Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/pmRxvncj24p6ty4DLrXzizNfAqY.roa
File: pmRxvncj24p6ty4DLrXzizNfAqY.roa (raw, json)
Hash identifier: ozc+ffjJnE0lwQAoUuVYjnl14/KEXn2nxBSL1nu8oQ4=
Subject key identifier: A6:64:71:BE:77:23:DB:8A:7A:B7:2E:03:2E:B5:F3:8B:33:5F:02:A6
Certificate issuer: /CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Certificate serial: 05BCA3D3
Authority key identifier: 6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/pmRxvncj24p6ty4DLrXzizNfAqY.roa
Signing time: Sat 01 Jan 2022 06:54:09 +0000
ROA not before: Sat 01 Jan 2022 06:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50926
IP address blocks: 89.44.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96248787 (0x5bca3d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Validity
Not Before: Jan 1 06:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a66471be7723db8a7ab72e032eb5f38b335f02a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:71:f9:ea:ee:85:24:c4:94:56:3a:f7:a8:0d:
4e:e3:cb:75:33:21:a1:0c:2d:f4:f1:bd:8a:8d:bb:
43:32:21:03:19:ae:ca:1d:67:4f:d3:f3:2e:89:f2:
18:51:5a:22:20:b8:cc:42:00:07:55:77:0d:85:84:
df:4a:c9:98:7e:38:e2:46:80:e9:33:4d:74:7d:4b:
cf:39:d7:d2:38:63:5b:1a:c5:37:e1:2b:cf:2a:04:
84:4e:ad:e7:16:02:82:31:df:f1:5a:84:e4:97:81:
da:db:b4:6b:33:f8:c4:01:e7:bd:1d:77:f0:8c:48:
ee:ef:c9:d9:46:ab:ef:56:b5:4c:15:e0:cc:65:bc:
ed:b4:74:e3:fd:1b:44:9c:07:b3:94:ab:56:6f:b7:
2d:c6:67:bb:eb:4c:03:24:02:1c:c8:c3:1d:98:e2:
3a:6b:25:ef:4f:ee:b0:66:97:fa:e9:60:a6:d7:0f:
04:3b:bf:5b:3c:9a:70:a0:7b:70:22:72:dc:a0:49:
d6:92:62:3a:f7:8f:a0:3b:bc:aa:e1:be:5c:86:62:
54:d3:3e:56:19:f1:b3:ae:22:54:db:dc:80:b9:0f:
73:46:d3:5a:22:ad:52:f4:7a:45:48:12:b0:24:9e:
5d:8f:71:54:82:ba:58:88:6d:81:26:e3:7b:b1:75:
6a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:64:71:BE:77:23:DB:8A:7A:B7:2E:03:2E:B5:F3:8B:33:5F:02:A6
X509v3 Authority Key Identifier:
keyid:6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/pmRxvncj24p6ty4DLrXzizNfAqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.32.0/24
Signature Algorithm: sha256WithRSAEncryption
88:d9:09:79:78:fc:51:08:a9:e2:41:c6:9a:19:71:ee:79:cb:
de:92:32:ec:e2:0a:ad:7e:11:dd:84:57:56:0a:96:c6:76:a5:
dd:cc:50:64:fc:05:f3:0b:68:67:8e:99:5d:8f:36:bc:6c:b8:
a1:34:8e:32:dc:6b:aa:a5:03:36:93:3f:09:25:b8:39:60:b9:
9d:31:0d:c1:6e:4e:79:dd:e4:ec:a3:b0:a7:86:ed:83:e5:7c:
db:d7:54:ea:50:5e:b4:0d:5c:46:ee:01:cf:17:4d:f5:d2:69:
1f:83:7e:9d:69:a7:50:cd:01:a5:3b:bd:00:ac:85:6c:cd:2c:
09:8c:fa:07:27:81:fb:fe:a2:56:54:fa:36:68:74:09:78:0d:
2b:b2:d9:a1:6a:bf:bc:94:44:7a:fc:a7:8f:e1:33:62:c6:36:
7c:90:10:7d:30:8d:52:4c:78:64:f3:6e:45:a0:0f:1b:a4:dd:
d2:ff:a4:06:cf:67:6c:50:dd:99:bd:36:3f:d6:85:bc:54:96:
ba:ae:47:5c:3f:68:59:28:a4:43:f0:0b:9c:ab:2c:1a:96:ea:
03:d1:b7:0d:bc:6d:d4:e8:4a:86:fd:2c:8e:bf:7f:5b:05:3b:
67:30:e7:f8:75:db:3a:53:f5:34:2a:51:69:42:18:d2:26:7a:
11:9c:53:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:34 2024 by rpki-client on console-fra.rpki-client.org