Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/FlexxMu5SFGnJkonqOVHpLInFh0.roa
File: FlexxMu5SFGnJkonqOVHpLInFh0.roa (raw, json)
Hash identifier: /BUAF+lHIN97g7TUJY3ApFOdKV1m+aZKmjv1B8f9yxY=
Subject key identifier: 16:57:B1:C4:CB:B9:48:51:A7:26:4A:27:A8:E5:47:A4:B2:27:16:1D
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 0A7DD431
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/FlexxMu5SFGnJkonqOVHpLInFh0.roa
Signing time: Sat 01 Jan 2022 02:54:15 +0000
ROA not before: Sat 01 Jan 2022 02:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15730
IP address blocks: 89.46.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176018481 (0xa7dd431)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: Jan 1 02:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1657b1c4cbb94851a7264a27a8e547a4b227161d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6e:97:43:1f:65:71:16:fb:19:72:4c:ac:c8:
7d:80:9f:bc:36:7c:02:bb:36:fc:ef:06:b0:fd:fb:
f2:c7:2a:31:d8:6c:7a:ca:6f:a9:30:03:c9:f3:d0:
f5:3c:4b:c5:3f:23:52:5f:39:1f:91:b4:53:87:5a:
7b:6c:f8:85:04:43:09:4b:69:21:07:4f:6a:9a:d2:
5a:cf:36:76:97:29:80:76:6d:dd:c5:8c:5f:6f:e0:
b3:25:73:5d:6c:35:da:ab:c7:0b:da:f0:b9:c4:e6:
7e:53:51:8e:02:1d:b7:d5:63:d6:81:68:44:01:8c:
2c:b5:ab:d7:bf:81:ef:8e:bd:3e:68:09:77:b5:0a:
e2:bb:59:59:fb:96:10:80:79:44:94:89:97:61:b4:
f0:ec:13:40:71:03:ab:c2:8d:fd:2d:b3:96:88:58:
06:6a:56:3c:ab:1c:7f:62:cb:3d:36:7c:2a:f8:09:
f0:d2:06:68:ee:e7:7f:ab:cf:25:2f:a8:ad:14:11:
8d:7c:7a:f7:f5:db:3e:47:43:9a:66:f2:71:3b:e9:
5c:12:8b:9e:48:d0:d4:cf:86:b6:4d:bb:f7:15:be:
2e:54:44:55:1e:8e:b9:e1:16:af:0c:83:49:7d:90:
d6:e3:7a:87:68:a5:f8:5f:fa:35:b1:f3:49:16:c1:
2b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:57:B1:C4:CB:B9:48:51:A7:26:4A:27:A8:E5:47:A4:B2:27:16:1D
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/FlexxMu5SFGnJkonqOVHpLInFh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:29:cf:6b:1c:c7:db:84:8e:d7:7c:87:b7:a7:14:a7:4b:4b:
d6:85:17:da:60:59:05:b7:cc:54:3b:4c:6c:e6:57:8d:e3:29:
c8:ce:20:3f:be:10:16:0d:e4:c4:fa:ab:d9:a4:82:53:76:63:
79:26:73:3e:6f:97:93:fc:de:1b:06:1f:dc:a9:3b:d7:37:e5:
ef:38:4c:79:d4:1a:42:99:96:79:9f:a6:16:86:2a:07:ab:86:
a8:a4:ba:4e:e9:54:44:a5:46:41:f3:ce:d6:61:69:05:c2:47:
29:3e:bc:b2:59:86:cd:54:d7:ae:f5:db:30:da:d2:50:9e:0e:
0a:d4:7d:7a:00:7f:84:5d:b7:be:06:84:d7:0d:2c:7a:b1:c4:
15:3e:18:eb:2e:09:c0:7e:f0:f8:f3:3a:f9:29:26:b3:a9:12:
91:8b:77:a7:0d:78:0c:a2:c1:19:12:5d:cd:ad:a2:16:29:fd:
38:47:b3:92:32:e8:e3:f7:cd:72:cc:f8:c2:a4:5c:87:0c:4c:
fd:86:49:9d:ff:47:a0:4e:61:06:a6:9c:75:34:b7:10:43:8e:
82:8a:39:60:06:2d:d5:28:b2:d5:dd:b2:f1:f7:d0:5f:67:45:
44:d2:0a:ac:45:95:03:5b:b1:bc:c1:6c:f3:d3:4e:31:22:90:
a9:aa:f6:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org