Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/CdbmOIggl-XHWDcc63p4s_8-99w.roa
File: CdbmOIggl-XHWDcc63p4s_8-99w.roa (raw, json)
Hash identifier: jqX3TDRnyYI2gpo9u5/O3ZHgXh9TOA+Eb455LJzep7A=
Subject key identifier: 09:D6:E6:38:88:20:97:E5:C7:58:37:1C:EB:7A:78:B3:FF:3E:F7:DC
Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Certificate serial: 035762A6
Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/CdbmOIggl-XHWDcc63p4s_8-99w.roa
Signing time: Fri 04 Feb 2022 04:49:21 +0000
ROA not before: Fri 04 Feb 2022 04:49:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202984
IP address blocks: 89.185.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56058534 (0x35762a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Validity
Not Before: Feb 4 04:49:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09d6e638882097e5c758371ceb7a78b3ff3ef7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0a:9e:17:10:fc:97:3a:fb:18:b7:6d:4b:eb:
14:19:87:90:65:30:59:e6:89:6a:4f:44:2a:df:b8:
ed:fe:fd:93:f9:ba:e2:bf:e9:ca:04:d0:15:e6:9f:
8b:83:57:d4:c3:ac:d1:ab:87:d2:43:3f:95:4e:72:
b1:bb:c7:1c:72:e9:42:97:8f:69:f0:85:44:b6:f2:
61:41:e2:09:5a:42:c3:40:2d:98:9f:91:59:00:d0:
ba:ed:6d:89:bf:af:97:9a:67:4d:73:88:5e:0f:91:
e8:07:5a:29:04:71:ad:fa:ec:2c:d6:b4:54:0c:73:
1d:58:b2:20:80:61:b9:c1:04:4b:34:c8:5e:89:e6:
dd:b5:e6:d0:10:9f:b0:f4:52:66:34:b7:ac:e5:99:
27:70:66:12:ba:32:3a:c3:b0:b2:7c:37:5e:f3:43:
a6:52:e9:1a:bd:f6:49:b8:90:e9:8b:ff:0b:29:21:
7e:dc:de:e8:fa:e9:a9:25:67:13:93:c9:f8:05:ef:
ef:a3:3b:36:7e:e5:f6:2a:8f:7d:d0:1f:46:6e:e2:
af:27:a7:43:1e:4d:84:eb:28:7d:45:27:80:eb:7a:
5b:94:db:75:f2:c1:10:4e:c5:f6:6c:d9:71:55:40:
51:3a:fc:a1:9c:75:26:3b:62:a2:7b:51:ea:72:4b:
f7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:D6:E6:38:88:20:97:E5:C7:58:37:1C:EB:7A:78:B3:FF:3E:F7:DC
X509v3 Authority Key Identifier:
keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/CdbmOIggl-XHWDcc63p4s_8-99w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.85.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:bf:b2:5f:03:6f:06:25:51:b6:bb:56:56:e3:f0:88:41:ed:
59:21:ae:eb:10:6d:3c:c4:86:0d:2b:df:fd:c0:3e:3e:21:a7:
5f:15:2d:7c:e7:d8:cf:d2:fe:6b:66:b0:ab:f3:81:31:c2:6a:
d0:d6:0b:c3:f6:1f:05:ec:90:98:92:65:31:e8:94:16:33:a3:
79:9d:fe:4a:32:6b:1b:dd:ab:0f:da:95:44:fe:12:47:7d:c8:
38:24:7e:87:23:96:1f:c5:e9:df:5b:64:1c:12:0e:39:e1:71:
9e:43:da:08:61:1b:4f:2f:c0:c9:68:5d:70:51:a0:a1:62:28:
7b:20:52:75:ab:87:b2:aa:c7:73:af:b0:78:01:10:be:6f:bb:
57:d2:1b:13:5a:a8:1e:f0:a3:3c:aa:77:ba:82:42:cc:6c:db:
54:f5:3a:4d:22:a7:74:ee:91:10:17:86:73:45:db:5f:77:c4:
59:38:5a:95:48:22:59:28:d7:00:b6:7f:8d:4c:4e:1e:64:b8:
80:ab:8a:ce:ab:6b:ad:22:e4:21:ff:ed:b7:6c:9a:8a:1a:3e:
b6:c3:72:d3:85:5d:5e:1b:f0:d4:3f:25:8b:61:2e:d8:4f:9e:
31:78:e6:1b:81:fa:1b:f0:c8:94:5c:a8:03:f9:e1:ef:b0:b4:
a7:55:d4:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:18 2024 by rpki-client on console-ams.rpki-client.org