Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/fYPpqAZH5kudxE1s6bLwM9StFak.roa
File: fYPpqAZH5kudxE1s6bLwM9StFak.roa (raw, json)
Hash identifier: HgVxb8RElbekoLnC1gnS6rRBP350w7jHOHt3Y6TDVxE=
Subject key identifier: 7D:83:E9:A8:06:47:E6:4B:9D:C4:4D:6C:E9:B2:F0:33:D4:AD:15:A9
Certificate issuer: /CN=a7f66522f403d8c994a484682870799417ce1e81
Certificate serial: 028F3149
Authority key identifier: A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/fYPpqAZH5kudxE1s6bLwM9StFak.roa
Signing time: Sat 01 Jan 2022 03:51:48 +0000
ROA not before: Sat 01 Jan 2022 03:51:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60815
IP address blocks: 185.89.89.0/24 maxlen: 24
185.89.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42938697 (0x28f3149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f66522f403d8c994a484682870799417ce1e81
Validity
Not Before: Jan 1 03:51:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d83e9a80647e64b9dc44d6ce9b2f033d4ad15a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:e8:70:c8:e5:bd:52:79:ca:95:f3:2d:ae:35:
1c:da:93:d4:5b:5a:17:5f:63:c6:1c:db:5d:c1:c6:
fd:3b:7c:f3:65:f8:a9:84:41:9d:df:92:2d:e7:d4:
a8:51:a8:db:a9:95:2f:4e:62:79:25:2d:3c:92:a7:
95:c6:e4:c0:21:88:a3:ee:56:e2:46:c1:27:e4:3b:
96:05:d2:34:67:b1:a6:26:4a:6b:d0:fa:97:6b:3a:
87:d0:d1:d9:a3:4b:82:08:79:2f:b0:09:f5:22:59:
0d:dd:5f:36:28:0e:a7:14:ca:1c:4f:62:46:34:96:
e1:04:7f:1b:af:29:10:7c:e5:13:45:73:bb:3c:bb:
2a:61:20:8e:f6:30:09:ca:db:4e:47:f5:cd:74:b1:
38:bd:be:99:87:8e:b0:ac:94:b4:e9:46:25:2d:86:
b6:7e:86:c7:ff:2a:48:fe:45:9b:2d:54:30:f1:49:
b9:1e:cd:a4:30:70:81:95:aa:5b:0a:82:af:76:5e:
bb:ec:19:22:1b:aa:ca:69:e9:31:e5:b9:f9:66:bd:
55:f8:97:09:fe:2e:22:5f:fa:c8:23:ba:33:0c:bf:
6c:a1:5e:bb:80:92:62:1a:ee:3c:20:18:e6:e3:fe:
68:37:1e:28:08:ec:bb:9f:52:eb:3d:e8:3e:4f:08:
be:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:83:E9:A8:06:47:E6:4B:9D:C4:4D:6C:E9:B2:F0:33:D4:AD:15:A9
X509v3 Authority Key Identifier:
keyid:A7:F6:65:22:F4:03:D8:C9:94:A4:84:68:28:70:79:94:17:CE:1E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/fYPpqAZH5kudxE1s6bLwM9StFak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/52d0fe-cc6e-41d9-9643-c5d360fcdf0e/1/p_ZlIvQD2MmUpIRoKHB5lBfOHoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.88.0/23
Signature Algorithm: sha256WithRSAEncryption
19:09:18:83:e3:77:3d:16:78:cf:f8:37:ed:92:08:44:10:d2:
58:7a:f2:fa:98:74:7f:28:69:34:c3:17:74:61:02:0e:00:25:
