Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/Q9ffoeq3n8NsfbcFiOx43MhTWCA.roa
File: Q9ffoeq3n8NsfbcFiOx43MhTWCA.roa (raw, json)
Hash identifier: eYhZ7cYN7gCrLtTYwTs7ymQpkFx3ZkrDGJFjYC4E4NQ=
Subject key identifier: 43:D7:DF:A1:EA:B7:9F:C3:6C:7D:B7:05:88:EC:78:DC:C8:53:58:20
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 018529D5F5C543E53BDE965D7DBE4BCC3745
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/Q9ffoeq3n8NsfbcFiOx43MhTWCA.roa
Signing time: Mon 19 Dec 2022 10:02:45 +0000
ROA not before: Mon 19 Dec 2022 10:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 84.54.26.0/23 maxlen: 23
84.54.24.0/23 maxlen: 23
84.54.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:d5:f5:c5:43:e5:3b:de:96:5d:7d:be:4b:cc:37:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Dec 19 10:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43d7dfa1eab79fc36c7db70588ec78dcc8535820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f2:e5:b4:f4:31:bd:d1:fd:03:34:30:59:d2:
b2:1b:2e:f1:fa:6c:0d:7c:51:f6:1f:9a:89:c6:43:
6f:34:f8:28:e8:7b:ba:a3:8c:94:72:62:12:92:a4:
61:7b:56:b8:6d:e3:0e:b7:27:db:50:7a:43:61:37:
98:7b:88:99:40:c0:1c:fb:6f:d0:df:6d:3b:2c:73:
e5:62:28:f5:2c:7b:f4:7d:1f:68:61:0c:b9:fa:93:
21:26:f6:43:22:f3:7b:a1:32:3b:8a:8a:25:38:87:
6c:62:a7:6e:2e:da:a7:cd:b6:b1:65:68:c2:d2:78:
1c:39:db:e5:1e:8b:ce:0e:01:39:5a:2f:6d:70:09:
59:13:8d:16:9b:29:c9:e5:fd:b7:a5:12:5f:95:41:
b5:a7:f8:5c:59:2f:d3:75:31:77:ec:2d:51:fa:56:
51:2e:39:88:6e:2b:fe:f9:79:6a:9e:c5:53:df:9c:
be:cc:cc:c6:73:01:3e:90:b7:fa:d1:4b:ce:ec:60:
95:57:86:13:61:ef:07:9f:41:a9:c4:ba:54:ff:e3:
cf:7a:62:5c:45:87:0e:34:02:d8:a5:44:e2:b5:fe:
8f:24:7b:12:0d:b8:04:61:54:ab:cc:89:c5:39:d7:
1e:33:1f:7e:f3:44:a7:1b:d5:6c:12:85:d6:ac:72:
4f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D7:DF:A1:EA:B7:9F:C3:6C:7D:B7:05:88:EC:78:DC:C8:53:58:20
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/Q9ffoeq3n8NsfbcFiOx43MhTWCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.24.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:c8:7f:bb:d3:69:51:97:5f:a7:d9:d0:1e:76:62:17:82:ac:
6c:e4:98:c2:7b:05:22:35:a7:fa:ba:24:e2:af:bf:50:1d:b1:
15:66:03:47:7d:98:40:62:6b:b7:98:c6:8b:47:9b:b3:7c:8c:
1a:e8:0e:79:a3:f0:8f:e0:14:31:f3:35:6c:ec:0f:f1:db:68:
4b:e1:00:9f:12:ce:71:03:d5:91:ef:16:47:8d:31:8e:1a:02:
c1:a8:fd:ac:03:c1:19:8c:28:77:a6:7b:ab:d3:92:e3:78:38:
54:a5:30:06:19:e5:56:1e:c0:55:07:ce:84:3b:e4:2f:99:05:
dc:2a:9a:87:02:fa:56:f4:a8:de:c5:28:a8:a0:17:59:19:13:
4f:40:58:3f:a8:ca:29:db:cd:f5:b8:3b:7d:9c:d3:bb:c6:45:
e6:fe:b3:8b:88:45:b1:ab:dc:fb:78:b7:2d:8e:4f:0c:33:87:
46:47:5b:29:48:6d:f8:eb:4f:96:34:b2:da:90:da:5a:fa:d2:
9e:8f:ca:6a:1f:43:f3:07:07:59:c6:f5:da:eb:ec:db:a7:3f:
d7:88:88:06:c9:eb:a5:41:92:10:44:45:98:d5:34:5e:57:31:
57:50:2e:b1:28:77:84:31:4f:7d:7d:84:13:e3:a9:96:1a:9d:
15:19:98:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:31 2024 by rpki-client on console-fra.rpki-client.org