Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/4jjhHeVHCRhybtndwwO4NwfkfIM.roa
File: 4jjhHeVHCRhybtndwwO4NwfkfIM.roa (raw, json)
Hash identifier: 23zIOEmKWUKbsTmlGXFvv8XMESBfq7VA7PUnrFD0Cj8=
Subject key identifier: E2:38:E1:1D:E5:47:09:18:72:6E:D9:DD:C3:03:B8:37:07:E4:7C:83
Certificate issuer: /CN=a7f66522f403d8c994a484682870799417ce1e81
Certificate serial: 041EF46D
Authority key identifier: A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/4jjhHeVHCRhybtndwwO4NwfkfIM.roa
Signing time: Sun 19 Jun 2022 12:44:46 +0000
ROA not before: Sun 19 Jun 2022 12:44:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60815
IP address blocks: 185.89.89.0/24 maxlen: 24
185.89.88.0/24 maxlen: 24
185.89.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69137517 (0x41ef46d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f66522f403d8c994a484682870799417ce1e81
Validity
Not Before: Jun 19 12:44:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e238e11de5470918726ed9ddc303b83707e47c83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:35:43:f3:d1:b0:7e:00:d6:15:af:31:7d:a9:
62:f9:31:bc:9d:de:ef:19:04:82:d0:7a:ec:53:68:
fd:46:39:e2:0d:4e:72:78:48:39:7a:7f:29:5d:07:
64:a4:f1:31:18:41:57:39:fc:a2:46:95:a2:09:9b:
8c:14:43:12:b8:6d:70:23:7e:ec:15:88:09:21:1d:
27:59:60:63:e4:d4:62:01:99:2b:03:cf:28:67:9d:
39:d0:72:d0:e4:51:54:0e:28:96:64:ed:b3:eb:3e:
f6:c4:80:84:a0:d9:dd:0d:dd:df:90:17:17:a2:07:
4c:54:39:93:4b:ee:ec:25:89:6f:45:1f:06:a5:4a:
46:4a:09:a2:b8:0d:ee:fe:59:57:91:e1:8f:6e:e2:
32:3b:01:18:56:56:3c:71:ea:c5:ac:51:e3:ae:dd:
b7:92:ad:01:4a:a9:e4:4d:7a:2c:6a:2d:3e:92:0d:
66:9e:a3:b4:be:81:fa:40:c1:2c:67:88:0c:4f:30:
f4:86:3b:98:7d:77:17:df:a1:d8:e1:28:0d:82:b9:
7d:03:59:a1:3c:2b:56:94:46:df:95:52:94:5a:34:
89:2c:d0:01:4f:b4:2c:6e:05:c1:e3:f7:f7:0a:d7:
d4:da:34:07:aa:37:24:a4:70:41:71:fd:d2:86:d8:
15:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:38:E1:1D:E5:47:09:18:72:6E:D9:DD:C3:03:B8:37:07:E4:7C:83
X509v3 Authority Key Identifier:
keyid:A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/4jjhHeVHCRhybtndwwO4NwfkfIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.88.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:80:46:ad:68:72:7e:27:f1:2a:87:76:a4:32:07:72:f2:40:
1b:43:ce:08:e3:13:f6:f6:50:a5:0e:df:0c:61:7c:7e:b8:d8:
58:c6:1d:01:63:f1:c8:34:a6:9c:66:55:39:8a:7a:a7:78:98:
8a:90:87:59:b1:26:0d:4c:16:12:d1:61:f1:7d:91:3e:ee:3e:
e6:48:e0:90:da:a0:c8:5d:10:60:41:f6:d1:1d:ff:66:96:7f:
82:6f:7a:bf:af:ab:ab:1f:6f:e9:de:64:ba:10:25:13:f6:2e:
46:2c:e1:ff:f5:d4:59:1f:b5:38:8b:d4:9d:81:cb:8c:2e:f1:
1c:83:af:22:33:f0:70:25:5f:d2:68:fc:fa:09:5a:d6:12:b9:
fa:ad:d0:fb:c5:89:e0:41:64:17:e0:98:f4:68:2d:cc:0b:e3:
a3:d0:fa:1d:a6:11:ce:cc:bc:66:d6:72:56:b5:ab:59:59:d7:
6f:8e:38:a7:77:5c:75:a3:81:18:62:d2:34:cb:18:93:8f:fe:
5e:18:19:e7:26:88:af:64:cd:36:34:31:f5:9c:23:dd:33:54:
39:de:63:23:4b:cb:2c:8a:70:7e:d0:ff:a7:07:de:8d:bf:55:
be:f7:d8:eb:ab:2f:56:c1:03:ce:3f:27:da:64:20:86:b1:89:
2e:c6:33:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:04 2024 by rpki-client on console-ams.rpki-client.org