Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/wMdbxiLCkPGpEZtFX4oq3NgRuLY.roa
File: wMdbxiLCkPGpEZtFX4oq3NgRuLY.roa (raw, json)
Hash identifier: +0dWv8sB5k/1LyJTu/CLniiNtDsuFaw+zpIXn0oRYb0=
Subject key identifier: C0:C7:5B:C6:22:C2:90:F1:A9:11:9B:45:5F:8A:2A:DC:D8:11:B8:B6
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 01830D687E432C9EFF047462D3E1964814FF
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/wMdbxiLCkPGpEZtFX4oq3NgRuLY.roa
Signing time: Mon 05 Sep 2022 11:28:15 +0000
ROA not before: Mon 05 Sep 2022 11:28:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206425
IP address blocks: 89.23.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0d:68:7e:43:2c:9e:ff:04:74:62:d3:e1:96:48:14:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Sep 5 11:28:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0c75bc622c290f1a9119b455f8a2adcd811b8b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fb:f0:38:51:63:d8:62:7a:e0:bd:e5:4a:71:
24:73:a0:2c:e4:7d:60:78:ba:98:c0:e6:da:58:1e:
d1:bf:86:6f:f8:67:a3:a1:e0:fb:a8:b2:26:65:0e:
1d:82:68:44:ed:ea:d3:14:e1:48:65:c1:f2:11:dd:
c6:80:13:77:fe:a0:83:b2:8e:5b:ae:c5:7e:50:84:
e2:85:f6:8b:62:fe:a7:2d:51:94:b9:bc:b3:7e:1a:
68:d5:20:72:8b:89:a7:86:48:a8:37:be:62:65:73:
8f:15:5e:cf:6f:82:37:42:ce:80:29:1e:58:5e:bd:
f7:2c:48:20:17:35:c9:9b:4f:2e:19:46:cd:a5:33:
c7:5d:24:ae:70:7d:10:2f:d4:f8:82:a0:5b:83:67:
7f:f0:64:ec:21:96:f1:65:ac:f7:31:ef:b9:8c:d5:
ac:cf:50:87:a3:1e:7b:2c:35:df:ee:60:a8:59:5f:
26:a2:0d:c6:1f:ad:cd:01:21:36:1a:33:6d:4a:b0:
c3:f0:e0:a7:8c:4c:77:b2:7d:f6:62:8b:91:90:2d:
17:dc:37:e6:f4:49:c6:ff:04:b6:87:d4:31:91:70:
44:f5:92:a9:d2:cf:14:4f:20:8f:3b:c7:b1:02:3d:
47:b1:34:72:57:b6:a0:6f:09:4c:dc:ee:f2:d6:98:
7d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:C7:5B:C6:22:C2:90:F1:A9:11:9B:45:5F:8A:2A:DC:D8:11:B8:B6
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/wMdbxiLCkPGpEZtFX4oq3NgRuLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.107.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:84:a0:2c:37:24:47:41:a9:68:71:e8:18:d5:d2:1a:37:af:
f6:a7:5e:cf:fa:65:4d:03:2c:7b:cf:3a:c5:12:d3:d7:5f:8e:
c5:2d:ae:d5:b9:a3:6e:0a:0e:da:0a:63:f6:2d:b0:99:e4:70:
4a:e0:22:79:d0:d6:23:c6:ff:68:39:37:b6:d9:e0:e6:65:64:
3b:1a:fe:5a:90:7b:44:92:6a:86:94:aa:48:3e:3f:93:7c:9f:
3d:f2:fe:95:e5:fd:71:c2:87:88:fe:8a:c7:db:8f:b9:bb:6d:
47:60:f8:45:f0:fa:a2:24:4f:45:5a:5d:b5:13:68:54:d8:d5:
64:43:8e:5e:f7:5b:fb:19:1c:e7:a5:bd:81:86:55:fa:87:a2:
05:fb:d3:f2:f9:35:6b:4c:4c:30:94:5f:fa:aa:61:10:8d:26:
9e:60:95:52:f3:4c:c7:da:f0:ec:a6:ad:48:7e:6c:5f:d3:95:
57:cb:a0:24:94:fc:e4:e3:16:e2:a3:9f:7d:a6:32:23:5c:8b:
07:8c:90:1c:67:61:0f:34:76:57:49:f6:a8:32:5a:49:b8:31:
93:84:07:d1:64:2d:fd:ee:aa:11:2a:63:1d:f5:b7:1b:8c:ee:
03:ec:72:9e:4a:7b:c9:4a:3f:35:6c:e5:96:63:eb:33:8b:e1:
64:2b:03:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:33 2024 by rpki-client on console-ams.rpki-client.org