Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/S9OA5dMq48yLLU0IByBYbqa3MbY.roa
File: S9OA5dMq48yLLU0IByBYbqa3MbY.roa (raw, json)
Hash identifier: yogYTjIFQuSn4ZvuwcR07GiFKtNe9teW1MmjBgjixLQ=
Subject key identifier: 4B:D3:80:E5:D3:2A:E3:CC:8B:2D:4D:08:07:20:58:6E:A6:B7:31:B6
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 1759235D
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/S9OA5dMq48yLLU0IByBYbqa3MbY.roa
Signing time: Sat 01 Jan 2022 16:03:58 +0000
ROA not before: Sat 01 Jan 2022 16:03:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206382
IP address blocks: 89.36.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 391717725 (0x1759235d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:03:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bd380e5d32ae3cc8b2d4d080720586ea6b731b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ef:e4:ea:fd:5f:74:c8:f4:9d:8b:f7:f0:af:
06:fc:4d:ba:e7:24:1d:81:a6:13:ed:25:4d:43:2a:
de:bb:7e:4c:fa:ba:d9:da:f9:13:78:65:94:5c:f1:
5e:76:a2:97:c2:2f:e4:77:96:c0:a6:ba:ff:b2:5c:
fe:66:71:f3:b3:f1:78:0d:36:20:b1:fb:de:10:24:
b1:4c:5f:86:d1:da:c0:30:1a:fa:f6:af:f2:24:28:
b0:f4:dc:22:09:67:52:85:5c:c8:e8:81:e8:f3:bb:
37:5c:26:50:78:e7:99:e0:64:5e:9f:a4:7c:c9:0a:
b2:b5:1b:6a:e2:d7:c6:70:5c:e5:c3:7a:b9:15:2c:
85:18:d3:b1:87:b2:68:7d:67:28:d5:10:ba:71:85:
8e:ed:7c:7f:d4:57:b0:70:69:78:48:5f:a1:42:2f:
4a:e8:65:da:7f:bc:11:69:33:a2:5d:f1:a4:0f:f6:
a4:5f:21:9f:ec:9c:61:0e:51:ec:c2:ce:c1:58:b0:
2e:94:e3:b5:3e:bd:7a:ea:c1:1c:b5:d6:6c:2c:33:
1d:87:f1:b7:01:3c:6c:ff:a5:a0:e1:ef:2d:d8:25:
be:6b:e5:31:d9:79:83:22:f4:21:1c:ef:b0:8d:22:
a6:ec:79:1d:ec:e2:09:04:21:5f:fe:ca:4d:44:ea:
f9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:D3:80:E5:D3:2A:E3:CC:8B:2D:4D:08:07:20:58:6E:A6:B7:31:B6
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/S9OA5dMq48yLLU0IByBYbqa3MbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.192.0/24
Signature Algorithm: sha256WithRSAEncryption
49:fe:28:6c:e8:b2:ed:4c:fe:03:e8:32:2a:3b:e5:3a:c7:18:
6c:f8:48:78:a4:be:5d:fa:b7:14:09:5b:d1:e7:01:54:48:69:
68:d7:6a:fb:37:44:a3:87:26:14:6d:3a:c2:f9:b4:20:bc:27:
83:07:e0:5a:84:cb:ad:49:cc:9a:1a:ab:ee:3a:fc:10:e5:63:
eb:08:8f:48:6e:f0:31:c1:55:7b:c7:46:6a:ba:03:6e:4c:34:
5a:29:2a:89:64:07:de:5e:9f:97:6d:0a:3e:b2:6b:0b:da:57:
2e:0d:36:80:46:90:24:90:3b:a6:4a:27:12:8d:11:52:59:0a:
e6:85:8a:e7:07:15:27:ea:62:d1:7e:15:aa:c6:c9:1c:26:6c:
91:bd:67:79:dc:0e:76:a1:80:69:54:e7:21:92:ce:bb:68:37:
aa:4c:a8:7d:bb:42:bc:44:f5:5d:bd:d2:ef:a7:20:41:31:eb:
e8:88:0b:61:3d:83:c6:e3:0b:db:d1:fb:0f:5c:b9:28:d1:2b:
9f:63:d5:4b:05:6f:e3:dc:50:f6:92:07:c2:70:db:9d:90:0a:
43:2c:0f:e3:63:29:11:3f:a5:5e:6f:2e:24:ca:b0:78:6c:ab:
8d:6c:9f:5e:a8:2a:8e:d5:60:70:8c:5b:0c:b7:65:4f:c8:fd:
ab:df:91:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:04 2023 by rpki-client on console.sobornost.net