Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/dZCDO2rwibr3-PClBTDFdD0pb40.roa
File: dZCDO2rwibr3-PClBTDFdD0pb40.roa (raw, json)
Hash identifier: FmiTW1Fp0e/MuTR68yPR25Awgi9/yQpEkaXX75x1USg=
Subject key identifier: 75:90:83:3B:6A:F0:89:BA:F7:F8:F0:A5:05:30:C5:74:3D:29:6F:8D
Certificate issuer: /CN=96e82ab648b8b3f8857569c39af9544adfc17c01
Certificate serial: 0667EB
Authority key identifier: 96:E8:2A:B6:48:B8:B3:F8:85:75:69:C3:9A:F9:54:4A:DF:C1:7C:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lugqtki4s_iFdWnDmvlUSt_BfAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/dZCDO2rwibr3-PClBTDFdD0pb40.roa
Signing time: Fri 13 May 2022 10:36:40 +0000
ROA not before: Fri 13 May 2022 10:36:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13065
IP address blocks: 89.28.224.0/21 maxlen: 21
185.9.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 419819 (0x667eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96e82ab648b8b3f8857569c39af9544adfc17c01
Validity
Not Before: May 13 10:36:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7590833b6af089baf7f8f0a50530c5743d296f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9c:78:82:a0:a3:68:e5:71:f7:68:92:90:9f:
a9:27:5d:5a:73:39:92:2f:a5:8f:2e:73:03:f4:f5:
1a:fd:7e:8d:6c:67:6c:84:81:e6:d5:be:ae:80:3c:
15:fc:37:e4:15:3d:90:33:d3:21:e1:ea:e8:55:1f:
02:ce:e8:28:2d:ee:58:dc:84:e0:22:19:78:9c:2b:
ec:92:25:4f:51:8f:95:ce:c4:d8:b2:75:38:ab:d8:
43:66:46:fe:b6:7a:96:20:b1:41:2c:dd:f3:f0:62:
c5:1b:c5:c9:4c:ec:7d:7c:fb:82:7c:ba:83:1c:5e:
43:17:06:1f:84:0d:72:ba:ba:e0:b0:e7:ce:b4:32:
9f:9c:fe:b2:44:3a:a9:0b:53:eb:5c:f4:65:da:9e:
e9:91:0c:f3:c1:7a:69:a1:c8:73:7e:75:f8:b7:93:
b5:8a:df:b3:a2:5b:50:33:b9:61:d7:e7:e4:00:7c:
66:b2:ac:7e:6f:a3:5e:11:fa:00:fc:c4:4d:8d:52:
81:63:40:bf:3a:27:a5:5e:2c:25:67:99:a4:39:ff:
8c:64:49:6e:3c:23:96:9b:34:86:b5:3c:06:75:bd:
ef:57:c9:fc:8a:1a:b7:b5:12:0d:f5:23:21:d4:8d:
26:77:9a:d6:e9:b0:40:70:4c:4e:9e:2a:7c:63:4c:
88:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:90:83:3B:6A:F0:89:BA:F7:F8:F0:A5:05:30:C5:74:3D:29:6F:8D
X509v3 Authority Key Identifier:
keyid:96:E8:2A:B6:48:B8:B3:F8:85:75:69:C3:9A:F9:54:4A:DF:C1:7C:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lugqtki4s_iFdWnDmvlUSt_BfAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/dZCDO2rwibr3-PClBTDFdD0pb40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2426f1-8f2a-49ff-8643-193ad5c79b83/1/lugqtki4s_iFdWnDmvlUSt_BfAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.28.224.0/21
185.9.56.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:6f:c5:c4:ec:31:d7:24:45:12:9f:cf:14:9f:45:7d:98:75:
0f:16:09:29:1b:3f:74:e3:30:d6:0d:bf:04:28:7e:a9:1f:2c:
be:94:57:17:1b:25:d0:dd:ba:35:b4:54:cd:5b:0e:d6:93:2a:
7a:ff:52:28:ce:77:96:a1:fb:fc:fc:fa:95:f6:f0:f6:39:90:
cc:88:b0:39:df:b6:3d:26:38:e5:e8:08:8a:4b:e0:ee:45:73:
05:35:4b:81:12:e1:d6:db:f6:e9:14:a5:11:fa:5a:c6:cc:97:
91:06:93:63:3c:0d:b0:e3:14:c8:f4:ad:1c:87:1f:f7:8f:0f:
93:83:f6:c8:2c:7d:9b:78:64:00:ee:29:f7:ff:02:d5:ce:e3:
09:0a:92:5c:ba:d8:23:62:96:84:3b:27:1e:4f:36:4e:20:35:
c4:b8:b8:ea:80:dd:5b:23:61:4d:2b:64:f6:3a:53:51:86:1e:
6a:09:36:c3:8a:98:73:e7:68:56:96:ce:35:c2:dd:c9:11:f9:
63:48:94:b2:67:b0:f8:e9:70:8b:2f:70:9e:95:45:5e:fc:50:
a1:db:ae:22:7f:29:ce:bb:ec:17:38:b6:95:9e:67:72:84:dd:
61:e2:68:4b:46:d3:63:87:22:d7:a0:f0:5d:94:6b:ce:5e:b6:
74:2e:75:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:03 2024 by rpki-client on console-fra.rpki-client.org