Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/82104b-4e44-4309-894b-b9d3e134e8ae/1/cdaah7O6eJtprkbUvtyA4djnsYA.roa
File: cdaah7O6eJtprkbUvtyA4djnsYA.roa (raw, json)
Hash identifier: 13/0c5QGDgcFu4S1EuUeQ0S5s3l5hzvcGwZtISja6xo=
Subject key identifier: 71:D6:9A:87:B3:BA:78:9B:69:AE:46:D4:BE:DC:80:E1:D8:E7:B1:80
Certificate issuer: /CN=e6a7ff16095332c5201bca9d54c16e1847a82f24
Certificate serial: 0BE5CB
Authority key identifier: E6:A7:FF:16:09:53:32:C5:20:1B:CA:9D:54:C1:6E:18:47:A8:2F:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qf_FglTMsUgG8qdVMFuGEeoLyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/82104b-4e44-4309-894b-b9d3e134e8ae/1/cdaah7O6eJtprkbUvtyA4djnsYA.roa
Signing time: Thu 03 Feb 2022 16:49:16 +0000
ROA not before: Thu 03 Feb 2022 16:49:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34665
IP address blocks: 89.107.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 779723 (0xbe5cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a7ff16095332c5201bca9d54c16e1847a82f24
Validity
Not Before: Feb 3 16:49:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71d69a87b3ba789b69ae46d4bedc80e1d8e7b180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0b:da:2f:70:34:bc:4b:44:a6:dc:8a:fe:be:
65:98:e5:15:71:b2:26:b8:6c:d2:13:32:9d:be:7b:
df:c1:28:c3:2c:bf:18:e4:be:98:24:05:94:21:b0:
ca:96:a4:ab:99:ff:b2:3d:39:21:f0:6a:e8:21:95:
33:a9:93:a2:97:65:25:4c:3b:8d:a3:bc:05:95:d6:
6c:01:07:18:4d:65:f2:11:f4:8a:27:c1:02:93:23:
87:50:d4:57:37:dc:cb:1f:49:95:2c:14:65:35:e0:
46:22:e9:44:b7:ff:e2:94:b4:a8:e6:f1:a0:19:30:
7e:b9:04:6a:fe:6b:ca:c4:a7:10:0e:c7:3c:33:49:
4b:65:42:72:06:8e:6e:61:1a:e5:8a:e1:8c:92:d6:
5a:fd:45:16:9b:85:65:c8:0d:28:42:45:4a:67:2e:
19:f0:41:82:b3:11:6b:ad:2b:af:fc:9c:7e:40:45:
ee:52:af:3a:83:b5:16:59:fd:bc:76:13:bd:2b:32:
29:a2:12:e9:77:36:6d:47:96:72:e6:6a:af:9b:4c:
65:f4:17:91:95:9c:67:44:3f:96:3a:00:98:3e:bd:
75:5f:70:9c:3a:8c:41:54:4a:8a:eb:61:0c:bc:a9:
2c:44:1d:76:24:01:7d:96:7c:41:ab:62:dd:94:e7:
1d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D6:9A:87:B3:BA:78:9B:69:AE:46:D4:BE:DC:80:E1:D8:E7:B1:80
X509v3 Authority Key Identifier:
keyid:E6:A7:FF:16:09:53:32:C5:20:1B:CA:9D:54:C1:6E:18:47:A8:2F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qf_FglTMsUgG8qdVMFuGEeoLyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/82104b-4e44-4309-894b-b9d3e134e8ae/1/cdaah7O6eJtprkbUvtyA4djnsYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/82104b-4e44-4309-894b-b9d3e134e8ae/1/5qf_FglTMsUgG8qdVMFuGEeoLyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.10.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:99:ad:11:27:53:55:0b:b8:6f:3f:81:4e:24:0b:29:71:66:
c3:4b:59:8d:da:68:95:01:0e:14:7e:4d:ca:2c:f3:bc:9e:ea:
84:47:c8:66:91:f0:34:b7:94:56:29:89:cf:54:d6:df:b3:6b:
fd:5b:af:35:45:e6:2b:3e:0a:0d:4a:3c:ae:49:3b:59:b1:d7:
44:36:aa:5b:91:52:0d:ef:41:d3:67:d7:0d:4d:8f:1d:95:23:
38:fd:6d:44:ce:f1:12:85:93:ad:c4:24:01:13:8f:6c:30:b2:
5e:e4:c0:27:2d:75:af:1e:dd:98:05:a2:4b:b5:74:d9:ec:92:
6f:eb:fb:0b:e6:6c:4b:47:25:e8:20:af:af:64:38:bb:80:5d:
de:40:6c:0b:e6:00:32:08:c4:3c:f6:8c:14:6a:d3:2a:2d:7b:
b5:45:ee:e0:40:72:8f:0e:86:10:52:4a:89:3e:fa:b2:75:58:
13:f8:6f:ed:2a:45:54:90:46:3e:8c:3a:88:95:5a:61:66:56:
34:65:22:21:ce:8a:5a:5b:20:08:46:ce:f8:df:82:dc:0a:4c:
fd:bb:f9:0a:3c:85:cb:f8:fc:59:b6:75:d6:e9:02:28:79:64:
ed:30:b2:31:14:e2:a8:a6:c3:e4:97:a9:31:d1:40:77:6f:71:
86:74:f7:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:30 2023 by rpki-client on console-ams.rpki-client.org