Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/f33zgx6gwRo8fct8J9IJcrAzFks.roa
File: f33zgx6gwRo8fct8J9IJcrAzFks.roa (raw, json)
Hash identifier: jLq7KYwahgLkI/gK4hKA7y4BEVta6vtjGQLrLMyyFB4=
Subject key identifier: 7F:7D:F3:83:1E:A0:C1:1A:3C:7D:CB:7C:27:D2:09:72:B0:33:16:4B
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 1811F291
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/f33zgx6gwRo8fct8J9IJcrAzFks.roa
Signing time: Sat 01 Jan 2022 04:00:40 +0000
ROA not before: Sat 01 Jan 2022 04:00:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206410
IP address blocks: 84.238.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403829393 (0x1811f291)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f7df3831ea0c11a3c7dcb7c27d20972b033164b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:39:f3:6f:b8:21:95:aa:87:84:ba:9e:11:fd:
44:b7:a5:02:ba:ae:18:a3:10:1b:c9:61:92:90:51:
95:33:00:bd:1e:06:5e:87:3d:c6:88:96:5f:df:fa:
3b:7b:64:e1:04:85:1d:65:5c:ed:be:09:d2:15:53:
f1:2f:e5:00:5f:56:e8:8c:d8:fd:05:ce:8b:3c:eb:
b9:ae:e5:3d:29:07:a7:40:b3:ac:c3:2a:6d:ae:7d:
82:e7:be:4d:11:e2:df:02:d7:95:cb:c9:7a:51:ff:
b4:9a:d8:f9:4f:1a:1d:4e:a3:6f:4c:fc:84:ea:4e:
a7:f5:50:c2:0c:bf:f8:cd:48:ef:e8:a2:e2:fd:ad:
a8:ef:72:e1:54:5a:8a:75:5c:ec:e5:ee:89:a9:db:
3e:b4:27:04:83:71:cf:41:da:d9:ef:8d:4d:3b:d8:
2b:db:63:fd:e4:23:06:85:38:92:21:3d:a8:b3:fa:
bd:69:c0:cb:4f:8d:7b:db:df:e5:ee:7a:fc:a5:19:
0f:93:d3:95:f4:8f:75:09:13:21:b1:59:dc:73:e4:
8f:33:73:7f:44:3c:24:b7:b8:a1:ea:94:7d:2a:7c:
44:76:94:f1:ad:67:1c:71:a7:7e:f8:8a:3b:9f:71:
76:be:cf:fa:cb:18:db:bd:80:44:1b:a0:19:6d:04:
82:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:7D:F3:83:1E:A0:C1:1A:3C:7D:CB:7C:27:D2:09:72:B0:33:16:4B
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/f33zgx6gwRo8fct8J9IJcrAzFks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.238.165.0/24
Signature Algorithm: sha256WithRSAEncryption
71:02:ce:ac:88:af:3f:40:9f:9f:7d:11:6e:06:6a:45:90:94:
19:dd:e2:8e:55:bf:4a:45:73:b2:05:40:55:70:ef:7b:68:1b:
2b:7b:2c:65:5a:93:e4:eb:5a:6a:4a:4f:04:9d:d7:42:37:e9:
01:d3:97:82:ae:bc:7c:5d:f4:a5:8b:a5:b3:c8:7c:3d:08:f7:
cf:4d:f0:74:ae:02:e3:c8:b6:7d:7d:db:00:88:de:b3:a6:37:
9a:0b:ae:a5:5d:75:55:bd:1c:3a:fe:50:e3:f0:fe:02:22:ad:
4a:a7:95:ab:74:3d:c3:9d:51:04:99:03:3e:57:3e:2b:73:03:
33:ae:11:17:83:31:d9:a5:2e:18:f5:95:16:ff:a9:e9:2f:47:
35:ee:71:f6:ca:c1:5a:cc:d3:65:4d:f4:61:70:a2:90:02:9b:
7e:f5:6f:7e:7e:77:4b:d5:37:6d:0d:9b:bc:f6:59:ac:84:7a:
c8:11:cb:74:a3:e5:f2:fe:e8:ac:65:03:8c:77:21:79:25:af:
f3:37:23:fe:37:66:76:24:3f:4c:13:04:e2:01:ce:82:a3:7e:
c8:30:1c:af:95:d0:f0:bf:7a:58:32:b5:50:ef:ea:9b:32:3a:
73:0a:fe:cd:e9:5f:15:0b:0d:8f:1e:99:10:fd:1f:de:8c:e3:
90:9b:21:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org