Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/jKNRwWVKtgm7Hr_BgB2UoeK1N3g.roa
File: jKNRwWVKtgm7Hr_BgB2UoeK1N3g.roa (raw, json)
Hash identifier: ba4NXziXqSZt+mwA9YTuj6rb6TA7d7rzm3FoPWfLO04=
Subject key identifier: 8C:A3:51:C1:65:4A:B6:09:BB:1E:BF:C1:80:1D:94:A1:E2:B5:37:78
Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Certificate serial: 03558105
Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/jKNRwWVKtgm7Hr_BgB2UoeK1N3g.roa
Signing time: Fri 04 Feb 2022 04:49:20 +0000
ROA not before: Fri 04 Feb 2022 04:49:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34665
IP address blocks: 89.185.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55935237 (0x3558105)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Validity
Not Before: Feb 4 04:49:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ca351c1654ab609bb1ebfc1801d94a1e2b53778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:75:e6:11:e5:96:fb:c3:6d:11:22:89:52:c8:
20:74:bf:9b:2b:65:e9:75:84:fc:0b:da:63:88:42:
53:a7:34:13:bf:c9:82:56:81:9e:b9:81:1f:c7:c3:
5f:20:c8:56:4e:85:6a:75:cd:02:35:5b:94:eb:f2:
d1:d2:7d:b5:ae:67:c8:1f:4d:58:5e:0f:e5:d2:85:
b1:6a:e4:ec:f1:d3:75:c7:ce:6b:a0:f9:16:29:58:
cf:9e:cb:24:7f:c1:aa:12:3c:47:f8:6d:29:88:67:
a5:7d:c7:e9:11:42:91:0c:90:f2:5c:ac:66:a7:d8:
e7:67:88:d6:19:6e:b3:71:4e:fd:ca:88:8d:bf:57:
f3:ea:4b:64:96:24:8d:43:f0:8b:d8:b3:2e:09:cb:
21:1d:6a:3a:68:82:ce:16:e3:a8:2a:78:8a:74:cb:
b5:96:7b:11:47:28:d2:dd:d2:6e:4f:f7:e9:5b:f7:
fe:b5:e7:0f:93:8d:dd:40:3b:f1:d0:08:90:72:11:
cf:91:7a:d2:c6:b0:84:4c:e1:01:27:48:49:79:36:
f0:85:69:eb:f6:81:52:74:1a:08:c0:0f:c2:da:67:
63:5d:a4:85:c8:ab:a2:d9:a7:da:f8:93:4c:6a:6f:
8f:39:54:b3:fd:cc:04:e4:03:c5:07:45:6e:f1:05:
45:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A3:51:C1:65:4A:B6:09:BB:1E:BF:C1:80:1D:94:A1:E2:B5:37:78
X509v3 Authority Key Identifier:
keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/jKNRwWVKtgm7Hr_BgB2UoeK1N3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.84.0/24
Signature Algorithm: sha256WithRSAEncryption
18:5f:2c:bf:c9:d1:35:56:04:4c:16:fa:6e:97:3a:9a:b8:f2:
6b:bc:ea:61:01:84:b5:cc:e1:88:6a:44:5e:6f:bb:73:f1:51:
16:28:69:37:ed:40:c8:b0:96:fb:ea:a5:39:dc:5e:c2:b6:38:
25:48:ee:79:e4:aa:27:ca:fc:fd:92:f8:c9:70:d7:a5:bf:c3:
27:8b:19:b6:c4:65:f0:73:d9:57:79:17:54:7f:7c:46:d5:d8:
1c:15:ec:1a:d3:37:f9:92:0c:3e:58:6e:80:c5:a4:b9:3a:68:
33:f7:fc:80:35:a4:fc:b1:ff:da:34:68:a6:1f:de:f3:e2:88:
4c:51:15:b2:70:95:2e:70:29:37:96:a8:7b:df:e7:64:82:0b:
31:1d:38:3d:47:42:69:5b:50:54:36:5a:84:68:3b:1a:bd:53:
7d:6b:7b:08:86:9d:f3:ee:3e:5a:03:69:36:d9:c8:0b:33:0e:
76:10:5d:3e:6c:5d:a0:95:4d:c7:a8:58:2c:3c:24:7b:f0:7f:
37:88:4a:32:0d:5f:1a:97:d6:68:88:a7:7d:07:f4:f6:95:82:
da:8f:66:92:da:0d:09:91:64:0f:dc:46:4b:28:67:dd:e6:a3:
58:55:8e:82:c8:2f:33:84:84:1f:0b:dc:84:35:64:f2:a8:8a:
8b:d4:4c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:18 2024 by rpki-client on console-ams.rpki-client.org