Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/ifrKkQKdXXHi6kUTNJdpBXnoJc4.roa
File: ifrKkQKdXXHi6kUTNJdpBXnoJc4.roa (raw, json)
Hash identifier: cQseO9K92+4KK/RcZjgwJ+kIH9ypUp+R85dtSZbZFy8=
Subject key identifier: 89:FA:CA:91:02:9D:5D:71:E2:EA:45:13:34:97:69:05:79:E8:25:CE
Certificate issuer: /CN=1501c845f13dd4ad6e9dae470d5ff69c5cca3771
Certificate serial: 3838CCA1
Authority key identifier: 15:01:C8:45:F1:3D:D4:AD:6E:9D:AE:47:0D:5F:F6:9C:5C:CA:37:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FQHIRfE91K1una5HDV_2nFzKN3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/ifrKkQKdXXHi6kUTNJdpBXnoJc4.roa
Signing time: Sat 01 Jan 2022 16:10:29 +0000
ROA not before: Sat 01 Jan 2022 16:10:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57817
IP address blocks: 89.184.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943246497 (0x3838cca1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1501c845f13dd4ad6e9dae470d5ff69c5cca3771
Validity
Not Before: Jan 1 16:10:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89faca91029d5d71e2ea45133497690579e825ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b5:5a:11:db:a2:49:89:33:11:71:73:a7:8c:
57:d7:f9:95:1d:30:54:e0:d0:63:36:de:18:c2:13:
01:c3:72:f2:27:30:64:bb:34:97:41:21:60:28:9c:
a9:bd:74:35:c3:53:ae:7f:db:8f:8f:76:79:a7:2b:
29:d4:e0:47:94:3e:57:a0:e4:20:bf:99:93:a4:1e:
7f:af:f6:a3:af:5b:d7:ad:7f:39:8f:bc:ff:e4:67:
f5:ab:df:89:1b:e1:68:ba:8b:04:fd:04:28:dc:2f:
9f:e1:58:26:5e:49:d1:06:b5:f4:50:e6:3f:fa:2b:
08:11:47:39:b4:d4:13:05:04:58:c1:93:7a:87:00:
8d:12:cf:be:af:41:0b:30:f4:17:1f:8a:1a:63:1b:
24:e5:db:20:eb:af:c4:a5:72:ac:d7:5b:61:52:e8:
7e:cd:cd:bc:2c:76:d7:1c:e8:bd:ff:26:24:09:fe:
06:49:66:2e:bf:51:46:74:07:ec:74:c2:9e:a7:e3:
73:60:03:cd:b5:4d:fb:67:82:d7:4a:56:19:e0:32:
50:4d:2a:69:bf:9d:48:e9:a3:6c:65:9c:03:01:ec:
b0:c6:67:1c:b7:52:a9:49:3b:53:80:54:10:98:6a:
bd:4a:2e:67:5f:80:c6:a1:ba:88:fb:57:5e:e6:6e:
71:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FA:CA:91:02:9D:5D:71:E2:EA:45:13:34:97:69:05:79:E8:25:CE
X509v3 Authority Key Identifier:
keyid:15:01:C8:45:F1:3D:D4:AD:6E:9D:AE:47:0D:5F:F6:9C:5C:CA:37:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FQHIRfE91K1una5HDV_2nFzKN3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/ifrKkQKdXXHi6kUTNJdpBXnoJc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/FQHIRfE91K1una5HDV_2nFzKN3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.184.107.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:b8:9a:9b:8c:55:0b:58:4a:1c:51:2a:ea:a1:c3:e0:51:a9:
