Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/iZqKqK00ALFinzXV8uvn3Xjb7P8.roa
File: iZqKqK00ALFinzXV8uvn3Xjb7P8.roa (raw, json)
Hash identifier: ABIeCW+GONPB5uHPSTDfLuyna1fsrEsb5FnFpws+oCw=
Subject key identifier: 89:9A:8A:A8:AD:34:00:B1:62:9F:35:D5:F2:EB:E7:DD:78:DB:EC:FF
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 365CC259
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/iZqKqK00ALFinzXV8uvn3Xjb7P8.roa
Signing time: Sat 01 Jan 2022 13:57:19 +0000
ROA not before: Sat 01 Jan 2022 13:57:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39345
IP address blocks: 89.34.24.0/23 maxlen: 23
77.81.181.0/24 maxlen: 24
188.214.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 912048729 (0x365cc259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jan 1 13:57:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=899a8aa8ad3400b1629f35d5f2ebe7dd78dbecff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0f:17:65:ed:14:d3:78:6d:f8:34:68:6a:24:
bc:13:c3:74:fe:c9:18:33:9c:ec:b5:2d:a6:c8:0a:
48:5f:9e:79:5d:00:5f:8c:81:6a:8a:71:ff:9b:af:
91:34:de:6e:8f:b2:5c:c7:e8:ba:af:8b:d9:d1:0c:
13:1d:fe:32:82:9f:79:ad:e3:c7:cb:c6:87:7f:87:
97:86:0e:36:28:95:26:11:21:0a:52:2d:c8:15:73:
5f:6e:42:40:d4:b3:77:a7:75:6d:c0:8d:d0:23:21:
cf:c5:64:93:ff:8a:6e:5e:29:f0:bb:80:93:a5:64:
54:b7:c2:f6:90:18:62:c4:a7:d6:5d:e5:4a:53:bf:
b7:af:0c:05:da:7e:d0:9d:c4:84:13:46:2a:af:1c:
c0:fb:7e:3e:3f:b5:c0:f4:b1:ea:ae:f0:60:fe:49:
bd:bc:5b:0a:5b:69:44:3b:17:c2:be:e9:09:d3:08:
f1:9e:07:14:15:09:71:7d:c0:74:86:c7:66:78:d5:
33:3a:63:78:91:b0:0e:60:f7:70:b6:d6:59:8c:d8:
c0:cb:47:00:fb:f0:0a:64:1b:c8:66:7f:a7:fe:7f:
72:59:d5:63:9f:ab:89:88:a5:55:53:d1:a2:bb:f1:
cf:26:b7:2f:39:89:ad:95:b7:c7:5f:8c:8b:64:c6:
59:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:9A:8A:A8:AD:34:00:B1:62:9F:35:D5:F2:EB:E7:DD:78:DB:EC:FF
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/iZqKqK00ALFinzXV8uvn3Xjb7P8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.181.0/24
89.34.24.0/23
188.214.88.0/24
Signature Algorithm: sha256WithRSAEncryption
15:3b:a5:d4:26:9d:95:67:8b:74:82:39:05:f1:72:3d:0c:88:
5e:b6:2b:53:09:7c:40:1a:c0:2b:b6:1d:80:c7:84:73:ee:4e:
13:3a:95:09:e2:01:7e:d1:66:7a:60:7b:70:47:cc:8d:1f:28:
6e:4a:b6:15:b5:e2:96:81:85:52:aa:63:56:49:ef:ab:f6:e0:
1e:13:dc:b0:e0:a6:cc:e9:ef:8f:5b:e0:65:1e:9f:6b:31:55:
0a:5a:b4:c5:b5:1b:7a:55:67:8e:e9:35:b5:53:28:b4:e1:31:
be:c7:3a:7f:be:86:fb:5b:29:ac:5b:fa:fe:79:d6:ab:ca:ea:
1a:92:1e:d9:ec:d0:fb:33:0f:e6:9d:6e:0a:ce:a5:25:60:52:
5f:f6:45:3a:da:83:3f:27:1a:3d:32:6b:62:a4:94:22:64:ed:
bf:aa:5a:d9:cf:3f:d8:a3:68:67:10:81:fc:56:5f:99:34:b7:
35:11:86:f4:84:ad:15:9c:2a:9f:60:0c:24:11:04:24:bf:83:
eb:04:7f:57:3e:30:d9:3f:c3:3b:55:59:68:1e:c9:63:39:b3:
66:fe:c3:37:87:e9:75:10:ab:a7:72:af:a6:33:98:11:82:86:
f0:4a:9d:43:d5:20:5a:70:ba:d3:25:97:60:53:c3:3e:84:5d:
57:cf:1d:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:03 2023 by rpki-client on console-fra.rpki-client.org