07:d3:eb:00:9b:ac:c1:f0:4e:7b:e3:5d:b2:66:42:ad:82:bb:
09:f1:aa:77:25:7f:4f:96:4d:fc:32:ac:8a:8c:de:95:54:bb:
c2:b8:11:8c:8a:c9:f6:28:6a:57:04:3c:34:f8:57:67:05:6b:
ae:48:3a:b4:6f:90:c3:07:b5:be:a1:27:cb:3b:57:63:89:2a:
b8:06:ad:04:8e:8a:a8:ad:86:cf:37:a5:5b:91:17:67:09:74:
0b:6a:da:d1:34:34:f5:d9:24:cd:20:7a:58:4d:4a:01:6b:a9:
ec:3a:6a:80:11:b3:65:88:52:82:b4:6e:28:c9:31:0e:ff:21:
54:70:8b:37:8e:92:99:01:38:2a:a6:1b:81:f3:4b:bb:ed:82:
1b:93:50:a3:5e:86:d0:90:bb:b7:e5:c1:03:c3:3c:98:6b:f3:
7d:13:3f:c4:f4:06:51:3f:ec:59:20:3e:13:6f:8e:0b:41:e9:
3a:7d:a1:3d:f8:5d:04:13:0d:6c:3e:03:37:13:c1:54:08:b9:
16:79:18:8c:02:e1:32:bc:89:6a:57:b2:6f:a9:a6:ce:13:5b:
c4:1b:57:a4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAo8xSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
N2Y2NjUyMmY0MDNkOGM5OTRhNDg0NjgyODcwNzk5NDE3Y2UxZTgxMB4XDTIyMDEw
MTAzNTE0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Q4M2U5YTgwNjQ3
ZTY0YjlkYzQ0ZDZjZTliMmYwMzNkNGFkMTVhOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPLocMjlvVJ5ypXzLa41HNqT1FtaF19jxhzbXcHG/Tt882X4
qYRBnd+SLefUqFGo26mVL05ieSUtPJKnlcbkwCGIo+5W4kbBJ+Q7lgXSNGexpiZK
a9D6l2s6h9DR2aNLggh5L7AJ9SJZDd1fNigOpxTKHE9iRjSW4QR/G68pEHzlE0Vz
uzy7KmEgjvYwCcrbTkf1zXSxOL2+mYeOsKyUtOlGJS2Gtn6Gx/8qSP5Fmy1UMPFJ
uR7NpDBwgZWqWwqCr3Zeu+wZIhuqymnpMeW5+Wa9VfiXCf4uIl/6yCO6Mwy/bKFe
u4CSYhruPCAY5uP+aDceKAjsu59S6z3oPk8IvtECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR9g+moBkfmS53ETWzpsvAz1K0VqTAfBgNVHSMEGDAWgBSn9mUi9APYyZSk
hGgocHmUF84egTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BfWmxJdlFEMk1tVXBJUm9LSEI1bEJmT0hvRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzkvNTJkMGZlLWNjNmUtNDFkOS05NjQzLWM1ZDM2MGZjZGYwZS8x
L2ZZUHBxQVpINWt1ZHhFMXM2Ykx3TTlTdEZhay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzkv
NTJkMGZlLWNjNmUtNDFkOS05NjQzLWM1ZDM2MGZjZGYwZS8xL3BfWmxJdlFEMk1t
VXBJUm9LSEI1bEJmT0hvRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAblZWDANBgkqhkiG9w0BAQsFAAOC
AQEAGQkYg+N3PRZ4z/g37ZIIRBDSWHry+ph0fyhpNMMXdGECDgAlB9PrAJuswfBO
e+NdsmZCrYK7CfGqdyV/T5ZN/DKsiozelVS7wrgRjIrJ9ihqVwQ8NPhXZwVrrkg6
tG+Qwwe1vqEnyztXY4kquAatBI6KqK2GzzelW5EXZwl0C2ra0TQ09dkkzSB6WE1K
AWup7DpqgBGzZYhSgrRuKMkxDv8hVHCLN46SmQE4KqYbgfNLu+2CG5NQo16G0JC7
t+XBA8M8mGvzfRM/xPQGUT/sWSA+E2+OC0HpOn2hPfhdBBMNbD4DNxPBVAi5FnkY
jALhMryJaleyb6mmzhNbxBtXpA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:46 2024 by rpki-client on console-fra.rpki-client.org