Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/lYYRTBfB8QTcWxCb-wPU3XCvsUQ.roa
File: lYYRTBfB8QTcWxCb-wPU3XCvsUQ.roa (raw, json)
Hash identifier: nk4VojUFA2mZRxvkUeuZ2twLHTTLdolVIDjiUXg5tBQ=
Subject key identifier: 95:86:11:4C:17:C1:F1:04:DC:5B:10:9B:FB:03:D4:DD:70:AF:B1:44
Certificate issuer: /CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f
Certificate serial: 1446DC18
Authority key identifier: C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/lYYRTBfB8QTcWxCb-wPU3XCvsUQ.roa
Signing time: Sat 01 Jan 2022 15:01:58 +0000
ROA not before: Sat 01 Jan 2022 15:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60676
IP address blocks: 89.34.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 340188184 (0x1446dc18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f
Validity
Not Before: Jan 1 15:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9586114c17c1f104dc5b109bfb03d4dd70afb144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c6:f0:c2:83:a1:88:a4:38:76:3b:75:ee:e9:
df:24:85:5d:75:6e:d7:5b:dc:e0:48:32:fe:3f:f0:
5b:30:23:69:65:46:78:49:2a:63:67:79:32:86:b2:
b2:17:6a:72:ec:b4:bf:3b:fc:68:87:d0:5d:8f:1c:
d0:1f:0a:1d:3c:c8:06:64:04:46:1f:81:91:3f:8e:
5b:43:75:f9:39:b0:2f:15:24:11:27:d0:36:d9:fa:
cf:7f:0b:1d:94:d6:67:1b:f2:d8:a2:5e:b4:0d:4a:
f2:42:cc:d6:e9:eb:49:52:d8:09:91:95:23:19:3d:
a4:0a:81:07:f4:65:95:bd:2a:78:d4:7e:bf:0e:db:
84:d4:95:3d:95:39:87:6b:01:50:80:24:96:42:e6:
10:49:e0:21:da:f3:c0:f8:d2:19:e7:80:7c:dd:5d:
45:6c:50:56:e7:87:98:6a:51:b0:31:ec:1c:44:1a:
14:7d:97:b5:63:08:b4:33:56:4c:a9:af:ab:00:4d:
6f:8b:23:d3:d2:8d:43:56:90:79:29:d8:dc:6d:78:
4e:a6:42:56:8d:f0:4a:54:ae:11:c2:db:9c:62:ba:
31:56:68:ed:c6:30:d1:19:8a:7c:fb:c9:c3:8b:71:
ca:10:56:4b:a3:3e:60:43:16:89:58:32:01:64:ab:
a9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:86:11:4C:17:C1:F1:04:DC:5B:10:9B:FB:03:D4:DD:70:AF:B1:44
X509v3 Authority Key Identifier:
keyid:C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/lYYRTBfB8QTcWxCb-wPU3XCvsUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/w8BZHi60nQVZ5vzn7iqoHw9Zum8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.91.0/24
Signature Algorithm: sha256WithRSAEncryption
53:5f:b2:91:3a:da:ab:08:a0:25:7e:2e:14:da:80:74:0d:6f:
60:ec:5b:1a:44:17:f9:73:65:85:37:6a:a4:36:91:37:ce:45:
d1:f8:bf:08:29:f2:6b:2f:ac:e7:db:1b:22:81:db:0e:e7:56:
e5:75:4d:65:d0:8f:e6:6a:58:8f:4e:9c:25:65:5d:69:7f:21:
19:10:a5:bd:4d:29:8c:b0:73:e6:1b:a1:ba:a5:27:a3:a0:28:
df:ad:fd:be:28:84:53:b4:9e:57:b0:5c:16:d9:70:35:86:0e:
5a:0b:1f:96:52:07:f4:a4:9a:6c:5e:65:7c:a5:ad:75:21:cd:
25:2e:2d:27:a4:75:f1:d7:9c:39:07:74:52:1c:f1:6b:10:b2:
94:33:4a:12:71:07:43:00:a8:b9:fb:76:bb:06:b8:51:d6:85:
55:6e:6e:37:81:ea:fb:be:e6:a4:b6:ed:56:eb:c3:ec:d8:a8:
93:93:cc:cd:71:35:ed:e7:a9:84:cd:79:5e:a1:d6:fb:8f:06:
85:a9:7d:eb:c7:38:e3:20:05:6c:c2:4b:0f:c7:ec:98:1c:45:
a1:98:fe:14:5c:a8:3e:87:b9:a5:cb:03:d1:80:67:2d:b0:96:
23:76:95:1c:14:09:ba:52:2b:5f:63:39:2f:f5:39:71:3f:da:
8f:56:6c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:32 2023 by rpki-client on console-ams.rpki-client.org