Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/gOk14f_rMkOWaqKIvOQGWEs8kVQ.roa
File: gOk14f_rMkOWaqKIvOQGWEs8kVQ.roa (raw, json)
Hash identifier: 8bMPphsUWuvWmscpB+atxdJtZ+/Ag8XHgK9xpbl6N6Y=
Subject key identifier: 80:E9:35:E1:FF:EB:32:43:96:6A:A2:88:BC:E4:06:58:4B:3C:91:54
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A191C67
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/gOk14f_rMkOWaqKIvOQGWEs8kVQ.roa
Signing time: Thu 28 Apr 2022 07:53:03 +0000
ROA not before: Thu 28 Apr 2022 07:53:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41703
IP address blocks: 89.252.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169417831 (0xa191c67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80e935e1ffeb3243966aa288bce406584b3c9154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ea:a9:8f:69:6a:f0:61:ad:d0:57:8b:a9:43:
34:d5:63:45:dd:dc:f2:ab:89:09:ea:ed:40:af:ed:
89:6f:0c:54:02:83:7f:18:9f:dc:9d:2d:d6:56:8b:
61:16:e8:90:f4:68:7e:25:9c:09:c8:db:09:de:b8:
41:23:f7:61:a5:2e:c8:36:53:2c:5e:fd:4a:70:7c:
f4:21:5a:46:95:33:d9:01:dc:11:a8:c7:77:38:98:
0b:25:40:34:de:1b:ac:bd:69:a3:f3:d2:e0:4a:74:
b1:70:1c:2c:86:21:24:64:55:f0:a3:5a:68:79:ac:
d7:d1:cb:d7:9a:cb:30:fc:f1:29:4d:f6:99:d4:f5:
9c:d8:1d:aa:4f:97:7e:82:88:5e:be:fa:0f:54:82:
2e:74:2f:41:18:dd:6c:bb:17:17:2a:61:2b:19:51:
92:44:a1:be:3b:19:bb:fd:d8:54:c1:8c:98:34:e8:
d4:09:d2:17:2d:e1:79:f9:dd:27:bc:e3:02:7c:79:
af:d8:74:e4:64:8d:a1:3d:5a:d9:a2:5a:bb:ef:be:
78:33:94:ee:55:bd:61:ea:47:e7:40:12:3d:e6:2c:
77:53:1e:86:a6:82:13:38:9e:fc:7e:45:ec:f7:37:
7a:e6:2f:55:d6:f2:d2:08:36:c7:12:fe:c0:14:ac:
84:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E9:35:E1:FF:EB:32:43:96:6A:A2:88:BC:E4:06:58:4B:3C:91:54
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/gOk14f_rMkOWaqKIvOQGWEs8kVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.252.227.0/24
Signature Algorithm: sha256WithRSAEncryption
72:4b:c0:ff:d5:c4:07:d4:ea:e0:da:b7:e5:72:5e:bb:56:2c:
67:f2:86:26:ce:a3:88:3c:6b:12:71:9a:70:0c:5d:3d:45:75:
df:25:6a:e2:c3:23:0b:58:52:94:cf:95:37:eb:60:10:d6:9e:
11:2e:69:6f:04:3b:a1:8e:f2:8b:19:e7:33:54:0f:17:05:f0:
d6:73:11:cb:b3:f9:c4:61:68:c5:8e:e4:62:bb:f0:2e:5e:5c:
53:28:cf:6f:e8:dc:0b:2c:b0:37:c4:bd:6e:6a:3c:b6:0d:ed:
b9:b9:5a:26:7a:3a:e0:df:1f:21:2d:a7:75:e4:9a:23:b1:07:
bb:0f:60:79:21:af:27:71:ba:93:0c:79:da:42:da:ae:44:ac:
e2:c8:d3:ff:2d:72:84:59:da:0b:b7:7f:57:95:1e:20:26:4e:
4d:19:64:88:6d:12:99:8c:d7:4a:5e:4b:a8:70:dd:16:73:d5:
bf:b8:0a:37:54:9a:25:4c:e6:75:fd:f0:1e:eb:e3:b7:b8:11:
5a:c3:c3:b4:a3:50:63:9d:7c:6d:d6:e8:d3:82:26:fe:b1:e8:
91:dd:a0:d2:09:dd:86:71:c2:3f:2e:a5:e7:cc:55:c0:f1:cf:
c7:53:67:bf:5c:2d:16:9a:dd:48:a8:5f:9b:2d:ab:29:22:18:
55:44:ab:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net