Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/XoyTJ_k8OD_jcBReRJmUx0Wy-uY.roa
File: XoyTJ_k8OD_jcBReRJmUx0Wy-uY.roa (raw, json)
Hash identifier: //OxO9uVb7S2vsbwIbdAc4SJhmS6nuq4YOldntbcJDk=
Subject key identifier: 5E:8C:93:27:F9:3C:38:3F:E3:70:14:5E:44:99:94:C7:45:B2:FA:E6
Certificate issuer: /CN=a7f66522f403d8c994a484682870799417ce1e81
Certificate serial: 01856C41302B3147953553EEAC87B40F6499
Authority key identifier: A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/XoyTJ_k8OD_jcBReRJmUx0Wy-uY.roa
Signing time: Sun 01 Jan 2023 07:34:49 +0000
ROA not before: Sun 01 Jan 2023 07:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43905
IP address blocks: 185.89.90.0/24 maxlen: 24
185.89.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:30:2b:31:47:95:35:53:ee:ac:87:b4:0f:64:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f66522f403d8c994a484682870799417ce1e81
Validity
Not Before: Jan 1 07:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e8c9327f93c383fe370145e449994c745b2fae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cb:8b:7f:60:0a:8d:0e:73:fd:96:ad:b2:80:
61:01:56:58:80:c2:96:17:81:47:6f:91:cd:a1:cd:
fc:67:bc:e9:57:82:67:c4:e2:16:7d:8f:aa:4b:b3:
f8:da:58:83:5d:13:52:39:46:05:b8:52:0f:ed:50:
a3:01:2f:11:d2:d6:6a:04:60:f5:30:95:cd:cf:d5:
c2:eb:19:4b:a5:e4:40:c4:1c:2a:a4:dc:cb:90:0b:
43:87:06:c5:75:72:ce:20:0d:c0:d1:7d:25:77:d5:
76:fa:4c:54:48:6b:b1:c1:30:7f:38:2c:be:17:b1:
92:a0:22:f6:f0:f9:0f:06:0b:75:ae:90:97:8c:21:
3b:84:fd:d1:a0:70:24:ac:17:bd:06:62:89:82:d2:
81:da:b1:35:46:52:4c:6a:ee:76:b4:3a:b2:fa:1d:
f3:09:9a:39:82:66:ae:86:5d:80:93:d6:2e:ae:7b:
ed:c0:cf:a3:9a:b8:1d:16:7e:49:f4:74:c5:16:47:
b1:e3:7e:2d:9f:45:f0:74:f5:b4:1e:13:d3:c7:cd:
14:00:12:e2:f7:ba:13:d1:22:00:72:d6:2a:8b:e9:
b9:24:c7:92:69:ec:d3:9d:d6:fd:f5:3d:7e:46:ad:
83:0b:ca:64:fe:44:ab:5a:a0:2a:e8:46:72:ce:bb:
9a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8C:93:27:F9:3C:38:3F:E3:70:14:5E:44:99:94:C7:45:B2:FA:E6
X509v3 Authority Key Identifier:
keyid:A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/XoyTJ_k8OD_jcBReRJmUx0Wy-uY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.90.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:c8:a1:f2:b3:6a:26:96:e8:9d:4c:57:f0:79:28:48:2c:47:
cd:c4:93:4f:d7:ab:3d:ee:45:e5:b7:70:c7:c6:8f:05:78:5e:
c5:fe:bd:93:e2:7f:d5:33:42:f6:ed:1f:50:a2:11:4c:95:32:
e4:26:73:6f:de:19:3e:83:7d:6f:de:07:08:46:42:a2:b7:70:
64:9f:68:90:26:13:0b:0a:c0:78:ed:df:1c:20:1d:9e:20:58:
b7:8a:46:d1:34:c8:d8:3b:70:c6:a0:6d:1a:17:8f:d2:fc:50:
87:dd:bc:86:5a:6f:eb:13:4f:e7:32:c5:d6:a9:e1:91:c0:31:
5c:d8:fd:76:c2:ba:b4:17:e3:42:aa:52:4d:7d:95:1f:46:e8:
3d:4e:d7:00:9a:b2:5c:14:9c:a0:89:30:ba:c9:b7:76:96:60:
ed:56:c7:fe:de:7f:39:40:ef:66:45:00:d2:97:19:11:c3:c5:
b5:c5:c9:28:71:2f:1d:f4:31:1f:ef:83:93:e7:07:98:41:bf:
bb:cf:44:e4:ce:a3:5a:21:ff:ea:60:7d:66:52:68:c1:3e:0e:
b8:0d:dc:bf:c0:d2:15:dd:bc:ea:0a:f3:1f:ae:e4:23:e2:f5:
b9:37:32:dc:6d:66:05:ec:a8:fb:79:d0:50:6a:bb:65:e3:af:
5a:b4:b4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:44:03 2025 by rpki-client