Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hWj_UNKwEYOt97L4V714GbL0o9c.roa
File: hWj_UNKwEYOt97L4V714GbL0o9c.roa (raw, json)
Hash identifier: XhV3XtRTNgwgR3LH8Y9EDdlOEO/OAovDkPvEG8a08L4=
Subject key identifier: 85:68:FF:50:D2:B0:11:83:AD:F7:B2:F8:57:BD:78:19:B2:F4:A3:D7
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17FA534F
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hWj_UNKwEYOt97L4V714GbL0o9c.roa
Signing time: Sat 01 Jan 2022 04:00:26 +0000
ROA not before: Sat 01 Jan 2022 04:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57705
IP address blocks: 83.228.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402281295 (0x17fa534f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8568ff50d2b01183adf7b2f857bd7819b2f4a3d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d1:48:83:98:90:3b:2f:13:cb:d1:7c:2f:10:
d3:dd:04:7f:14:9a:0e:d7:9b:91:66:24:ef:d2:89:
53:ca:a8:de:0b:b1:b0:8f:4e:a1:cc:d3:28:f9:d0:
e6:9c:33:39:99:14:cf:65:43:c4:7d:a8:c5:d6:d1:
47:81:90:5b:36:0d:31:24:20:3b:6c:f1:3b:cf:4f:
97:c3:92:5b:da:b5:88:93:22:96:95:bc:06:c7:41:
ba:85:2e:d9:75:99:28:f9:1a:b5:7a:56:37:b9:37:
a1:1d:d4:b7:0d:73:d5:14:46:19:c9:0e:31:40:37:
50:2e:b7:36:dc:8e:48:70:25:d2:75:ba:03:ac:42:
c8:db:16:c6:73:1c:26:f8:3c:a0:c8:b0:82:23:34:
de:17:9e:e8:ec:6f:22:91:26:27:30:6c:59:ef:55:
79:d3:a3:14:d4:18:55:49:1b:7d:80:5a:58:fe:3f:
da:fb:04:34:da:ba:3d:a9:2d:00:b8:e3:dc:31:2a:
2a:a4:a3:20:6d:9a:2c:7d:d4:5d:c6:37:f4:67:2e:
b5:2a:21:a5:06:c8:eb:7d:d9:54:69:6b:e1:f6:c0:
07:f4:fb:b6:9f:34:35:03:6b:7a:ed:7c:94:b3:ff:
0e:a6:f3:e2:4a:ad:73:f5:ac:f4:07:22:cb:eb:b3:
d6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:68:FF:50:D2:B0:11:83:AD:F7:B2:F8:57:BD:78:19:B2:F4:A3:D7
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hWj_UNKwEYOt97L4V714GbL0o9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.228.102.0/24
Signature Algorithm: sha256WithRSAEncryption
55:f2:47:ef:6c:46:9a:b5:41:ce:5e:f1:81:3b:e6:98:18:42:
b3:05:c3:90:56:4e:ef:f9:f2:ea:cc:3f:3e:3b:2a:20:9e:c9:
a0:1d:17:36:bc:1e:49:a8:a4:c7:56:12:fa:38:7c:6e:b5:0d:
e1:59:5e:e5:b7:6d:3a:f3:1b:b4:3c:19:86:36:36:b8:03:6d:
4f:3f:7b:23:fa:27:5c:d5:81:26:61:09:4a:0d:1d:f8:ee:1e:
f4:31:32:74:8d:98:4d:b4:1d:21:a2:7d:92:f7:78:6c:85:53:
16:8e:38:a1:56:bc:93:b9:f6:d6:34:12:ce:ed:dc:f3:37:fa:
9d:92:b2:5c:ba:ec:a4:40:4d:36:ad:aa:b5:57:6f:19:01:be:
9b:14:65:ad:84:dc:47:76:e9:92:00:fc:9e:36:1e:e1:45:ab:
f8:1c:6a:b5:76:31:57:26:92:3b:3b:a1:0d:ca:6b:87:d5:f3:
f9:d6:51:e6:c6:71:75:1a:ca:b2:45:97:64:a1:e6:60:01:3b:
8a:c3:52:18:54:4f:91:ee:e5:24:8b:c9:27:e0:0c:d0:61:01:
95:6d:6f:bc:25:ee:cd:19:6b:b7:f3:d9:ce:dc:bf:9f:a5:6a:
46:79:43:f3:06:6e:70:91:02:3c:52:ac:ac:e3:96:50:73:0d:
c3:e3:ec:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org