Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/22CHGheJ9xvo4AoSWEq8Ul7GHu0.roa
File: 22CHGheJ9xvo4AoSWEq8Ul7GHu0.roa (raw, json)
Hash identifier: eyx/r+Mi8BuxeABn+YA1wA/74ShMuQLgWT2S5MjLwdg=
Subject key identifier: DB:60:87:1A:17:89:F7:1B:E8:E0:0A:12:58:4A:BC:52:5E:C6:1E:ED
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 018B008257F4E1D7B26B8FC1E5D1BAE8F6B7
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/22CHGheJ9xvo4AoSWEq8Ul7GHu0.roa
Signing time: Thu 05 Oct 2023 15:43:44 +0000
ROA not before: Thu 05 Oct 2023 15:43:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15557
IP address blocks: 89.226.0.0/16 maxlen: 24
195.248.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:00:82:57:f4:e1:d7:b2:6b:8f:c1:e5:d1:ba:e8:f6:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Oct 5 15:43:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db60871a1789f71be8e00a12584abc525ec61eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d1:58:35:28:d8:ff:72:3d:6a:6a:f0:f6:81:
fc:5b:92:17:ab:df:f1:fc:67:d6:df:1a:b2:d9:57:
86:08:47:e1:c6:9e:13:2e:5a:c1:29:bd:43:d3:c2:
88:c1:e9:2a:e0:1f:4a:28:06:b6:53:5b:aa:ed:e4:
65:c4:c3:01:3c:de:88:4e:18:f4:2b:74:f9:0a:3b:
af:c0:e9:b3:44:ec:e9:46:8a:93:f8:19:ee:d0:b3:
19:bf:13:da:9d:26:ff:04:4d:1b:ea:6c:63:cf:f3:
c5:29:2e:a1:83:9a:4a:82:17:c5:1b:0a:86:d5:e2:
67:8c:2d:c7:ab:db:4a:6b:2f:4b:c2:e0:65:ae:29:
66:e2:b1:03:ab:1e:36:df:9d:90:b5:56:3f:a4:15:
ac:09:37:b1:bd:04:ea:dc:a3:0a:5d:3f:67:bf:6d:
c5:e7:8a:47:b7:6a:d2:7a:6f:13:bb:64:a0:ad:7b:
66:28:43:f1:e2:5a:fa:02:32:c7:db:0a:69:50:98:
b1:ba:93:49:b6:82:1e:b3:02:e0:a4:d5:8f:2e:f0:
1a:db:b4:bc:a0:65:dc:a1:15:93:ae:7d:63:1b:36:
4c:e7:c1:2a:1d:de:a4:1f:fd:cc:0c:2a:dd:dc:3c:
e6:e7:b2:00:94:46:2c:3d:02:79:a6:58:b9:87:81:
b0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:60:87:1A:17:89:F7:1B:E8:E0:0A:12:58:4A:BC:52:5E:C6:1E:ED
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/22CHGheJ9xvo4AoSWEq8Ul7GHu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.226.0.0/16
195.248.0.0/19
Signature Algorithm: sha256WithRSAEncryption
17:61:c9:7f:3f:f3:81:38:ea:45:ce:0e:8d:3e:67:5a:82:b1:
1a:76:2e:f5:61:d1:7f:ab:84:5b:30:d8:a1:eb:43:e3:f9:6b:
67:78:2b:74:2e:17:54:8e:a3:cf:1d:1f:d6:1e:7f:74:28:28:
7f:c4:08:f4:32:76:44:a7:51:91:d8:3f:81:96:0b:ad:8a:a5:
58:db:d9:f4:12:1c:05:af:3e:0c:45:50:d6:b0:f1:5f:09:c6:
cd:ad:55:71:ac:9f:48:6e:ec:07:37:51:3d:f9:d6:ef:54:67:
91:90:de:cb:19:57:2d:8a:8b:ef:09:93:47:11:11:e0:43:ba:
27:39:60:ec:4c:65:8a:3d:b1:2d:5a:74:81:9b:77:6d:6e:e5:
07:6d:7a:88:1d:aa:fb:8f:a9:78:34:bf:52:d3:c1:d0:8a:dc:
ea:75:20:f6:14:89:1f:7c:2e:00:47:d0:11:65:db:5b:b7:0e:
ab:4a:44:c5:30:eb:06:68:40:e6:0a:2e:23:d2:b8:31:ef:3b:
71:68:b3:92:f2:fc:0a:05:f4:e5:02:57:9d:23:5e:3e:fe:67:
ef:86:7e:d0:43:3e:a0:e2:1f:4e:88:2f:7a:4c:3c:37:a3:59:
8b:81:0b:d5:4e:f0:00:f1:16:28:b4:6b:80:b1:89:2e:95:3f:
f2:3d:fe:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:48 2025 by rpki-client