Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/fff1c7-cee1-4fa6-a99b-c9c8ab188853/1/FxObbXPr2dig7_zYblRN0obHTU4.roa
File: FxObbXPr2dig7_zYblRN0obHTU4.roa (raw, json)
Hash identifier: ZCdyiYekvVQ1k5DQLjFh6yR9rfRVCkvlHtMhbsG8VxQ=
Subject key identifier: 17:13:9B:6D:73:EB:D9:D8:A0:EF:FC:D8:6E:54:4D:D2:86:C7:4D:4E
Certificate issuer: /CN=69226ceb40c671f30acf11fa36b8d7d1c6754704
Certificate serial: 362D1F9E
Authority key identifier: 69:22:6C:EB:40:C6:71:F3:0A:CF:11:FA:36:B8:D7:D1:C6:75:47:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aSJs60DGcfMKzxH6NrjX0cZ1RwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/fff1c7-cee1-4fa6-a99b-c9c8ab188853/1/FxObbXPr2dig7_zYblRN0obHTU4.roa
Signing time: Sat 01 Jan 2022 01:01:12 +0000
ROA not before: Sat 01 Jan 2022 01:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38968
IP address blocks: 89.28.216.0/21 maxlen: 21
89.28.220.0/24 maxlen: 24
89.28.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 908926878 (0x362d1f9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69226ceb40c671f30acf11fa36b8d7d1c6754704
Validity
Not Before: Jan 1 01:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17139b6d73ebd9d8a0effcd86e544dd286c74d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:df:62:32:dd:58:b8:ac:1b:05:af:04:b3:b6:
b9:3a:29:ac:7a:1f:c8:1a:5e:f1:dc:88:45:9f:52:
e5:d1:90:d2:b2:d9:8a:ee:31:c0:41:7d:4c:67:20:
41:d3:1e:bc:a1:78:99:5d:ee:af:ac:55:a5:d2:de:
9f:43:f3:d6:d4:e8:e9:54:b1:00:53:8d:a6:5b:e1:
2f:6b:18:45:81:56:3e:7c:77:37:53:be:29:5b:c7:
1a:b9:5f:08:a0:96:04:d8:3a:f7:64:c2:03:72:d8:
07:66:c5:5f:7f:10:45:18:cb:f8:2e:84:c7:22:5c:
87:6b:f6:06:60:30:0b:c4:05:93:73:06:09:6c:50:
fb:30:f8:c7:73:96:7d:fb:c9:5c:f2:44:f6:80:06:
5e:dc:52:6f:44:e0:02:60:2a:51:2a:2a:2e:71:3b:
38:2c:b9:cf:43:43:88:b4:b3:51:d5:e0:8f:52:33:
d8:29:a4:28:67:a0:d1:98:73:0c:58:8e:52:b5:36:
d2:5c:8a:77:11:13:d0:2b:32:ae:98:2a:3d:f1:21:
e0:8e:38:ad:2d:48:6a:0b:2e:a3:29:4a:69:d5:b8:
79:e1:d2:9e:9e:70:c1:af:73:3a:57:b1:b2:79:28:
8d:9d:3c:b1:5c:94:5a:c8:22:02:ad:8e:d6:f5:99:
d8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:13:9B:6D:73:EB:D9:D8:A0:EF:FC:D8:6E:54:4D:D2:86:C7:4D:4E
X509v3 Authority Key Identifier:
keyid:69:22:6C:EB:40:C6:71:F3:0A:CF:11:FA:36:B8:D7:D1:C6:75:47:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aSJs60DGcfMKzxH6NrjX0cZ1RwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/fff1c7-cee1-4fa6-a99b-c9c8ab188853/1/FxObbXPr2dig7_zYblRN0obHTU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/fff1c7-cee1-4fa6-a99b-c9c8ab188853/1/aSJs60DGcfMKzxH6NrjX0cZ1RwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.28.216.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:5e:2c:02:5f:70:8a:2c:84:07:91:bf:42:4d:46:ad:8e:7c:
cd:eb:7f:b8:9a:98:99:5b:6e:7d:5d:54:3b:e7:2b:72:3b:37:
d5:4a:21:3f:b7:06:3e:6d:3e:27:a0:58:02:eb:19:cd:69:2c:
90:49:27:62:6b:d4:62:0a:f3:1e:05:fb:5e:67:ef:32:23:fc:
2d:d0:10:17:10:e2:cd:13:55:99:11:5e:57:c0:4b:29:41:07:
60:c1:e0:ce:ef:9c:dc:3f:87:97:0f:e2:bc:2b:d7:dd:9f:13:
15:52:d3:40:b0:f8:2f:85:c5:89:b6:79:81:ed:3d:17:af:24:
32:fc:81:b5:0c:f9:39:3d:ba:86:0f:aa:60:2c:d6:c5:26:84:
1e:58:4a:fa:09:40:e5:89:34:19:18:ac:de:15:37:f6:28:49:
ff:bf:4f:2e:8a:2e:64:98:df:e9:ac:c6:31:1e:ba:8c:63:7a:
50:8e:9d:f4:9a:34:a5:a5:32:c2:f6:c3:3b:9b:ff:09:4d:c8:
51:ca:36:e8:7d:50:88:c8:ae:07:3e:fe:65:a1:70:fb:d7:06:
b1:95:41:dd:75:f4:47:6c:b7:89:f3:ed:9b:bf:4d:f6:5c:5a:
f7:9e:58:ba:ad:52:37:51:4f:3d:82:22:7e:d8:88:d7:3b:70:
5c:d8:61:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:42 2024 by rpki-client on console-fra.rpki-client.org