Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/NEGQt3oQ--DkYbAXBaxmxnnz-Gs.roa
File: NEGQt3oQ--DkYbAXBaxmxnnz-Gs.roa (raw, json)
Hash identifier: mfZjbptxblsG6bwWW2of+Ri2zk593i8HI4lFRf7EuFQ=
Subject key identifier: 34:41:90:B7:7A:10:FB:E0:E4:61:B0:17:05:AC:66:C6:79:F3:F8:6B
Certificate issuer: /CN=0c2ce64c3e65a8202a7c1b1b20ca11e45ae6d58c
Certificate serial: 032913
Authority key identifier: 0C:2C:E6:4C:3E:65:A8:20:2A:7C:1B:1B:20:CA:11:E4:5A:E6:D5:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCzmTD5lqCAqfBsbIMoR5Frm1Yw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/NEGQt3oQ--DkYbAXBaxmxnnz-Gs.roa
Signing time: Sat 28 May 2022 10:18:13 +0000
ROA not before: Sat 28 May 2022 10:18:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47505
IP address blocks: 89.36.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207123 (0x32913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c2ce64c3e65a8202a7c1b1b20ca11e45ae6d58c
Validity
Not Before: May 28 10:18:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=344190b77a10fbe0e461b01705ac66c679f3f86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e1:a4:73:70:84:77:af:a8:67:d7:31:c5:12:
5a:c3:57:e0:73:23:5d:08:ad:72:71:64:71:5a:fe:
8e:c4:3d:fa:ce:db:6a:57:1c:2c:cc:0b:f4:11:ef:
68:da:82:c1:af:ad:7e:21:72:b4:95:34:2e:c1:a1:
1e:be:52:f9:36:1e:82:06:03:ec:68:a5:89:81:5c:
88:86:d3:d2:5d:0b:42:88:b8:9e:2b:70:10:ea:e7:
ac:bd:e3:14:ed:43:16:10:33:c9:ed:54:83:b1:71:
f5:0a:89:e4:ff:69:73:a6:cc:ce:a5:78:9f:57:10:
9c:fa:8e:e1:e4:85:ad:40:77:a3:09:c9:26:6b:0f:
b9:9f:b9:e4:9e:ed:27:6a:4e:9b:a9:85:b4:2a:d3:
c0:c3:ee:92:0b:16:5f:6a:89:a5:6c:ce:83:65:30:
9e:1c:8d:a3:f3:0f:a7:da:56:f7:27:ae:be:80:9c:
ca:a5:b0:50:39:af:13:f7:4b:9e:6d:08:ba:01:1d:
c2:d7:53:69:f7:54:71:87:e9:e3:e9:a4:65:ea:40:
16:03:d7:f7:07:e2:5e:24:4b:b6:b2:88:42:d0:c4:
6d:20:e3:60:e8:ea:ab:64:a1:c1:f9:97:82:9b:8a:
b5:24:de:b7:ec:89:f1:de:09:77:08:2a:8e:76:46:
f4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:41:90:B7:7A:10:FB:E0:E4:61:B0:17:05:AC:66:C6:79:F3:F8:6B
X509v3 Authority Key Identifier:
keyid:0C:2C:E6:4C:3E:65:A8:20:2A:7C:1B:1B:20:CA:11:E4:5A:E6:D5:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCzmTD5lqCAqfBsbIMoR5Frm1Yw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/NEGQt3oQ--DkYbAXBaxmxnnz-Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/8a00c2-bb87-40a7-b1e9-5c4b76f48d50/1/DCzmTD5lqCAqfBsbIMoR5Frm1Yw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.8.0/21
Signature Algorithm: sha256WithRSAEncryption
62:dd:c2:47:3d:54:96:86:01:c7:cc:57:2f:1a:f3:19:8e:b2:
0f:0b:1a:44:59:70:95:aa:99:00:e1:5e:bb:0a:09:d0:15:48:
8e:35:b6:de:6a:c2:f4:40:fc:2c:d3:21:0b:71:9c:d7:ac:71:
70:89:d5:1d:05:45:3b:35:50:d5:fa:2d:53:a1:29:b9:be:8c:
7f:43:44:99:21:fb:d1:ee:88:0c:f2:9b:df:7c:98:89:92:e2:
e9:d8:fa:06:52:5b:3e:11:e5:87:32:b3:7a:49:04:fa:25:8f:
b8:3d:a3:de:b9:01:c6:cc:d1:69:23:0b:4d:32:b4:92:6b:fb:
7f:a6:a0:e8:1e:f3:a5:8d:39:38:79:64:44:a7:02:bd:0a:e9:
e7:de:4e:b2:e1:2e:69:95:7c:b6:b8:30:04:3b:48:e4:1e:db:
4b:69:07:78:b8:21:46:ef:15:93:60:55:7a:3c:40:a5:90:99:
a9:f2:8d:e2:78:f5:14:31:a4:db:24:71:42:29:8c:d3:37:5b:
7b:d0:5b:32:f3:c2:db:35:fa:be:5f:c7:e1:b4:ec:9b:1e:3e:
28:ed:21:16:4b:80:51:93:a1:00:a8:b5:62:05:9f:86:0b:1d:
b9:17:4c:b8:1b:e6:0c:93:59:1b:9f:09:27:b5:7f:04:2c:15:
e6:0f:a1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:56 2024 by rpki-client on console-fra.rpki-client.org