Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/aOcsOZ2vg-uKtL7lI5mEfGyFhqg.roa
File: aOcsOZ2vg-uKtL7lI5mEfGyFhqg.roa (raw, json)
Hash identifier: oG6U9qFhfd7GaH/SxmXh+x4jBCarMolQY9BesK/SEUQ=
Subject key identifier: 68:E7:2C:39:9D:AF:83:EB:8A:B4:BE:E5:23:99:84:7C:6C:85:86:A8
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 175A2628
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/aOcsOZ2vg-uKtL7lI5mEfGyFhqg.roa
Signing time: Sat 01 Jan 2022 16:03:58 +0000
ROA not before: Sat 01 Jan 2022 16:03:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207752
IP address blocks: 89.44.141.0/24 maxlen: 24
89.44.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 391783976 (0x175a2628)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:03:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68e72c399daf83eb8ab4bee52399847c6c8586a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4e:d2:88:13:4b:2a:d0:58:a9:04:2d:3b:a7:
69:d4:32:d8:65:05:b3:80:c4:f0:c9:3b:a2:ce:8d:
cd:77:80:ff:a9:cc:12:3b:83:81:9f:ec:17:cd:29:
27:91:03:24:d0:f6:91:3d:d2:9e:c7:9a:f5:51:fe:
07:fd:da:ca:2d:b2:e5:bf:65:26:8c:1c:32:de:28:
6b:eb:37:a7:57:02:b6:0b:ef:53:a5:c5:2a:22:ca:
b3:27:62:5b:ae:07:eb:d9:a8:cb:bf:d0:1e:53:aa:
49:fc:8d:67:73:34:be:40:19:47:47:d3:9b:c7:a0:
57:59:3b:b1:b9:a2:3f:36:22:cc:cc:a7:15:8d:77:
cf:6e:e6:b7:57:20:3f:11:65:4e:a2:b6:b6:e2:22:
e3:15:24:5a:9f:d2:a5:5a:0d:3f:c1:af:27:ad:5e:
cf:79:6f:80:de:fa:4d:8b:e8:40:1d:77:d1:ae:7a:
71:69:1d:75:b6:ce:5c:5b:05:98:ee:ed:1a:d9:94:
85:64:ca:a5:88:cb:b5:c0:bb:56:81:c3:5b:eb:82:
42:af:f9:7c:ff:52:2a:78:67:a5:b4:f2:01:0d:33:
57:74:ae:19:27:8e:e4:88:68:65:dd:82:65:70:23:
9d:b9:70:08:5d:dd:fd:0d:0b:2d:4c:40:5a:18:f1:
4c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E7:2C:39:9D:AF:83:EB:8A:B4:BE:E5:23:99:84:7C:6C:85:86:A8
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/aOcsOZ2vg-uKtL7lI5mEfGyFhqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.140.0/23
Signature Algorithm: sha256WithRSAEncryption
77:7c:6f:f6:9a:eb:d6:8f:fd:aa:83:6a:fa:2c:0c:99:04:45:
1d:06:98:39:c4:84:dd:8a:0e:21:34:a3:79:12:ed:dd:23:75:
ec:c2:26:09:9a:c5:66:91:72:e7:30:d7:34:78:39:0a:d9:ec:
01:e3:8b:52:72:5a:96:b0:4f:90:35:b0:b8:6c:7b:24:b9:e0:
40:ac:0b:92:32:98:4e:53:c1:27:09:60:ed:9a:fe:9b:9b:e1:
38:46:7e:78:27:4e:42:cf:fd:4f:40:fc:e8:ec:9a:69:0f:4c:
69:f9:49:17:51:8d:42:b1:6b:2f:fb:4d:46:80:65:43:0d:76:
27:06:66:93:a3:65:f2:63:34:7e:16:b5:ce:09:e0:31:f8:68:
c4:83:68:7e:93:31:3d:72:3b:ac:60:86:26:4d:d5:17:fc:f8:
cd:88:f8:ca:b5:db:5a:57:ac:9f:28:04:08:f1:43:1e:02:d7:
1a:93:52:94:71:ed:9f:1e:e9:6b:d6:fe:1a:b7:77:c2:e9:f9:
1e:e7:52:13:21:b6:c0:f4:96:a5:d6:26:fe:1e:7a:89:86:8f:
a6:0f:52:53:f6:03:b2:7f:5f:75:c1:14:c2:cc:ea:97:3e:77:
d0:d6:15:a4:cf:89:93:e7:2e:fe:2e:f5:f5:9b:f2:8f:89:39:
92:a1:7e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:04 2023 by rpki-client on console.sobornost.net