Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/7Qe3WCFXHGnrXUjnUTt4LtK2dJ0.roa
File: 7Qe3WCFXHGnrXUjnUTt4LtK2dJ0.roa (raw, json)
Hash identifier: mg9SIRW5xK9dHjVKrSVa+OrKYK5TJDMNliu121+4Fd4=
Subject key identifier: ED:07:B7:58:21:57:1C:69:EB:5D:48:E7:51:3B:78:2E:D2:B6:74:9D
Certificate issuer: /CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Certificate serial: 018461312F116651F772C93FB1D44E31FABC
Authority key identifier: 25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/7Qe3WCFXHGnrXUjnUTt4LtK2dJ0.roa
Signing time: Thu 10 Nov 2022 10:58:43 +0000
ROA not before: Thu 10 Nov 2022 10:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134094
IP address blocks: 89.252.132.0/24 maxlen: 24
89.252.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:31:2f:11:66:51:f7:72:c9:3f:b1:d4:4e:31:fa:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Validity
Not Before: Nov 10 10:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed07b75821571c69eb5d48e7513b782ed2b6749d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a2:7d:4a:24:44:89:17:06:c7:9e:38:8f:e4:
53:43:ce:a4:cc:3d:9b:06:1e:a1:58:e6:93:74:ae:
95:ea:ee:bc:c3:6c:df:f4:be:68:ef:08:25:2b:8b:
31:b0:b6:98:02:c1:f3:92:c5:d3:ee:a9:22:c3:93:
26:9b:e2:4f:ba:e5:0e:2d:da:cd:94:25:bc:d3:2a:
76:ca:9f:33:62:9e:6a:77:bf:f1:66:0a:45:50:68:
45:37:22:43:2f:9d:8e:3f:9e:58:47:20:12:11:35:
c4:6e:c4:ef:28:e5:70:90:88:8e:91:20:ac:82:94:
f0:52:bd:b7:02:39:c1:77:d8:4d:ff:e1:6c:44:8e:
1c:57:d6:ac:de:bc:70:73:b8:66:3a:8b:f5:bd:69:
e2:72:da:79:41:ff:b4:cc:7a:de:04:7c:d7:df:41:
e9:b9:71:bf:0a:29:4f:de:b3:48:7c:ea:d0:d3:4c:
f8:99:32:f1:3e:79:d5:bc:a1:c3:e4:f5:6b:33:03:
b5:7c:f0:1d:ff:69:2c:74:da:84:e9:7a:9f:20:5a:
d2:3e:ae:d2:a1:6f:b9:83:82:9f:23:e7:80:cd:6a:
33:00:2e:ae:f3:27:90:00:85:e2:4c:9f:6f:ce:2a:
d8:b7:9f:14:21:f5:45:23:68:70:58:60:d0:8e:52:
8a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:07:B7:58:21:57:1C:69:EB:5D:48:E7:51:3B:78:2E:D2:B6:74:9D
X509v3 Authority Key Identifier:
keyid:25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/7Qe3WCFXHGnrXUjnUTt4LtK2dJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.252.132.0/23
Signature Algorithm: sha256WithRSAEncryption
68:34:ab:a3:4c:e4:70:9e:8d:c9:fc:07:be:ff:b7:18:81:56:
bc:66:b6:62:77:0c:7f:98:1b:aa:f6:e8:db:d5:f3:b0:5a:a1:
86:69:2d:38:d5:44:85:32:b7:04:4a:3b:3b:dd:73:74:c0:37:
e0:ce:d1:45:4b:df:e0:d3:cd:3a:52:11:1e:38:73:30:5f:40:
cf:7b:f3:d1:32:70:a4:ef:9c:dc:4c:83:70:c3:14:aa:63:a9:
f0:1f:f1:fc:9d:39:46:32:e5:ce:53:58:b1:ca:11:d2:53:6b:
98:e2:18:d7:a4:28:19:d8:c3:7c:85:f2:60:1a:21:27:16:66:
34:d8:70:e1:38:1b:72:08:5d:53:66:91:d1:32:86:67:a2:97:
d3:2d:bf:9c:0a:6f:81:be:69:72:15:50:c2:81:2c:09:30:fd:
1f:07:d0:ec:51:b4:22:8d:1a:10:cc:51:77:4f:b6:36:6b:25:
16:5c:7d:50:7f:ad:01:17:e2:ed:49:ef:25:86:94:c3:21:5f:
f9:c8:d4:67:7e:fc:fc:25:89:da:2a:31:7c:99:f6:f5:fc:eb:
f9:06:ab:8f:b9:d4:c3:d7:77:b5:3e:e6:a3:1f:6f:e5:38:2b:
1a:4c:c3:7d:10:8c:37:11:fc:9c:fb:5b:cc:e2:d2:c2:0d:b8:
41:dd:b7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:51 2024 by rpki-client on console-fra.rpki-client.org