Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/DLtdCYb4GH_4qFftm_gylBisFsw.roa
File: DLtdCYb4GH_4qFftm_gylBisFsw.roa (raw, json)
Hash identifier: Bagck62ZtNkAjtCZ9wlbUI3MKuKWJRE8aMXIJ7BpYEk=
Subject key identifier: 0C:BB:5D:09:86:F8:18:7F:F8:A8:57:ED:9B:F8:32:94:18:AC:16:CC
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A1BECDE
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/DLtdCYb4GH_4qFftm_gylBisFsw.roa
Signing time: Thu 28 Apr 2022 07:53:04 +0000
ROA not before: Thu 28 Apr 2022 07:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49849
IP address blocks: 89.252.225.0/24 maxlen: 24
89.252.226.0/24 maxlen: 24
89.252.224.0/24 maxlen: 24
194.12.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169602270 (0xa1becde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cbb5d0986f8187ff8a857ed9bf8329418ac16cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2a:44:9f:9c:90:a2:1d:c8:00:b2:90:e7:4a:
cb:33:c1:47:9b:33:2c:4a:ea:2b:64:49:a7:19:e2:
14:83:e7:e9:c3:7c:81:74:86:6a:1e:01:5b:c8:7b:
bf:a5:e7:1c:c9:7a:b0:ab:e6:e0:5d:bb:3d:66:67:
94:61:19:64:ba:ef:03:a6:dc:9b:c7:bc:ca:ff:75:
40:fd:27:7d:00:8d:e3:ee:b4:86:81:98:39:fa:11:
cc:90:ac:3f:38:a4:d1:42:a5:22:06:ba:95:d4:36:
5e:ca:ad:b0:7f:2e:65:d7:bb:e0:06:92:54:33:64:
51:e0:70:55:48:6b:04:63:52:c8:c0:26:4c:bd:0f:
09:78:d4:96:78:2d:f2:e8:32:cb:58:27:ce:87:a3:
80:a7:83:09:d9:07:4d:ef:d8:26:6d:7c:6b:54:81:
17:df:43:2e:46:91:8e:2a:39:76:68:3c:86:f6:64:
1d:0e:ca:aa:f2:fd:f5:1a:c7:49:a3:31:01:aa:b4:
86:87:79:f9:5e:30:9d:27:29:09:2e:f2:d5:a5:3c:
d2:e5:c4:a0:41:b7:04:9a:e6:20:b2:df:41:95:ad:
8d:cd:3c:dc:42:04:5a:28:f4:89:80:6a:bb:24:1f:
8b:01:e3:10:8d:df:13:47:25:a1:2e:f1:7c:64:ba:
03:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:BB:5D:09:86:F8:18:7F:F8:A8:57:ED:9B:F8:32:94:18:AC:16:CC
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/DLtdCYb4GH_4qFftm_gylBisFsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.252.224.0-89.252.226.255
194.12.232.0/24
Signature Algorithm: sha256WithRSAEncryption
93:eb:48:d1:d9:fc:2b:9b:0f:8f:6c:38:35:f1:97:48:e6:f8:
67:b5:e8:cf:05:5d:53:d8:18:12:47:2e:7f:b7:73:0e:28:f8:
1f:ba:89:c5:05:94:1f:a6:cc:ee:11:db:47:73:7b:cf:a2:a5:
87:eb:70:b5:84:b2:06:76:d5:d0:71:a7:14:bf:e0:2f:06:f7:
ab:2d:a0:7e:bd:f2:6f:37:73:8a:f4:31:8f:c6:4e:19:93:14:
16:c9:8b:8a:69:eb:09:bd:ee:dc:ca:f0:90:00:08:f3:7d:bd:
46:04:d4:ed:86:c2:32:78:d6:c8:97:9f:f3:69:4e:bb:7b:cb:
47:de:04:08:7d:c1:cf:3a:3c:2d:1f:70:2d:31:9f:ea:e7:e8:
90:05:65:69:a3:d2:db:71:5d:c0:a7:b0:9e:52:99:0e:43:e3:
be:ac:b0:2b:7d:1e:2f:48:88:2f:db:fe:34:4a:0a:1c:51:3b:
e5:88:6e:b4:75:9e:46:2e:5e:3a:1f:ec:2f:f2:c4:67:2b:cd:
8a:66:31:85:b0:19:87:99:67:71:b6:2a:0f:04:4d:33:b2:05:
9e:d6:7c:e3:d0:e1:9c:be:89:f1:56:4c:56:86:50:7d:44:e7:
26:cb:f2:e9:59:3c:40:cf:1b:2b:43:f9:52:9a:c2:33:7b:cd:
b1:40:44:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net