Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8fcbe9-9b9b-4987-95be-25904ba9a355/1/_Og83yw2Lvq5LLe1lbBwTOpPB6A.roa
File: _Og83yw2Lvq5LLe1lbBwTOpPB6A.roa (raw, json)
Hash identifier: J9xLfgy51d5bX/009r+J+wS7a5IUu5PVuZRzSY8Yb5w=
Subject key identifier: FC:E8:3C:DF:2C:36:2E:FA:B9:2C:B7:B5:95:B0:70:4C:EA:4F:07:A0
Certificate issuer: /CN=c0f69d2f474474dbb57f6bec8c2d65d5e0c29661
Certificate serial: 01ACBBE6
Authority key identifier: C0:F6:9D:2F:47:44:74:DB:B5:7F:6B:EC:8C:2D:65:D5:E0:C2:96:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wPadL0dEdNu1f2vsjC1l1eDClmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8fcbe9-9b9b-4987-95be-25904ba9a355/1/_Og83yw2Lvq5LLe1lbBwTOpPB6A.roa
Signing time: Sat 01 Jan 2022 11:04:34 +0000
ROA not before: Sat 01 Jan 2022 11:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25285
IP address blocks: 81.89.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28097510 (0x1acbbe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0f69d2f474474dbb57f6bec8c2d65d5e0c29661
Validity
Not Before: Jan 1 11:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fce83cdf2c362efab92cb7b595b0704cea4f07a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:95:09:32:b6:c1:4f:88:a1:5e:2e:d2:f0:45:
2d:79:0c:18:5a:27:42:1f:6b:91:d4:c2:1e:0f:44:
86:89:b2:69:cc:58:0b:5a:21:cd:a2:59:32:0a:1e:
cf:b7:ec:e5:3a:26:2c:c5:24:d1:ca:1a:72:2c:21:
84:79:01:a4:c1:82:b6:58:62:f5:d9:59:ac:06:ae:
15:06:ca:0c:aa:d7:7d:b0:81:f8:a6:88:20:69:cc:
73:bb:9d:40:ad:ac:35:28:98:ab:c4:51:81:ce:7b:
34:14:63:f7:a3:db:ad:21:c0:2e:df:e4:bd:e3:1a:
f8:41:02:95:d6:c9:97:91:80:53:bd:7b:84:32:33:
55:02:0a:ca:71:89:c7:b6:39:94:3f:87:5b:3f:b1:
b4:39:c5:6e:e1:84:2f:66:87:a5:0f:76:86:92:b6:
16:10:98:36:42:bb:9b:ed:11:2e:8e:db:b5:73:da:
1e:32:97:95:7b:76:14:9b:07:51:c7:12:ae:55:5f:
ba:b5:d8:80:cb:bf:90:c9:5c:18:3d:92:31:b2:dd:
28:3c:eb:ba:29:60:ab:6b:33:d4:86:10:11:23:f7:
42:6c:c7:8a:55:05:66:21:fa:8a:bd:4f:5a:c1:4d:
15:14:30:0c:42:ea:15:09:73:f7:fb:67:aa:05:0d:
26:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E8:3C:DF:2C:36:2E:FA:B9:2C:B7:B5:95:B0:70:4C:EA:4F:07:A0
X509v3 Authority Key Identifier:
keyid:C0:F6:9D:2F:47:44:74:DB:B5:7F:6B:EC:8C:2D:65:D5:E0:C2:96:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wPadL0dEdNu1f2vsjC1l1eDClmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8fcbe9-9b9b-4987-95be-25904ba9a355/1/_Og83yw2Lvq5LLe1lbBwTOpPB6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8fcbe9-9b9b-4987-95be-25904ba9a355/1/wPadL0dEdNu1f2vsjC1l1eDClmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.89.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:db:cc:df:1b:14:7f:54:ba:8b:a4:dc:42:0f:c6:b0:43:dc:
c4:c6:ff:cd:04:2a:f4:31:bf:4d:48:23:b1:7f:d8:5a:26:c2:
20:bd:0f:e0:2b:ec:82:91:d5:02:cc:6b:70:fe:4a:0f:a3:ca:
3c:41:dd:bb:c0:d3:b8:9a:4c:54:0a:e4:f0:fb:ec:cf:ba:a6:
c2:ab:14:82:14:c9:6d:36:1c:c5:28:b1:cc:1f:ef:7f:c6:c0:
3f:5f:0a:d5:a3:2e:a7:bf:8f:1c:45:1c:ca:65:73:9f:eb:f5:
50:81:c7:95:d2:77:e3:6d:b3:43:7c:bd:bb:c4:5b:d0:18:34:
45:c2:ee:89:c4:17:00:51:1d:71:75:58:04:1e:b7:c5:30:6c:
b8:29:e4:12:10:29:d6:1b:e5:97:43:a1:9d:4b:0a:c3:c1:e7:
d4:16:5b:7d:ef:9e:6c:7b:4b:85:0c:68:07:86:15:d3:5b:d9:
88:07:c6:d7:08:f2:25:b6:83:df:6a:77:d2:e3:91:68:ff:26:
55:d6:71:d1:e5:df:c6:6c:9b:d3:89:1c:64:4d:19:a6:c0:20:
f5:58:b2:75:a8:49:4c:70:59:93:25:f1:6c:86:fc:1b:3f:9c:
cc:f8:a8:b1:75:8b:09:70:1c:ae:9f:90:7a:2b:b1:b8:98:a1:
11:5d:c0:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-fra.rpki-client.org