Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/8lTz5b2TiZbtR5cJ_-lr8Ny5XJ0.roa
File: 8lTz5b2TiZbtR5cJ_-lr8Ny5XJ0.roa (raw, json)
Hash identifier: 2b0l1CXn66H+Tho7zgZnekdd81o/siqoEuLEwANoY6U=
Subject key identifier: F2:54:F3:E5:BD:93:89:96:ED:47:97:09:FF:E9:6B:F0:DC:B9:5C:9D
Certificate issuer: /CN=1501c845f13dd4ad6e9dae470d5ff69c5cca3771
Certificate serial: 01856C53AD111A06C7DDB78248B3038425A5
Authority key identifier: 15:01:C8:45:F1:3D:D4:AD:6E:9D:AE:47:0D:5F:F6:9C:5C:CA:37:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FQHIRfE91K1una5HDV_2nFzKN3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/8lTz5b2TiZbtR5cJ_-lr8Ny5XJ0.roa
Signing time: Sun 01 Jan 2023 07:55:01 +0000
ROA not before: Sun 01 Jan 2023 07:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57817
IP address blocks: 89.184.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:ad:11:1a:06:c7:dd:b7:82:48:b3:03:84:25:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1501c845f13dd4ad6e9dae470d5ff69c5cca3771
Validity
Not Before: Jan 1 07:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f254f3e5bd938996ed479709ffe96bf0dcb95c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6b:7e:ee:18:2d:a2:9e:d7:63:5b:b9:61:10:
ad:6a:66:3d:98:dd:16:e7:53:c6:99:7e:a9:a7:e0:
4e:af:98:e4:99:20:2f:90:87:08:a8:7c:cd:00:a2:
2e:e5:de:4a:2b:a0:fa:12:af:1f:c3:e3:2d:14:0a:
dc:92:65:e6:b5:0c:e8:be:40:e1:45:77:a3:dd:b6:
94:88:37:66:bf:c1:0e:10:f6:d9:8d:57:2c:e5:41:
ab:28:fe:33:9f:e3:e5:19:aa:75:60:51:e6:b0:ed:
a2:e6:af:cb:1b:f4:62:82:8f:bf:9d:18:7e:02:f6:
d3:c0:38:1e:e4:6d:15:51:fe:25:97:e5:9b:03:6c:
3d:51:93:ca:bc:52:3e:5d:ec:ad:af:c9:25:6e:36:
48:c7:70:a2:f8:3e:2e:32:5a:1d:74:4f:94:4c:ca:
bf:09:13:b1:a4:01:14:66:63:05:4b:54:e3:69:75:
70:29:6e:c0:78:3f:6d:9e:a5:45:0d:2f:8c:17:65:
77:20:b9:3c:62:74:9b:3c:0f:47:57:0e:cf:5d:a6:
6e:f8:99:b9:bd:6b:89:57:ec:10:33:be:d3:99:71:
eb:d5:61:5e:80:b0:1c:43:ae:03:82:93:76:e1:e8:
53:fe:3b:84:66:e3:98:ee:ad:59:f4:c6:38:10:25:
70:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:54:F3:E5:BD:93:89:96:ED:47:97:09:FF:E9:6B:F0:DC:B9:5C:9D
X509v3 Authority Key Identifier:
keyid:15:01:C8:45:F1:3D:D4:AD:6E:9D:AE:47:0D:5F:F6:9C:5C:CA:37:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FQHIRfE91K1una5HDV_2nFzKN3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/8lTz5b2TiZbtR5cJ_-lr8Ny5XJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/FQHIRfE91K1una5HDV_2nFzKN3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.184.107.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:8b:d6:43:8a:a2:90:2b:ac:ed:df:1e:c0:c5:ed:9c:95:8a:
b3:4c:0c:f5:83:59:ba:2e:1d:97:b8:9e:3c:91:22:88:6b:f6:
b9:c9:bc:7f:89:8d:ac:87:1e:73:09:25:57:c8:87:68:29:76:
5a:24:23:46:66:c6:3d:e6:fb:d9:8f:c4:48:93:13:45:a1:d2:
7a:b0:b3:20:22:61:c4:bb:5c:62:e2:15:fc:6e:8b:1e:7d:f9:
f0:3b:7d:05:cb:36:f2:a9:86:12:5e:2e:ca:d4:7c:11:9a:cb:
3d:bd:3f:94:7b:83:6f:1d:67:f9:71:9f:71:84:dd:f1:ea:f6:
23:db:ce:38:8d:07:70:41:90:fb:7e:f9:c6:e7:38:6b:73:9c:
13:4a:29:6f:1d:22:54:98:fb:9e:d5:a3:6e:4c:54:f9:78:0a:
2b:16:c6:05:0f:e4:d1:0c:e6:21:0a:e8:14:c7:b7:7b:cf:f8:
70:eb:2e:4c:c7:9e:b3:58:d3:dd:63:39:ce:ea:52:d2:28:21:
84:2e:38:7c:17:73:10:cb:35:79:a3:9a:2e:70:76:d9:21:a6:
03:6e:72:2f:14:8a:73:53:83:9d:1f:7e:4d:38:0b:27:45:5b:
e3:f1:e5:82:39:86:f6:e7:31:6b:56:6c:ff:f1:8a:f9:6e:ae:
34:fa:b5:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:06 2025 by rpki-client