Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/8Y-4U8OKeqtOG5OVxAbYSF2ayU8.roa
File: 8Y-4U8OKeqtOG5OVxAbYSF2ayU8.roa (raw, json)
Hash identifier: Yw8qyQ3t7y/d2PWO1ACJYpG0g1DQZ2STnZCt2YRZVK4=
Subject key identifier: F1:8F:B8:53:C3:8A:7A:AB:4E:1B:93:95:C4:06:D8:48:5D:9A:C9:4F
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 180917C3
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/8Y-4U8OKeqtOG5OVxAbYSF2ayU8.roa
Signing time: Sat 01 Jan 2022 04:00:34 +0000
ROA not before: Sat 01 Jan 2022 04:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201114
IP address blocks: 62.176.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403249091 (0x180917c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f18fb853c38a7aab4e1b9395c406d8485d9ac94f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b8:54:89:9a:15:55:06:bc:92:03:fc:f3:ed:
c5:24:07:e6:81:ad:15:17:28:c9:0e:91:0e:fe:ac:
5f:a0:51:3f:65:e4:53:d4:03:6c:0e:3d:b3:cb:eb:
4d:1f:20:da:02:eb:c0:ea:21:86:84:89:c3:01:24:
bc:4b:cc:61:3e:fc:f5:cb:a1:20:7a:60:d6:c5:e9:
5f:1c:fa:2e:1c:c7:c8:c0:92:ed:ec:03:b4:50:2b:
54:d3:a7:c9:3e:09:3e:c8:40:9f:01:d0:61:bb:4d:
86:f0:f5:41:68:fd:a3:ea:79:ae:ca:b9:13:76:47:
e1:b6:db:c6:ed:42:0a:31:6c:2e:bc:f2:4c:fc:2b:
c6:fc:d6:62:a1:68:1e:62:bd:27:78:c0:d1:88:50:
55:bf:da:b3:d1:59:aa:ed:c6:25:0d:f4:2f:91:27:
f4:e4:4f:66:18:9a:30:d7:f2:06:94:13:d3:32:f7:
12:4e:56:87:8f:1c:23:a2:ba:e4:f9:72:1d:16:4c:
d6:f6:72:d2:4a:b5:e5:1f:a9:b8:20:6f:dd:d7:da:
09:ec:ba:ac:94:01:dd:2b:39:42:f3:a0:e7:4c:a7:
2d:cc:3f:4c:48:db:92:42:33:03:40:1a:a9:4f:9a:
96:3a:2f:50:63:87:77:d6:90:43:21:e7:25:ff:59:
c0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:8F:B8:53:C3:8A:7A:AB:4E:1B:93:95:C4:06:D8:48:5D:9A:C9:4F
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/8Y-4U8OKeqtOG5OVxAbYSF2ayU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.176.121.0/24
Signature Algorithm: sha256WithRSAEncryption
61:4f:ed:90:cb:1e:45:6e:b7:cd:9e:ce:62:ea:65:9e:f9:ac:
00:70:fc:1a:91:d6:8a:af:4c:c6:31:89:5f:55:df:e3:14:1f:
c1:a7:b3:17:f6:cd:97:54:07:c4:8a:04:a1:1a:33:d6:35:f9:
f1:cb:a8:d7:b8:23:bd:cd:cb:ba:e5:b3:9d:f7:bb:a4:81:47:
ac:40:57:b4:82:7f:8f:08:08:fe:c1:2c:aa:95:db:be:04:a3:
72:62:3b:a5:b7:c4:44:69:a2:83:f5:d4:33:db:5e:d2:68:86:
c7:f5:b7:b6:43:e4:a6:ff:85:27:27:78:3b:84:3e:f2:e4:7f:
b4:fc:e6:ff:dc:51:62:f9:e7:41:90:b7:94:60:71:12:e0:ef:
40:68:2d:72:c5:44:8a:63:1b:11:0f:83:3d:18:31:9b:d4:57:
3a:5a:1e:f4:44:d9:56:50:d0:71:73:de:3e:c3:c3:3f:e5:10:
65:56:bd:4f:d2:6b:db:55:5a:96:de:03:c8:a8:c3:b8:d9:98:
2d:f8:e3:ab:bb:0c:5c:c0:ec:69:0a:42:38:c2:ae:29:5c:83:
8c:67:b4:03:33:7c:4f:d1:8a:fa:83:6c:7d:8d:13:90:e7:77:
21:d5:38:1c:80:f0:a3:2e:e5:0d:4b:b1:0b:63:ca:0f:7d:87:
7c:8c:ea:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org