Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/uJgrhfPaBisI3cElV8zY1Me2xao.roa
File: uJgrhfPaBisI3cElV8zY1Me2xao.roa (raw, json)
Hash identifier: ifkAJQ5zeaTTvPaOnFrJjPie4biSKH2ELcYXlXz6vrQ=
Subject key identifier: B8:98:2B:85:F3:DA:06:2B:08:DD:C1:25:57:CC:D8:D4:C7:B6:C5:AA
Certificate issuer: /CN=68d1ef163a661cce5bc62117ec763758b1b5bb89
Certificate serial: 046FEE8F
Authority key identifier: 68:D1:EF:16:3A:66:1C:CE:5B:C6:21:17:EC:76:37:58:B1:B5:BB:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNHvFjpmHM5bxiEX7HY3WLG1u4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/uJgrhfPaBisI3cElV8zY1Me2xao.roa
Signing time: Sat 01 Jan 2022 15:01:03 +0000
ROA not before: Sat 01 Jan 2022 15:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 206.204.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74444431 (0x46fee8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d1ef163a661cce5bc62117ec763758b1b5bb89
Validity
Not Before: Jan 1 15:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8982b85f3da062b08ddc12557ccd8d4c7b6c5aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:9b:a0:82:b7:de:7d:2a:3d:41:89:4b:20:
dd:4c:59:cc:2a:23:c2:b6:5c:23:47:11:95:b8:54:
82:73:0c:66:9d:0e:73:69:86:2e:01:94:0c:97:af:
fd:27:7e:6e:c1:a3:bc:61:61:a5:c7:2c:32:ed:09:
d5:93:b2:a5:42:c8:c6:d1:96:19:d1:0c:af:cf:44:
db:58:56:3a:16:16:b1:88:d1:2e:fd:df:e6:51:81:
91:a5:07:7f:1f:99:30:7d:21:61:d1:dc:ac:bf:d1:
85:1d:40:75:a2:1a:52:be:f9:2b:35:ef:4a:02:65:
a2:79:09:6e:82:d7:53:03:74:40:cc:42:d5:ed:86:
cb:30:20:b2:82:98:8d:ed:0b:6c:79:9e:42:76:9d:
4f:f5:fe:54:60:cd:7f:e4:2d:a0:56:07:b1:c2:3e:
62:ca:6d:de:1f:a9:9c:5e:fc:93:6a:c8:18:70:94:
17:2d:09:44:b7:79:d9:9a:e8:b9:c1:ad:1b:89:16:
8f:7b:e8:57:e4:a4:9e:fa:f3:cd:a8:94:ba:b7:a7:
94:9c:2b:37:9a:84:66:82:a1:d2:ad:af:4d:06:7c:
de:33:37:c4:6b:f4:87:7d:4d:fb:7a:34:e5:55:d0:
c4:3a:c9:8f:e5:a3:c8:c3:20:9d:2d:4a:d9:0d:3e:
cd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:98:2B:85:F3:DA:06:2B:08:DD:C1:25:57:CC:D8:D4:C7:B6:C5:AA
X509v3 Authority Key Identifier:
keyid:68:D1:EF:16:3A:66:1C:CE:5B:C6:21:17:EC:76:37:58:B1:B5:BB:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNHvFjpmHM5bxiEX7HY3WLG1u4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/uJgrhfPaBisI3cElV8zY1Me2xao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/aNHvFjpmHM5bxiEX7HY3WLG1u4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.204.104.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:1d:40:cb:0f:c5:7a:c5:1f:c1:d5:30:5d:c1:27:9f:92:b9:
82:df:c7:a0:ac:c0:5d:7c:4f:b7:33:69:2e:05:4a:6a:7f:06:
c8:c3:ab:7e:bd:b6:98:64:df:e3:61:d4:a9:65:9f:92:c1:2e:
68:4f:e3:1d:a8:2d:76:d9:68:6c:7d:f1:77:d7:5a:13:e6:a2:
0a:5f:d3:5d:83:ec:e3:a0:0c:65:b6:8c:17:09:80:5d:de:c8:
25:0c:54:fa:e7:93:5d:af:d0:86:05:cd:c5:28:73:3b:69:dc:
c0:59:cb:75:1b:c6:94:8f:6c:de:7d:6d:4b:67:89:01:ba:c6:
f8:53:ab:8d:88:4e:38:3d:49:89:c4:4f:5e:48:f4:7e:54:e0:
c2:75:f4:16:25:bf:9d:05:2e:9a:0e:1c:9b:7a:cf:e2:68:6f:
5c:f3:cb:7e:e5:34:b4:a2:29:cd:63:b7:fd:12:de:f6:9c:c1:
e4:b8:fb:dd:65:2a:4a:56:55:1f:5f:fb:32:ed:3e:c1:e6:c8:
61:c6:89:c9:20:6c:d5:cb:75:bd:a8:94:43:dd:ef:02:8c:ca:
f2:bf:c5:fd:1f:3a:0a:d7:0e:df:d1:08:28:95:6a:63:b5:ed:
76:2a:58:03:24:0f:cb:af:90:f6:41:41:11:f7:2b:e5:1b:9e:
4d:1a:c3:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:58 2024 by rpki-client on console-fra.rpki-client.org