Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/6NGPzTdR2cXJNHxuUDJU46AQusw.roa
File: 6NGPzTdR2cXJNHxuUDJU46AQusw.roa (raw, json)
Hash identifier: 4Ewhp+IU1LrxFrXTtmLlf9xw0iQibUJ5tpdQjyj7ntE=
Subject key identifier: E8:D1:8F:CD:37:51:D9:C5:C9:34:7C:6E:50:32:54:E3:A0:10:BA:CC
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 0339B9B2
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/6NGPzTdR2cXJNHxuUDJU46AQusw.roa
Signing time: Mon 07 Feb 2022 09:36:33 +0000
ROA not before: Mon 07 Feb 2022 09:36:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206487
IP address blocks: 89.39.33.0/24 maxlen: 24
89.39.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54114738 (0x339b9b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Feb 7 09:36:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8d18fcd3751d9c5c9347c6e503254e3a010bacc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:17:88:c7:ee:2f:74:fd:75:18:aa:1b:63:a9:
13:fa:41:99:a2:4f:fd:e5:e7:ee:d8:f8:1a:0c:e3:
2d:c5:76:b5:4d:28:a0:09:20:cd:63:84:22:50:57:
73:c5:e5:a0:70:f1:f7:58:31:ec:4d:b7:f4:5c:bd:
00:de:d1:fc:55:a9:e9:03:23:f6:b9:3c:49:9e:2f:
19:c3:8d:1f:e6:7f:67:e5:00:d9:24:cb:1d:b6:bd:
57:76:a6:40:0f:58:72:96:a2:e4:cb:3a:79:df:bf:
6b:07:c9:fa:3b:99:b9:08:b7:e5:05:f4:33:e1:d8:
ed:e5:9f:a8:5c:78:f2:af:a6:03:23:25:47:cd:ae:
c9:5d:fb:1f:28:c0:c7:89:03:ba:ee:4b:2a:b4:89:
ab:e2:dd:c5:ab:c4:cf:84:50:d0:9e:cb:86:64:5e:
08:26:b5:ce:b6:3f:0c:f6:5a:ba:ac:fe:d8:da:0e:
15:8a:8a:de:3b:c1:67:94:85:68:53:45:ba:6e:83:
a0:aa:1e:4c:5b:d4:5c:48:11:a9:61:e3:aa:fb:53:
0e:79:8d:af:62:48:bc:14:39:91:26:bc:92:64:24:
d9:a2:1c:33:ce:27:19:51:c4:57:7a:58:47:ef:ef:
fd:25:de:f3:6f:e9:99:38:6a:89:a2:b6:ae:da:fa:
68:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D1:8F:CD:37:51:D9:C5:C9:34:7C:6E:50:32:54:E3:A0:10:BA:CC
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/6NGPzTdR2cXJNHxuUDJU46AQusw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.33.0-89.39.34.255
Signature Algorithm: sha256WithRSAEncryption
93:61:3a:d9:af:45:65:a2:b5:32:b4:42:a1:2e:72:2f:e5:9e:
2b:91:97:ad:9f:f2:22:b6:99:c2:6f:01:e5:96:51:60:51:75:
e2:9d:c0:6d:78:d9:a3:4c:14:43:9c:7d:05:1e:d3:ab:69:30:
de:a2:cc:43:35:95:b8:c9:ce:5c:59:16:aa:86:e8:ba:82:03:
6f:cf:3c:e7:e1:e1:fc:96:b9:0c:ba:89:fc:8d:c2:9a:a3:d5:
76:e8:fc:17:01:9f:60:33:21:4a:97:a8:fd:02:56:22:89:8b:
c6:a3:22:2a:e6:5f:e4:f8:7e:4c:0b:71:53:d5:ec:f3:0c:7d:
32:2f:26:44:83:ef:77:48:11:8d:59:12:aa:d2:ed:d9:67:ee:
06:95:0e:c2:87:90:fa:7f:5f:60:30:d9:04:1b:74:aa:52:32:
b9:17:a0:92:c3:75:87:9e:e1:6a:d5:2b:f2:b4:49:de:dd:c3:
86:4c:5c:f7:b7:95:97:b9:ee:6d:6d:19:86:1a:94:2e:98:fe:
8e:a1:55:02:51:4c:d0:9e:f9:f9:e7:e5:c4:ec:e0:0a:a8:6a:
1c:18:44:e8:c7:c0:f5:65:7f:ab:8d:68:7a:45:a8:14:d3:2f:
96:8e:6a:fd:52:50:1c:af:43:86:d4:71:ac:1b:99:8f:9e:b8:
3f:39:88:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:48 2024 by rpki-client on console-ams.rpki-client.org