95:d0:68:25:61:26:25:e0:4b:3f:24:e4:fb:f8:d9:e1:78:6a:
c3:38:9a:74:d1:1a:9b:60:81:b4:c1:ea:da:d3:a4:c2:ae:fb:
2d:27:f0:f3:1c:ef:a4:22:6d:17:31:9c:55:4b:13:01:94:96:
53:de:43:43:eb:f5:54:ad:fc:3a:d9:1f:16:eb:79:53:ac:97:
cf:b1:f5:a4:22:47:12:35:13:44:eb:a9:14:a5:8a:ba:07:53:
2f:55:c7:65:be:a7:9b:42:9e:d4:12:b0:bd:f4:7e:99:eb:f3:
a9:86:47:c7:0c:b5:1e:3d:68:47:b2:1a:0d:07:d1:47:59:d6:
d4:29:74:74:5d:12:8d:38:f4:e1:f0:ba:24:db:2e:16:87:6f:
d7:5f:69:96:80:81:d6:c5:a1:57:d2:c2:7f:34:f7:05:c3:70:
80:df:ec:5c:88:f0:b5:77:26:f3:6c:e7:19:36:3f:f8:2c:42:
fe:a9:75:96:a3:22:79:07:d7:39:88:3a:c5:0a:49:43:54:a5:
5d:d7:0a:b0:57:07:2c:82:55:08:e2:14:c2:65:7e:19:64:ea:
95:bd:af:06:4f:3b:79:f4:c7:65:bd:9b:1e:c1:fb:53:6f:4b:
a9:4c:22:18
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEODjMoTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NTAxYzg0NWYxM2RkNGFkNmU5ZGFlNDcwZDVmZjY5YzVjY2EzNzcxMB4XDTIyMDEw
MTE2MTAyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODlmYWNhOTEwMjlk
NWQ3MWUyZWE0NTEzMzQ5NzY5MDU3OWU4MjVjZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKu1WhHbokmJMxFxc6eMV9f5lR0wVODQYzbeGMITAcNy8icw
ZLs0l0EhYCicqb10NcNTrn/bj492eacrKdTgR5Q+V6DkIL+Zk6Qef6/2o69b161/
OY+8/+Rn9avfiRvhaLqLBP0EKNwvn+FYJl5J0Qa19FDmP/orCBFHObTUEwUEWMGT
eocAjRLPvq9BCzD0Fx+KGmMbJOXbIOuvxKVyrNdbYVLofs3NvCx21xzovf8mJAn+
BklmLr9RRnQH7HTCnqfjc2ADzbVN+2eC10pWGeAyUE0qab+dSOmjbGWcAwHssMZn
HLdSqUk7U4BUEJhqvUouZ1+AxqG6iPtXXuZucbsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSJ+sqRAp1dceLqRRM0l2kFeeglzjAfBgNVHSMEGDAWgBQVAchF8T3UrW6d
rkcNX/acXMo3cTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZRSElSZkU5MUsxdW5hNUhEVl8ybkZ6S04zRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWEvMDM3NmExLTQ5ZDYtNGE0ZC04YzJhLWVkNzkxNTQzNmIyNy8x
L2lmcktrUUtkWFhIaTZrVVROSmRwQlhub0pjNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWEv
MDM3NmExLTQ5ZDYtNGE0ZC04YzJhLWVkNzkxNTQzNmIyNy8xL0ZRSElSZkU5MUsx
dW5hNUhEVl8ybkZ6S04zRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFm4azANBgkqhkiG9w0BAQsFAAOC
AQEAsLiam4xVC1hKHFEq6qHD4FGpldBoJWEmJeBLPyTk+/jZ4XhqwziadNEam2CB
tMHq2tOkwq77LSfw8xzvpCJtFzGcVUsTAZSWU95DQ+v1VK38OtkfFut5U6yXz7H1
pCJHEjUTROupFKWKugdTL1XHZb6nm0Ke1BKwvfR+mevzqYZHxwy1Hj1oR7IaDQfR
R1nW1Cl0dF0SjTj04fC6JNsuFodv119ploCB1sWhV9LCfzT3BcNwgN/sXIjwtXcm
82znGTY/+CxC/ql1lqMieQfXOYg6xQpJQ1SlXdcKsFcHLIJVCOIUwmV+GWTqlb2v
Bk87efTHZb2bHsH7U29LqUwiGA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:17 2024 by rpki-client on console-fra.rpki-client.org