Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/9c3gdlvaPLpUT7c-cdENGcJPhRc.roa
File: 9c3gdlvaPLpUT7c-cdENGcJPhRc.roa (raw, json)
Hash identifier: LzvWhElZhOTrYjkX8/Hzjf2l5IXm1mbJurYILe8p280=
Subject key identifier: F5:CD:E0:76:5B:DA:3C:BA:54:4F:B7:3E:71:D1:0D:19:C2:4F:85:17
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 05A51434
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/9c3gdlvaPLpUT7c-cdENGcJPhRc.roa
Signing time: Sat 01 Jan 2022 07:04:06 +0000
ROA not before: Sat 01 Jan 2022 07:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200651
IP address blocks: 89.42.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94704692 (0x5a51434)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5cde0765bda3cba544fb73e71d10d19c24f8517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b0:09:e7:fc:ae:cb:f4:e8:d3:c9:8b:c3:97:
d1:ce:dd:ed:84:c2:d7:1f:63:be:0e:fb:05:31:79:
b8:12:ef:89:2b:28:b0:c1:71:b1:d0:7c:05:51:a0:
71:ff:2d:d3:33:99:43:2f:17:5e:3b:0e:07:98:33:
b6:16:f5:26:ca:4f:26:40:79:2c:04:a3:cb:cf:71:
a1:ec:ff:36:ed:ff:4d:01:f1:50:ed:b4:d0:93:25:
08:e0:40:33:a2:31:82:ab:ce:2b:f0:36:cc:99:3c:
42:0f:a0:20:a6:a5:22:60:b6:2f:e0:85:25:75:85:
3e:a8:b3:33:f1:86:3e:aa:d6:14:19:c0:0f:49:f6:
b1:fd:62:4b:f6:68:25:f2:56:e7:09:7f:5b:b2:c0:
8d:c6:38:01:ad:14:26:d0:db:ef:1e:6f:30:5a:c9:
8d:6c:af:1b:47:cc:e1:94:9c:5f:90:0d:59:7e:b1:
d3:d9:65:f6:59:7d:63:61:1a:05:33:c4:a9:26:a2:
60:a7:7f:b2:65:b1:13:94:22:47:2f:40:49:0a:2e:
4c:1e:92:fb:0f:77:8c:4c:8c:4d:2c:95:ec:29:1e:
42:19:80:b1:ee:b2:cb:04:7a:d4:3b:6f:ee:ad:81:
a9:1b:c0:b9:e0:ea:d1:06:b3:f6:0b:48:df:e0:1d:
e3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CD:E0:76:5B:DA:3C:BA:54:4F:B7:3E:71:D1:0D:19:C2:4F:85:17
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/9c3gdlvaPLpUT7c-cdENGcJPhRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.135.0/24
Signature Algorithm: sha256WithRSAEncryption
47:f5:ed:e5:35:a7:a3:ce:99:54:bd:b7:36:ac:cb:ce:f7:7f:
92:48:2a:82:b4:be:28:fc:f6:f0:1a:51:42:4d:39:7e:dc:cc:
b0:c3:61:05:fc:bd:49:ff:07:f5:40:42:a9:d4:32:ea:46:d5:
e1:40:12:e9:21:93:eb:a1:b0:a0:1a:88:d6:aa:54:9c:fb:eb:
37:ed:d7:22:c2:83:7c:13:d3:7a:51:21:5f:e4:e2:44:a9:a8:
48:43:9c:3c:c6:5b:33:0c:dc:b0:a7:60:98:0b:f7:eb:f2:62:
8e:90:84:c2:58:5a:9f:75:70:dd:8c:b6:a1:12:ea:5f:91:57:
c4:35:b7:be:bf:78:63:67:36:54:0d:6e:c1:97:7e:1e:0a:6b:
97:87:34:63:cc:cd:d8:75:22:2c:fd:b9:89:5f:1a:61:17:e7:
ba:bd:33:f7:4c:e6:a6:3d:fb:7c:7e:06:a4:00:ce:72:15:9d:
f6:c6:fe:86:83:06:bb:f8:6b:c9:46:dc:66:ce:9c:a8:ed:4a:
2b:16:90:24:68:e2:d1:03:e1:7f:5a:4d:f1:e6:16:4a:d3:1e:
e5:b8:76:76:cb:83:da:02:fc:25:58:6b:11:d9:aa:89:35:14:
50:32:24:c4:2a:e1:97:ef:56:12:af:ca:da:cd:59:87:4a:64:
78:2c:29:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:42 2024 by rpki-client on console-ams.rpki-client.org