Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/DmoDK-yC_Yfi51FEq4_Rvb5zuw0.roa
File: DmoDK-yC_Yfi51FEq4_Rvb5zuw0.roa (raw, json)
Hash identifier: 1q7jcqHOLPUS7F1bdBHnWr52gC+Csh9cBEVNI/LUW+o=
Subject key identifier: 0E:6A:03:2B:EC:82:FD:87:E2:E7:51:44:AB:8F:D1:BD:BE:73:BB:0D
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 038BC1C1
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/DmoDK-yC_Yfi51FEq4_Rvb5zuw0.roa
Signing time: Tue 05 Apr 2022 18:55:44 +0000
ROA not before: Tue 05 Apr 2022 18:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 89.42.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59490753 (0x38bc1c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Apr 5 18:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e6a032bec82fd87e2e75144ab8fd1bdbe73bb0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ee:bb:49:69:6f:ec:07:f3:09:a6:b1:55:06:
82:c8:87:26:4a:fe:54:62:ba:b9:9a:5c:e1:2a:73:
56:cd:36:26:3e:16:6b:de:ca:9e:8b:e8:02:ba:76:
a8:5d:e4:92:d0:eb:5c:2c:9c:a7:9d:10:d6:40:fc:
e2:43:5d:c4:e7:ef:0f:15:bf:89:26:00:f9:82:b9:
c9:de:3f:c2:41:e1:77:4f:c0:cf:67:21:7c:dd:f4:
89:d9:78:53:4d:72:87:77:c7:67:df:10:db:63:a1:
be:84:c9:c2:24:d8:ff:3a:23:d0:10:38:a5:16:9e:
7a:13:d1:8d:cd:fc:88:e0:ae:00:c0:39:eb:a9:49:
88:de:ef:b5:f2:e8:fc:54:fa:25:a6:36:19:c5:6b:
4b:72:cf:0c:93:eb:c0:77:1d:08:05:25:35:23:09:
0f:4c:86:4c:90:b1:19:04:9c:e6:3f:cd:52:c2:06:
c6:95:11:e5:dd:ab:28:68:57:8b:8c:43:f4:37:91:
69:e0:d5:b7:ae:23:6f:5c:5d:29:0a:93:28:bf:9d:
2f:b3:69:fc:ec:1f:75:0e:1f:4d:e9:fa:5e:44:77:
c2:ee:b1:3e:cd:3a:a2:c1:b0:a9:42:22:6b:da:ba:
b2:fa:ec:54:69:71:ed:aa:16:e9:bb:f4:bb:80:d8:
5e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6A:03:2B:EC:82:FD:87:E2:E7:51:44:AB:8F:D1:BD:BE:73:BB:0D
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/DmoDK-yC_Yfi51FEq4_Rvb5zuw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.29.0/24
Signature Algorithm: sha256WithRSAEncryption
51:40:69:87:46:62:ae:e2:4c:93:50:9a:de:bb:80:2f:b1:fc:
f7:98:57:0c:4e:d6:97:23:71:81:7b:5c:a6:40:b2:6b:b2:5a:
3e:6d:82:08:d3:e9:c4:e8:d6:1b:94:67:01:9a:f9:ae:eb:64:
bd:9c:7b:76:4a:67:51:6a:97:5f:f9:4e:0a:37:b1:d3:c5:6c:
d4:fb:90:56:4b:d4:9d:ef:2f:8f:cc:56:0e:db:94:1b:6b:f7:
e7:25:4b:87:de:31:a2:52:87:16:aa:65:f3:0a:c4:f5:13:d6:
a2:72:90:b9:1c:e1:d0:a6:41:a0:8f:4e:d0:ed:9a:b1:25:34:
bd:42:74:40:57:5f:64:82:f6:16:d2:00:3a:ea:ae:ca:f2:28:
47:51:8a:38:d7:7d:b5:af:fc:78:81:0f:17:be:a4:ef:ff:05:
30:96:ac:f7:ee:ed:c7:a8:f0:d6:a3:f3:00:79:35:ef:ec:ba:
bc:f4:4c:1d:1b:3b:4e:e1:0b:e6:88:a2:b3:06:0b:5f:93:eb:
34:33:74:5b:ec:c9:dc:e0:ab:d7:87:2e:6f:9e:b1:6c:cd:32:
88:ef:49:90:61:8a:82:7a:75:bd:f9:72:46:83:28:d4:08:59:
dd:77:6b:f9:2b:76:0a:80:86:f2:d6:e1:eb:83:9f:28:08:56:
96:3b:c9:d1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA4vBwTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YTAwZTk4MTk1MzA2MTk3MmM4OTZiZDZkMjc3MzhkMDgzYWFkYjBlMB4XDTIyMDQw
NTE4NTU0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGU2YTAzMmJlYzgy
ZmQ4N2UyZTc1MTQ0YWI4ZmQxYmRiZTczYmIwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKjuu0lpb+wH8wmmsVUGgsiHJkr+VGK6uZpc4SpzVs02Jj4W
a97KnovoArp2qF3kktDrXCycp50Q1kD84kNdxOfvDxW/iSYA+YK5yd4/wkHhd0/A
z2chfN30idl4U01yh3fHZ98Q22OhvoTJwiTY/zoj0BA4pRaeehPRjc38iOCuAMA5
66lJiN7vtfLo/FT6JaY2GcVrS3LPDJPrwHcdCAUlNSMJD0yGTJCxGQSc5j/NUsIG
xpUR5d2rKGhXi4xD9DeRaeDVt64jb1xdKQqTKL+dL7Np/OwfdQ4fTen6XkR3wu6x
Ps06osGwqUIia9q6svrsVGlx7aoW6bv0u4DYXqkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQOagMr7IL9h+LnUUSrj9G9vnO7DTAfBgNVHSMEGDAWgBTaAOmBlTBhlyyJ
a9bSdzjQg6rbDjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJnRHBnWlV3WVpjc2lXdlcwbmM0MElPcTJ3NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmYvODJhN2Q2LTkyYTktNDIwNC05YWUwLTlhNDhlY2Y5ZTE1ZS8x
L0Rtb0RLLXlDX1lmaTUxRkVxNF9SdmI1enV3MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmYv
ODJhN2Q2LTkyYTktNDIwNC05YWUwLTlhNDhlY2Y5ZTE1ZS8xLzJnRHBnWlV3WVpj
c2lXdlcwbmM0MElPcTJ3NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFkqHTANBgkqhkiG9w0BAQsFAAOC
AQEAUUBph0ZiruJMk1Ca3ruAL7H895hXDE7WlyNxgXtcpkCya7JaPm2CCNPpxOjW
G5RnAZr5rutkvZx7dkpnUWqXX/lOCjex08Vs1PuQVkvUne8vj8xWDtuUG2v35yVL
h94xolKHFqpl8wrE9RPWonKQuRzh0KZBoI9O0O2asSU0vUJ0QFdfZIL2FtIAOuqu
yvIoR1GKONd9ta/8eIEPF76k7/8FMJas9+7tx6jw1qPzAHk17+y6vPRMHRs7TuEL
5oiiswYLX5PrNDN0W+zJ3OCr14cub56xbM0yiO9JkGGKgnp1vflyRoMo1AhZ3Xdr
+St2CoCG8tbh64OfKAhWljvJ0Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-fra.rpki-client.org