Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/L6wcohnL2qzgqdGzHyp7D1keWoI.roa
File: L6wcohnL2qzgqdGzHyp7D1keWoI.roa (raw, json)
Hash identifier: v0BKY1okR87MXlhmrc6vOnbEp+VfqdRVMN3hYMZWwPw=
Subject key identifier: 2F:AC:1C:A2:19:CB:DA:AC:E0:A9:D1:B3:1F:2A:7B:0F:59:1E:5A:82
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 05A39869
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/L6wcohnL2qzgqdGzHyp7D1keWoI.roa
Signing time: Sat 01 Jan 2022 07:04:06 +0000
ROA not before: Sat 01 Jan 2022 07:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60909
IP address blocks: 89.39.6.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94607465 (0x5a39869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fac1ca219cbdaace0a9d1b31f2a7b0f591e5a82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:de:6d:e7:a9:5a:cb:9b:c6:c5:6b:19:3d:be:
44:ac:f6:7c:11:55:56:03:ac:20:3b:b8:20:d3:f8:
a7:7e:84:29:35:e5:2b:a1:fe:af:94:ff:71:24:16:
80:e4:89:fd:2f:b7:3c:62:f7:4a:42:f3:46:4c:6c:
c3:8b:ac:81:fa:62:f0:72:fa:5e:74:a3:c7:a9:23:
d1:64:c8:d7:b4:fa:cc:ca:ee:01:1c:c6:10:f2:fe:
21:02:a4:78:88:68:5c:c2:ae:7b:0e:2e:04:7d:c9:
c3:5a:32:fe:34:38:47:23:b4:cb:64:94:5a:5a:16:
0e:73:3e:5b:7d:6f:dc:6e:c3:20:e4:cb:88:b4:cb:
86:d9:1a:5e:23:c7:7f:3b:ac:57:59:de:66:1c:af:
27:f0:c4:c3:cd:83:fa:0d:e6:42:a6:a7:cd:80:4c:
0e:fd:6e:09:da:7f:61:93:c1:bf:82:e6:6a:00:e3:
84:3a:9a:72:12:18:fc:fa:6f:7b:eb:2b:bd:94:83:
63:49:9d:14:5f:d1:8e:1f:4b:da:ce:d9:eb:d5:5f:
0c:ca:f0:d1:01:55:81:98:4c:90:85:45:57:d2:26:
25:61:0e:1e:21:a5:2a:ea:dc:4e:14:89:35:5a:3a:
da:93:75:8a:24:82:91:08:b7:52:52:61:18:dc:12:
6d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:AC:1C:A2:19:CB:DA:AC:E0:A9:D1:B3:1F:2A:7B:0F:59:1E:5A:82
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/L6wcohnL2qzgqdGzHyp7D1keWoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.6.0/23
Signature Algorithm: sha256WithRSAEncryption
d0:84:02:c5:7e:a1:f0:f4:8a:1b:e2:92:8f:ec:0b:64:fa:08:
fd:49:e3:bb:13:a5:12:b0:87:52:be:c1:8f:ea:9f:d2:55:b5:
68:12:a7:a2:3c:15:4f:ee:e3:d0:58:99:8e:0f:c1:94:29:32:
ef:62:b0:dc:f6:03:3a:c2:a7:29:4c:94:11:3a:06:08:c2:61:
6a:8d:ae:36:a0:55:74:58:31:a5:e8:fd:a4:0c:15:ad:d3:4a:
c3:fa:da:4c:24:97:80:bf:bb:0b:f9:d7:ce:a4:9b:f1:d5:eb:
e1:5f:64:0a:09:57:9d:94:11:ad:af:f8:e1:a0:98:ed:39:fc:
40:bf:cc:8f:bd:b8:4d:9a:cf:95:67:dd:3c:83:0e:c8:a7:0f:
76:1d:50:27:21:68:0f:d5:9d:98:d7:e5:43:73:98:4f:57:ce:
54:b0:52:79:86:23:9a:4f:88:28:f7:b3:23:e8:ae:58:6b:ba:
a7:0a:40:c2:86:7a:5f:31:f0:e1:d6:ae:f7:5c:69:e6:b6:6e:
78:79:2a:b1:e8:f4:92:61:01:fd:d3:ea:1b:37:06:2b:ae:5d:
7e:d5:d3:50:20:3e:40:1f:d1:27:c9:f2:3b:bd:be:2b:77:e4:
98:c0:fd:7d:a4:06:74:d9:ad:3f:39:ba:ff:dc:4d:ee:2a:25:
b0:34:60:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-fra.rpki-client.org