Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/SDv3249vIULUpJMp1mlrkwz0aME.roa
File: SDv3249vIULUpJMp1mlrkwz0aME.roa (raw, json)
Hash identifier: H9m3t7LvZok8k8BzlHFK5eTNjx+kuOrsCw2RhPByDSE=
Subject key identifier: 48:3B:F7:DB:8F:6F:21:42:D4:A4:93:29:D6:69:6B:93:0C:F4:68:C1
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17EC59D8
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/SDv3249vIULUpJMp1mlrkwz0aME.roa
Signing time: Sat 01 Jan 2022 03:59:56 +0000
ROA not before: Sat 01 Jan 2022 03:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34753
IP address blocks: 213.91.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401365464 (0x17ec59d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=483bf7db8f6f2142d4a49329d6696b930cf468c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7b:67:7a:b2:64:29:71:70:0f:b8:61:c9:57:
f2:74:f3:4f:2a:e9:82:e0:f6:60:97:e8:4d:a3:8f:
69:bd:94:4c:fb:bc:fd:ce:5d:03:cb:c8:27:a5:93:
c1:c6:18:9f:d8:eb:ac:c2:bf:ab:cd:04:09:73:fa:
5e:8e:8a:01:e8:42:26:d3:07:a5:07:2a:a8:dc:4a:
70:af:f5:d0:c0:ab:b5:f3:5a:f9:54:0a:8a:10:1d:
7f:45:9a:e2:97:9b:90:5f:4d:37:20:ea:21:72:58:
58:8d:5e:0f:a7:ca:eb:cd:69:64:5b:3e:9b:43:cc:
5e:e8:e0:7d:8e:e6:d4:1e:e1:44:f6:82:40:12:7d:
57:b3:8e:a2:0e:92:1f:cb:eb:17:77:9f:db:4e:c5:
d0:b4:78:98:16:98:9b:d3:30:ed:1d:ff:ac:49:ec:
76:f9:97:d3:d3:fa:2e:bc:c3:d6:02:78:44:9b:74:
c3:f3:f5:b7:d5:97:3d:e8:f7:5d:58:a8:34:16:10:
f1:27:94:f0:64:e4:a3:b4:d6:5a:3a:b6:23:1b:9b:
b5:c2:80:e1:05:7c:91:41:c8:55:6e:c2:f5:83:5c:
fd:01:16:25:c5:6e:63:9f:fb:19:a7:21:d1:fc:b6:
57:4d:19:0d:0b:74:22:65:28:ac:18:26:10:25:06:
ab:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3B:F7:DB:8F:6F:21:42:D4:A4:93:29:D6:69:6B:93:0C:F4:68:C1
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/SDv3249vIULUpJMp1mlrkwz0aME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.169.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ae:32:50:1f:08:1d:5f:43:90:2f:f7:93:7d:06:1e:f4:71:
e0:6d:f7:0c:65:c5:1b:73:07:13:14:77:52:d5:a0:c1:17:bc:
ab:38:91:81:46:62:bd:7a:df:67:6e:9f:6b:ef:b5:59:97:e9:
03:11:87:a4:e0:fe:54:e4:64:99:82:14:94:97:bb:c2:a8:23:
f7:45:04:db:50:40:3c:fb:d6:e2:e9:64:61:a9:5b:2a:73:d4:
3d:2a:e0:b7:72:db:3d:e0:09:ea:33:26:22:69:ec:7f:c4:3b:
88:e4:dc:38:cc:90:46:83:c6:d2:8c:96:f9:81:b3:5a:de:68:
3f:f8:94:2a:4d:68:23:41:ed:df:a9:b7:e6:4a:c2:19:49:b3:
96:9c:63:4d:15:e3:a5:87:3a:31:96:77:b1:3e:1e:9a:05:38:
1e:98:5f:74:23:f1:49:1f:9f:21:2d:d1:d9:73:cb:1f:7b:09:
8d:fd:8b:51:36:e2:18:ee:03:2c:39:56:5c:03:25:96:f7:a9:
71:1a:06:42:85:f2:24:6e:74:7a:7b:cc:ff:4c:e9:fa:91:b8:
57:15:e8:78:0c:ea:fa:77:d2:83:06:66:17:49:b0:d2:35:9c:
6e:69:82:15:82:fd:17:f0:8e:e6:4a:58:f7:97:cb:7a:d5:9e:
4e:6f:3e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org