Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/z-CCVImtCO8bQ-9JgfM-jwSzFEg.roa
File: z-CCVImtCO8bQ-9JgfM-jwSzFEg.roa (raw, json)
Hash identifier: 4fmBla2Rxf18aUBrO+omWlU9C0YRd7ks1Wx/Gk3hNT4=
Subject key identifier: CF:E0:82:54:89:AD:08:EF:1B:43:EF:49:81:F3:3E:8F:04:B3:14:48
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 199E0CCE
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/z-CCVImtCO8bQ-9JgfM-jwSzFEg.roa
Signing time: Sun 05 Jun 2022 08:24:20 +0000
ROA not before: Sun 05 Jun 2022 08:24:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196738
IP address blocks: 84.40.81.0/24 maxlen: 24
95.87.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429788366 (0x199e0cce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jun 5 08:24:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfe0825489ad08ef1b43ef4981f33e8f04b31448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2b:c6:6b:95:8c:78:87:0e:6a:ac:62:5e:79:
c8:98:73:15:60:fa:2f:8b:c2:97:a6:75:bf:31:6c:
a3:2c:8f:be:ff:61:e1:2a:6d:bc:fa:b7:0d:8b:e4:
c5:1d:23:bd:ee:cd:6a:6b:49:c4:89:36:6b:fb:27:
57:67:26:19:b8:78:36:a0:66:06:c2:cb:6d:3f:9e:
b2:86:6f:05:e1:46:8f:94:5d:f5:88:a2:ec:65:48:
b8:7d:70:ac:56:d2:49:68:63:17:9d:72:08:79:00:
72:f5:49:86:02:c2:94:19:21:b8:03:9f:f2:ba:71:
db:47:0f:f8:b1:9d:9f:b3:16:b9:80:5b:d2:45:5e:
97:fa:60:ee:ca:b3:23:a6:b9:51:6b:f1:16:38:d0:
f6:93:20:9b:14:72:f1:43:27:84:9c:eb:d9:89:4c:
72:cd:14:80:ef:3e:4b:cb:46:37:d6:86:f3:14:46:
9f:de:61:79:ef:cb:e2:a3:6d:dc:a2:f1:12:3b:1d:
b0:94:dc:cf:f6:d3:8f:ad:4a:30:01:93:c5:3d:f7:
ae:9a:d9:79:9d:4a:ad:13:48:a2:c3:df:6a:0d:81:
f4:17:bd:a3:f6:7b:fe:f4:7a:b6:77:ea:6f:75:73:
75:80:46:cc:0b:63:26:f7:75:20:6f:9d:43:89:b9:
f0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E0:82:54:89:AD:08:EF:1B:43:EF:49:81:F3:3E:8F:04:B3:14:48
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/z-CCVImtCO8bQ-9JgfM-jwSzFEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.40.81.0/24
95.87.253.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:52:81:f1:62:97:bf:cc:eb:2b:db:26:64:6e:a2:a1:cd:35:
81:6e:36:61:ff:7b:0f:1c:10:94:07:12:dd:05:d7:03:ec:7d:
04:f1:c9:f0:14:41:6b:3e:9f:51:ff:da:d6:ff:e1:d4:88:8e:
45:50:b1:c6:4a:e3:dc:a4:0a:88:96:d6:cd:7c:6c:1b:d6:d2:
57:3c:d1:2f:18:60:11:13:d3:cd:33:4c:7d:d3:82:36:c9:70:
b7:a2:5d:7e:00:33:7c:ed:e7:86:4d:f0:3a:8c:6d:b7:aa:79:
54:12:0a:0a:f3:de:95:d0:49:d8:a1:c2:05:dd:8e:26:a8:33:
16:9d:aa:52:b7:8b:1b:cc:5c:e3:ad:86:68:82:60:c8:18:0c:
fc:39:32:08:d6:8d:b9:b4:d6:0b:53:45:70:d1:24:8b:3e:ab:
fd:fa:5b:56:33:86:e6:e7:4b:32:58:64:cc:3b:80:c1:51:b5:
29:8a:6c:94:f0:c7:a4:a6:a1:9c:30:aa:a2:3f:5c:25:1a:9c:
cd:d4:75:99:3d:83:89:10:2f:74:b8:e1:89:43:62:bc:dd:35:
01:d9:22:b8:ea:83:29:a9:dd:85:76:51:3f:e9:15:86:ae:59:
5a:22:8b:5c:59:cd:4d:05:ee:ad:3f:a6:59:d5:04:a8:02:79:
91:02:bf:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org