Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/0d8bglFxIbS_w3TdJhxh3xHx9K4.roa
File: 0d8bglFxIbS_w3TdJhxh3xHx9K4.roa (raw, json)
Hash identifier: 0cdrSfx3ovRCdlw909WbAa1FmJNRLQh8NYuR0dqtsYE=
Subject key identifier: D1:DF:1B:82:51:71:21:B4:BF:C3:74:DD:26:1C:61:DF:11:F1:F4:AE
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 39FF1B55
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/0d8bglFxIbS_w3TdJhxh3xHx9K4.roa
Signing time: Sat 01 Jan 2022 14:00:36 +0000
ROA not before: Sat 01 Jan 2022 14:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61338
IP address blocks: 89.174.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 973019989 (0x39ff1b55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1df1b82517121b4bfc374dd261c61df11f1f4ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:fd:50:07:04:aa:ac:21:64:eb:98:9a:fe:9d:
e9:9e:4a:59:6a:95:2d:1e:39:e8:f7:4a:9e:29:38:
dd:d8:14:b8:7e:32:17:fb:9e:11:17:dc:fd:ae:39:
2a:c1:cb:42:fe:59:16:f0:e5:a8:e9:05:d5:64:56:
4c:d4:94:5d:39:6e:42:a6:04:c7:32:05:06:72:9e:
87:72:69:ed:e5:b4:49:21:48:3a:0b:ec:86:ca:a0:
a2:08:ef:9a:80:ea:6e:18:8d:5f:ff:8a:55:80:01:
29:3c:a6:31:d6:f5:30:1e:af:79:e0:12:5c:e1:65:
42:9b:60:a5:b1:49:c1:e5:58:cc:cd:ab:7b:65:5a:
fa:45:0d:40:51:47:f6:0d:48:1d:f0:8d:89:58:8c:
b4:7e:88:c4:fc:9d:b8:b8:6e:dc:89:c6:78:3b:55:
71:a6:db:a3:1c:29:5a:45:1a:26:2f:bf:48:9d:06:
2c:d5:8a:14:e4:05:ff:a0:ce:0d:ae:1d:62:49:4d:
d8:2f:68:4d:b9:da:4a:da:bf:13:5a:bb:af:14:ba:
a7:5c:f4:ee:a4:33:c6:b2:6c:24:5e:64:d4:0f:53:
14:d7:4f:04:5b:38:09:4c:cb:09:a2:ca:38:f7:a8:
b6:ea:67:d1:e3:b3:aa:cd:56:4e:11:a5:cf:b6:51:
9b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DF:1B:82:51:71:21:B4:BF:C3:74:DD:26:1C:61:DF:11:F1:F4:AE
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/0d8bglFxIbS_w3TdJhxh3xHx9K4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.174.163.0/24
Signature Algorithm: sha256WithRSAEncryption
09:fd:a4:b5:cd:ec:c6:11:af:a4:eb:f7:5b:c7:38:43:13:fa:
28:00:f2:47:8f:f3:15:f5:30:d4:6c:a9:9f:84:2e:11:6d:ed:
d7:92:d9:7f:57:4e:6e:d7:6a:b6:aa:c1:d7:6e:e2:ab:c4:6c:
38:d0:60:2e:60:4e:84:09:1a:a7:16:40:1f:a5:02:12:ab:84:
44:91:ba:b9:bd:47:6d:11:52:78:12:87:c0:3d:76:f3:93:47:
c4:37:c7:17:42:65:d9:21:2a:ba:fb:a2:1a:b4:df:79:58:5d:
77:5a:cb:a5:6a:1e:d3:9a:fb:ca:60:e5:fe:ec:f0:d5:5d:84:
75:63:2e:93:56:9b:51:98:70:e7:79:a3:80:b5:e7:dd:b4:7e:
f1:78:9b:f1:0b:77:c4:96:f5:22:dc:55:90:6b:53:a8:13:32:
77:9b:86:22:ee:4b:49:60:b5:b3:a4:6c:74:c9:e0:06:60:2f:
a9:eb:0c:6a:12:77:35:2f:75:62:0a:a3:b1:e0:5e:e5:80:ce:
99:0b:34:39:79:d0:36:fa:e3:b5:b7:f5:37:84:b8:05:6d:70:
fc:72:a3:5a:ea:fe:9f:36:d1:fc:3b:54:01:34:04:a4:a2:7d:
a7:27:74:f9:69:c1:0a:78:fc:08:f1:f6:2b:d0:59:72:69:4b:
9b:15:53:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:04 2025 by rpki-client