Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/afWS3bMbxsKUZz2uj2mb4gDHAcE.roa
File: afWS3bMbxsKUZz2uj2mb4gDHAcE.roa (raw, json)
Hash identifier: MJJDlkWZrDx4+q3FKirSPOyAWs5u8zWQqO9+BDAW96c=
Subject key identifier: 69:F5:92:DD:B3:1B:C6:C2:94:67:3D:AE:8F:69:9B:E2:00:C7:01:C1
Certificate issuer: /CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Certificate serial: 11990318
Authority key identifier: 25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/afWS3bMbxsKUZz2uj2mb4gDHAcE.roa
Signing time: Wed 27 Apr 2022 11:47:40 +0000
ROA not before: Wed 27 Apr 2022 11:47:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134094
IP address blocks: 89.252.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295240472 (0x11990318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Validity
Not Before: Apr 27 11:47:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69f592ddb31bc6c294673dae8f699be200c701c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:49:14:63:6e:e3:f0:50:ea:37:01:ed:a6:8b:
e3:5e:a6:a3:ee:7c:04:e8:90:d4:1d:61:a6:b2:04:
ec:06:22:72:19:86:d3:cf:0f:37:46:6c:7c:69:b9:
82:20:cc:32:49:1a:fa:81:dc:1c:c1:ed:26:17:b6:
cd:6c:9a:29:28:e7:fa:f7:e2:84:91:85:34:7d:92:
13:6e:22:9b:17:2b:4a:1e:a1:fc:97:fc:03:8c:b9:
d8:17:20:34:1e:ab:d5:3f:04:3c:a0:87:ad:c3:13:
08:41:ad:21:42:44:80:a1:d8:01:21:4e:07:fc:39:
c8:23:77:7e:20:bb:d3:8e:c9:55:de:b2:a3:3b:36:
5f:e2:1b:5a:87:9e:cc:ba:6c:bd:f5:52:c7:45:3d:
63:c6:f9:dc:57:5c:3d:1c:1a:ec:ac:93:3c:bb:ca:
d3:bd:0e:cd:63:1b:d8:fb:aa:77:5c:99:7f:bf:1d:
55:26:0c:08:a9:4a:20:2c:46:79:75:74:98:41:f9:
6c:1e:90:f9:52:1a:88:1a:15:e6:92:06:89:73:67:
76:b4:0a:8a:b1:17:db:3f:e0:86:b4:b9:d2:bd:cb:
f7:73:9b:82:29:c6:da:a9:0d:7e:88:c1:dd:f1:e1:
76:e4:20:c8:80:92:24:a4:c5:77:ba:fc:c6:0f:5c:
0a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F5:92:DD:B3:1B:C6:C2:94:67:3D:AE:8F:69:9B:E2:00:C7:01:C1
X509v3 Authority Key Identifier:
keyid:25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/afWS3bMbxsKUZz2uj2mb4gDHAcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.252.132.0/24
Signature Algorithm: sha256WithRSAEncryption
86:2d:4b:f3:1c:b6:b4:4c:1d:1f:b9:bd:cb:9f:bd:2a:04:5d:
05:1f:9a:a2:be:29:bb:40:c7:8b:74:f3:bf:15:59:40:1b:dd:
42:07:ae:33:cc:c0:a7:8c:65:9e:56:25:c5:d2:67:42:9d:63:
0b:68:70:32:71:23:9c:b8:e5:81:99:8e:04:d2:c8:4a:42:b0:
c6:98:1a:91:9d:6c:fe:c3:85:64:55:18:c8:18:e3:1b:49:a1:
bb:75:da:c8:78:ce:36:52:d0:a8:88:c9:05:8d:a6:90:af:28:
31:50:1a:24:1b:43:4b:e1:7b:cb:a9:d0:ad:32:06:31:86:f8:
66:58:c5:09:ee:0c:a6:d3:f3:41:3a:93:11:1d:7c:3f:cb:fc:
00:b1:84:90:64:94:b5:61:8c:a5:a3:de:8e:1c:d3:45:83:06:
90:f2:2e:87:94:97:4f:24:e0:42:ac:49:12:e0:3c:08:b1:47:
57:e7:5b:7c:83:a1:b8:e0:09:06:31:42:f0:b2:f2:3c:ea:f3:
44:c9:1c:00:10:e6:f2:f6:b5:64:86:11:3c:56:20:3d:c8:fe:
33:4c:c6:bd:e4:6f:6d:b2:b7:04:68:53:b0:20:0c:7c:58:41:
aa:05:44:50:05:07:84:9e:ed:bb:07:1e:2c:c8:8a:cb:7e:c3:
cf:8a:24:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:08 2024 by rpki-client on console-ams.rpki-client.org