Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/fdd25d-c034-49f3-890d-4b89d377808e/1/DDlGglHs4oe6V1sWePvk8MWc5dE.roa
File: DDlGglHs4oe6V1sWePvk8MWc5dE.roa (raw, json)
Hash identifier: cRWjK8wy6KdhZEGE0ej0jiPzhzTNcMLhJloQqPsi08k=
Subject key identifier: 0C:39:46:82:51:EC:E2:87:BA:57:5B:16:78:FB:E4:F0:C5:9C:E5:D1
Certificate issuer: /CN=574537d54f36f142231bc817038872cb607b21e7
Certificate serial: 093898C0
Authority key identifier: 57:45:37:D5:4F:36:F1:42:23:1B:C8:17:03:88:72:CB:60:7B:21:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V0U31U828UIjG8gXA4hyy2B7Iec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/fdd25d-c034-49f3-890d-4b89d377808e/1/DDlGglHs4oe6V1sWePvk8MWc5dE.roa
Signing time: Sat 01 Jan 2022 15:01:19 +0000
ROA not before: Sat 01 Jan 2022 15:01:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20546
IP address blocks: 89.236.188.0/22 maxlen: 24
31.193.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154704064 (0x93898c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=574537d54f36f142231bc817038872cb607b21e7
Validity
Not Before: Jan 1 15:01:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c39468251ece287ba575b1678fbe4f0c59ce5d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:38:c8:ae:8c:f4:9e:8c:75:bf:f4:6c:b3:3b:
5f:25:d0:dc:ad:a8:3f:70:48:bb:f0:2e:52:e2:fb:
67:cc:64:4f:63:e4:2b:5d:cd:3d:74:8e:94:92:3f:
7e:59:62:c8:79:b7:9b:bb:67:14:c9:04:2d:02:d0:
10:5e:80:0e:91:ee:28:16:35:b2:e7:b6:b1:12:51:
85:d0:fe:05:47:34:97:d0:3d:81:8b:66:36:3f:5c:
6d:3a:4a:cd:06:0f:97:f2:68:8a:b6:f0:8a:f3:fc:
96:6b:82:15:12:37:58:72:84:ba:ad:a1:78:38:17:
d9:0c:62:59:7a:6b:d5:eb:cb:10:eb:f6:57:b9:fc:
da:63:97:3f:9a:ae:d6:6a:51:d4:39:76:bc:7d:88:
82:53:b6:5c:24:43:23:fd:0e:42:5a:b1:35:1a:a3:
9d:1d:3d:a3:0f:ac:99:db:81:31:b2:a9:61:36:d5:
4d:31:10:91:09:ce:84:e3:00:c2:1b:b3:54:d1:5a:
d5:f8:dd:4b:96:a8:14:bb:7d:04:6e:1c:aa:6b:f6:
3f:d8:f6:13:f5:63:d7:b7:ed:9b:65:3f:44:48:82:
d6:49:7e:0b:2e:59:be:eb:a1:a1:f5:ae:0b:26:59:
ce:0a:6e:67:c9:c7:68:8f:c5:c6:bc:54:5e:a6:ce:
40:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:39:46:82:51:EC:E2:87:BA:57:5B:16:78:FB:E4:F0:C5:9C:E5:D1
X509v3 Authority Key Identifier:
keyid:57:45:37:D5:4F:36:F1:42:23:1B:C8:17:03:88:72:CB:60:7B:21:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V0U31U828UIjG8gXA4hyy2B7Iec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/fdd25d-c034-49f3-890d-4b89d377808e/1/DDlGglHs4oe6V1sWePvk8MWc5dE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/fdd25d-c034-49f3-890d-4b89d377808e/1/V0U31U828UIjG8gXA4hyy2B7Iec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.212.0/22
89.236.188.0/22
Signature Algorithm: sha256WithRSAEncryption
de:fd:a4:c0:81:d0:08:4a:c7:d6:8e:59:f1:5c:9d:43:51:9f:
a5:6d:30:25:8a:18:72:b2:6a:0e:15:31:73:59:40:57:b0:85:
8a:63:ee:dc:b7:6d:27:be:e1:a0:61:88:00:25:e3:d4:9a:e9:
79:0d:4e:b3:12:f4:ed:2f:a1:91:2c:5a:fa:3b:97:fa:7b:08:
bf:b2:02:66:2b:f4:83:8a:64:59:c8:3b:ad:64:7a:83:3b:21:
58:9f:43:f3:ad:b0:f9:d1:ef:e0:dd:28:ac:8b:55:05:89:45:
a1:c6:ee:40:68:e0:a1:a6:68:f5:62:ba:25:aa:9d:3d:54:d5:
24:f1:51:cf:74:e7:db:0b:a2:20:21:2e:f7:bf:f9:bd:6a:e6:
e6:1a:e3:e7:05:e9:3c:42:56:fc:88:c7:bc:21:0e:e1:e5:db:
6a:a2:0f:c8:e7:d3:4e:cf:36:0f:ea:2d:4c:6c:5d:28:1f:06:
a3:48:d1:33:05:f1:74:ca:4a:1a:cd:fe:2c:22:e6:ff:68:cc:
a1:79:37:7f:9b:5c:76:46:1a:ec:d5:18:98:53:e8:18:15:94:
aa:03:13:06:8f:45:00:43:fd:7f:b5:8c:e7:40:c3:aa:6b:f7:
42:55:69:2c:85:83:9b:b4:8e:32:bc:3b:d7:e7:0a:7a:97:5d:
40:34:cd:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:33 2023 by rpki-client on console.sobornost.net