Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/82104b-4e44-4309-894b-b9d3e134e8ae/1/Rj0w1huBdocDaEiIT073Bj8ibEI.roa
File: Rj0w1huBdocDaEiIT073Bj8ibEI.roa (raw, json)
Hash identifier: Y5DUFoQgeA3NetEja28zFv7eeD+CTnK7rI77HIkIGAI=
Subject key identifier: 46:3D:30:D6:1B:81:76:87:03:68:48:88:4F:4E:F7:06:3F:22:6C:42
Certificate issuer: /CN=e6a7ff16095332c5201bca9d54c16e1847a82f24
Certificate serial: 0184D460437CD1CB5DAA0D0A2F0C121F4428
Authority key identifier: E6:A7:FF:16:09:53:32:C5:20:1B:CA:9D:54:C1:6E:18:47:A8:2F:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qf_FglTMsUgG8qdVMFuGEeoLyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/82104b-4e44-4309-894b-b9d3e134e8ae/1/Rj0w1huBdocDaEiIT073Bj8ibEI.roa
Signing time: Fri 02 Dec 2022 19:46:29 +0000
ROA not before: Fri 02 Dec 2022 19:46:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210546
IP address blocks: 89.107.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d4:60:43:7c:d1:cb:5d:aa:0d:0a:2f:0c:12:1f:44:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a7ff16095332c5201bca9d54c16e1847a82f24
Validity
Not Before: Dec 2 19:46:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=463d30d61b817687036848884f4ef7063f226c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9c:d3:bc:5a:72:4a:a9:e6:05:3b:ef:b7:04:
24:d4:0f:7e:e8:d0:06:45:32:c9:14:da:af:d7:3d:
53:e1:fd:68:d0:14:86:ec:5e:7e:82:74:28:23:f9:
46:e1:e7:18:0b:1a:3e:47:5a:a1:b3:bb:33:fe:77:
16:57:37:88:2e:09:d6:b1:fd:87:ac:ad:b1:17:c1:
9b:7c:0d:f7:27:c7:39:66:14:11:58:2a:7b:83:d4:
9a:0f:a0:23:76:ee:15:15:68:bf:a2:8d:0e:cf:d8:
b2:15:8b:9c:c8:6e:eb:50:cd:fc:a8:80:8b:44:cd:
06:54:5b:91:dd:4c:ae:c1:cc:5a:5a:84:68:05:a6:
61:54:c4:25:6a:a9:cc:40:3e:cd:bc:30:07:8c:12:
55:d4:ea:68:67:c5:77:7a:7f:9f:e1:28:42:71:74:
bd:f0:d6:05:df:82:3f:43:bf:62:b0:59:a2:6e:d5:
f6:f4:1d:03:96:51:e5:9e:34:36:66:01:60:31:35:
fe:d6:eb:cb:13:42:0c:c7:0b:8a:a9:77:32:69:76:
45:bf:4c:79:a5:be:4a:3f:ad:b5:7f:f4:be:e0:e2:
05:e0:97:96:b5:7a:4a:0a:26:41:f0:4f:61:22:83:
d3:ae:a7:6f:3f:a7:e4:6f:a1:11:fc:19:01:88:27:
c7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:3D:30:D6:1B:81:76:87:03:68:48:88:4F:4E:F7:06:3F:22:6C:42
X509v3 Authority Key Identifier:
keyid:E6:A7:FF:16:09:53:32:C5:20:1B:CA:9D:54:C1:6E:18:47:A8:2F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qf_FglTMsUgG8qdVMFuGEeoLyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/82104b-4e44-4309-894b-b9d3e134e8ae/1/Rj0w1huBdocDaEiIT073Bj8ibEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/82104b-4e44-4309-894b-b9d3e134e8ae/1/5qf_FglTMsUgG8qdVMFuGEeoLyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.10.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:fa:d2:5f:cb:15:35:47:2d:bb:e0:6a:83:49:2d:58:df:0e:
cd:ed:c2:83:bc:fb:99:6e:bc:ee:63:b9:66:e2:25:30:d8:c6:
fe:61:ef:47:f0:ee:44:a5:0c:ba:c7:2e:f8:9a:10:32:c5:cc:
9c:88:16:b8:e8:ff:d4:20:aa:22:5b:8f:6b:10:79:56:73:9e:
82:07:38:dd:af:0a:11:cc:4e:f9:b0:ec:4f:fd:d1:d4:50:85:
7e:11:b7:f0:f3:69:d9:ac:75:cd:e5:4b:87:79:1c:7b:2e:2c:
a4:42:cb:e0:82:fd:06:cf:28:6c:e3:8e:61:d1:6e:c6:8a:56:
fd:64:2a:c1:a9:c1:98:be:fc:08:54:b9:ed:b1:f3:9a:b7:18:
0d:5b:eb:e2:1b:c9:8a:4f:9a:5a:9a:51:a6:1f:ae:42:e0:e3:
dc:76:00:ce:30:87:5a:a8:63:39:78:dc:c1:d2:83:bf:c1:b2:
8f:14:62:90:8e:84:64:c2:c8:5b:46:bb:94:c5:2a:46:0b:a8:
6a:8a:d3:25:ef:40:cc:5b:6a:dc:92:e5:34:a5:8f:a0:34:19:
01:22:77:61:0d:fc:70:25:1e:93:e6:d0:51:e8:6e:93:33:35:
d1:b3:11:a0:77:50:ff:08:ed:59:f5:54:06:98:94:64:61:8f:
fc:63:42:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:30 2023 by rpki-client on console-ams.rpki-client.org