Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/h47kkjasR1YD5lKyH3pguWrFaTk.roa
File: h47kkjasR1YD5lKyH3pguWrFaTk.roa (raw, json)
Hash identifier: ZSyravVNu6BwDTWnHt+ooYqKt8+sPZq0Exgz0V8RHSo=
Subject key identifier: 87:8E:E4:92:36:AC:47:56:03:E6:52:B2:1F:7A:60:B9:6A:C5:69:39
Certificate issuer: /CN=68d1ef163a661cce5bc62117ec763758b1b5bb89
Certificate serial: 047018CC
Authority key identifier: 68:D1:EF:16:3A:66:1C:CE:5B:C6:21:17:EC:76:37:58:B1:B5:BB:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNHvFjpmHM5bxiEX7HY3WLG1u4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/h47kkjasR1YD5lKyH3pguWrFaTk.roa
Signing time: Sat 01 Jan 2022 15:01:03 +0000
ROA not before: Sat 01 Jan 2022 15:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36351
IP address blocks: 206.204.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74455244 (0x47018cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d1ef163a661cce5bc62117ec763758b1b5bb89
Validity
Not Before: Jan 1 15:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=878ee49236ac475603e652b21f7a60b96ac56939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:78:0c:b9:87:ee:a9:c8:e8:79:49:1b:81:f5:
8a:ed:c7:40:9b:4a:ec:f0:39:2d:a4:1b:6d:3e:fe:
7a:f3:90:32:4f:0e:a8:c7:9a:99:4a:54:ef:39:c5:
65:4f:99:df:d5:53:d4:00:5c:9f:4c:b2:b6:38:45:
95:85:84:7f:4c:e5:5c:6d:e4:aa:7e:19:db:a2:e3:
1e:79:61:15:42:85:f3:43:88:d3:8d:58:28:83:47:
6f:a9:89:c3:27:1b:24:8d:d4:3e:7c:e6:f4:b1:07:
ee:1e:ce:57:8a:ca:f4:4b:0e:b0:c8:da:ee:79:74:
d9:56:94:62:99:26:ef:bb:e4:b1:9a:55:ba:77:d3:
63:78:ef:8a:42:3e:ba:07:96:70:27:82:9f:33:e1:
76:3d:2a:54:04:52:1b:d8:bb:41:9d:b7:0f:ec:aa:
d9:78:03:63:a2:9d:81:b8:4e:8d:3c:56:19:40:98:
7a:db:0c:0c:d1:1a:93:e3:40:46:3a:17:ea:72:71:
f9:83:d6:b9:a4:0e:cc:51:dd:00:75:f8:c5:d6:7b:
1d:f0:68:4d:a7:56:da:a4:70:d0:c9:21:cc:ce:1f:
0f:0c:10:ff:f1:a3:4f:98:a8:21:4e:c6:65:e3:60:
55:d8:06:ea:cd:fe:e0:6e:4e:f6:51:a8:e4:bd:74:
f1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8E:E4:92:36:AC:47:56:03:E6:52:B2:1F:7A:60:B9:6A:C5:69:39
X509v3 Authority Key Identifier:
keyid:68:D1:EF:16:3A:66:1C:CE:5B:C6:21:17:EC:76:37:58:B1:B5:BB:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNHvFjpmHM5bxiEX7HY3WLG1u4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/h47kkjasR1YD5lKyH3pguWrFaTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/aNHvFjpmHM5bxiEX7HY3WLG1u4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.204.104.0/24
Signature Algorithm: sha256WithRSAEncryption
20:3a:e0:b4:4c:e7:d5:39:32:df:ec:91:25:62:5e:99:fb:b7:
b1:a3:30:a6:97:14:84:78:89:cb:74:cd:80:dc:6c:f1:4a:6a:
96:96:52:8a:1d:43:15:25:f0:e5:ca:29:c5:27:25:c5:7d:8c:
be:bb:f5:39:86:07:23:da:6f:8b:36:8a:80:a2:d2:f6:21:4b:
aa:1e:d7:82:48:1e:e5:1e:a2:70:4d:ac:5a:1f:2b:4c:a0:a3:
1e:f7:78:19:36:0c:33:9b:28:f9:87:de:5e:5a:71:10:1b:09:
dc:09:e1:ea:8a:50:18:a1:23:7e:5b:69:64:2b:ec:c3:b7:e3:
ca:11:93:c6:1f:10:bc:6b:c0:95:f8:09:88:19:29:60:a4:0e:
2b:94:d1:ba:41:35:cd:16:a1:5f:b6:06:06:91:48:cf:e5:ca:
f2:f5:26:be:0b:10:bb:5c:71:12:6f:a9:e5:02:f9:c8:4b:3e:
19:3b:8c:c7:ba:15:6a:06:8b:17:28:a6:15:f3:ea:3a:af:a3:
18:78:b0:59:88:27:59:8f:e3:38:b0:66:6a:36:0f:7e:99:87:
2c:fa:b0:55:9a:20:92:af:12:76:a7:67:0b:0e:94:b7:10:d7:
aa:e2:e0:11:27:28:1c:7b:38:cf:3c:4a:d9:e7:19:bb:47:40:
28:a4:14:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:58 2024 by rpki-client on console-fra.rpki-client.org