:35:14:1f:2d:10:54:
12:51:37:a1:ad:98:41:57:d3:df:c8:9d:f9:48:01:70:3f:90:
63:09:f3:b4:68:d4:1c:84:c2:45:66:86:26:da:29:57:07:1b:
2a:2a:5d:e9:c9:27:81:14:55:63:94:b5:14:38:e5:0a:39:0a:
47:ac:3c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:24 2025 by rpki-client