Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/RQOpcZ7FQlPYhECWPxelEpklLds.roa
File: RQOpcZ7FQlPYhECWPxelEpklLds.roa (raw, json)
Hash identifier: q15xsoIcUcfD2NEPVYAZr2Y8g4rkGOMgj8tL9EGLQIg=
Subject key identifier: 45:03:A9:71:9E:C5:42:53:D8:84:40:96:3F:17:A5:12:99:25:2D:DB
Certificate issuer: /CN=a7f66522f403d8c994a484682870799417ce1e81
Certificate serial: 028EA80A
Authority key identifier: A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/RQOpcZ7FQlPYhECWPxelEpklLds.roa
Signing time: Sat 01 Jan 2022 03:51:48 +0000
ROA not before: Sat 01 Jan 2022 03:51:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43905
IP address blocks: 185.89.90.0/24 maxlen: 24
185.89.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42903562 (0x28ea80a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f66522f403d8c994a484682870799417ce1e81
Validity
Not Before: Jan 1 03:51:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4503a9719ec54253d88440963f17a51299252ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e4:fb:74:d5:cd:c4:f1:58:ea:1b:2b:e9:ad:
55:90:7e:7c:91:db:07:75:78:f0:d0:86:c6:ef:b8:
e1:3f:bc:4c:22:8f:98:f3:61:6b:45:87:03:2f:d9:
cc:30:66:5d:19:13:0c:be:a8:e6:83:48:24:fc:6c:
a7:21:11:73:5c:eb:1c:8b:75:29:40:29:8b:19:00:
3f:ba:cc:c7:d5:12:40:1d:41:16:d9:d1:f1:39:a7:
5b:1d:fa:0d:49:c3:46:7c:42:d3:ef:b0:28:62:70:
a2:44:c1:61:a1:3e:19:af:86:c1:a5:05:b2:ea:4d:
c6:18:92:31:51:07:99:4f:13:83:21:21:2a:56:21:
87:e8:7d:fe:5e:ac:b8:bf:c2:32:29:12:6d:bf:d4:
c8:85:30:c0:ba:b2:ac:51:5e:02:e5:33:e6:12:bb:
2c:c6:b0:b5:84:72:68:0d:79:ff:55:e2:8a:f2:5d:
86:ef:58:f9:8e:89:04:15:f2:81:83:89:ba:ea:b5:
e6:03:e5:14:97:84:04:16:de:25:05:93:7b:cd:7b:
0a:67:4a:23:5f:c8:b9:e3:2f:f6:2e:08:02:04:b7:
d7:b0:9d:13:f2:61:72:0e:59:5c:52:18:96:76:25:
ac:f8:09:a8:35:fb:3e:71:3f:a4:96:10:a1:d9:f8:
1a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:03:A9:71:9E:C5:42:53:D8:84:40:96:3F:17:A5:12:99:25:2D:DB
X509v3 Authority Key Identifier:
keyid:A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/RQOpcZ7FQlPYhECWPxelEpklLds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.90.0/23
Signature Algorithm: sha256WithRSAEncryption
94:88:2a:e8:55:6a:9f:49:1c:64:67:13:91:9b:a7:83:8a:47:
72:ba:d9:c8:40:16:7b:ef:18:1d:2f:5e:43:a0:a6:4c:d3:22:
ac:ad:a0:be:c4:84:58:d1:5d:3b:78:ea:51:68:7d:1b:3d:ae:
36:1e:cb:a1:d0:1c:ac:59:67:f2:d8:97:ce:db:fe:2a:4e:78:
e0:4f:f8:53:95:bc:ee:27:51:9d:c3:ed:86:20:48:5b:3c:a6:
6c:8e:89:4b:f1:34:16:6c:45:97:36:52:10:81:77:1a:95:71:
b3:4c:0e:5c:8e:36:78:6b:01:5b:f8:5a:43:18:d4:2c:2c:af:
5c:2e:88:5e:06:af:cd:ac:12:0d:b0:f9:44:66:fd:32:70:4b:
7f:c1:ce:2e:08:28:3f:2e:62:9a:d0:e6:b1:80:38:8b:ab:dd:
73:7c:f1:18:45:39:c9:a4:23:32:7b:3b:c9:ba:9e:77:4c:92:
d9:12:08:3b:e5:4c:52:df:da:53:89:78:ec:6b:6c:7a:a9:3a:
0b:a2:7c:27:50:24:a2:4a:25:d6:58:5b:8f:70:56:84:ad:29:
24:fa:b2:79:75:f9:f6:82:95:d5:e5:72:5c:31:48:72:64:8d:
f6:83:04:6b:1f:a0:f4:95:d0:ea:63:67:7f:66:70:1a:00:4c:
9e:f7:ea:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:04 2024 by rpki-client on console-ams.rpki-client.org