Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/rtt6b42k7O53NmyAmY8IFvBjedA.roa
File: rtt6b42k7O53NmyAmY8IFvBjedA.roa (raw, json)
Hash identifier: sZdx08+gmy2agHu9PVXa9MDubGphcmP66PhDDoAt/zk=
Subject key identifier: AE:DB:7A:6F:8D:A4:EC:EE:77:36:6C:80:99:8F:08:16:F0:63:79:D0
Certificate issuer: /CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Certificate serial: 1AFDCD32
Authority key identifier: 4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/rtt6b42k7O53NmyAmY8IFvBjedA.roa
Signing time: Sat 01 Jan 2022 09:54:53 +0000
ROA not before: Sat 01 Jan 2022 09:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6848
IP address blocks: 194.62.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452840754 (0x1afdcd32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Validity
Not Before: Jan 1 09:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aedb7a6f8da4ecee77366c80998f0816f06379d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:52:9a:19:db:77:f6:56:0e:66:7f:8f:a5:6f:
25:79:7c:51:fc:e8:87:53:05:9e:a1:48:b0:f9:c7:
02:1d:51:d9:9d:5f:97:92:ea:cd:53:ad:81:b3:ff:
e9:cc:0c:82:38:b4:b1:bf:8e:77:4a:01:b4:63:16:
81:6f:af:17:c6:0a:84:ff:87:07:89:9e:fa:9e:cc:
ed:d8:c6:e3:31:99:30:fb:c8:91:8c:e2:df:2a:5c:
d5:30:31:c5:d7:11:d2:58:de:2f:7f:b9:da:ec:48:
fe:e7:03:6a:54:c2:c8:b3:7f:1a:18:20:a7:a5:9c:
4f:89:14:fe:40:08:ac:fb:d9:fb:d1:f2:bb:cb:cc:
14:7a:5b:86:92:ce:64:0b:e7:6b:05:15:5b:72:66:
12:7b:38:c3:78:48:e5:d5:1c:f7:a5:73:b2:14:66:
84:13:f8:ce:24:76:b5:06:f6:d4:3c:9c:97:cf:cd:
2a:c8:23:05:e4:41:f6:55:2a:4a:1c:9e:fc:21:04:
f6:c9:d8:ef:d6:ec:de:a4:67:ae:ab:39:59:9e:c4:
69:8a:1c:a7:26:6e:6c:0c:49:c0:78:73:38:80:6e:
f6:16:e9:04:0a:93:32:f1:f2:48:19:56:70:46:85:
81:19:a6:40:68:01:5f:38:43:4e:0f:6b:5b:77:f3:
c8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:DB:7A:6F:8D:A4:EC:EE:77:36:6C:80:99:8F:08:16:F0:63:79:D0
X509v3 Authority Key Identifier:
keyid:4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/rtt6b42k7O53NmyAmY8IFvBjedA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/TEA7xgtKE8Pao0EaySPGNy1CPrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.73.0/24
Signature Algorithm: sha256WithRSAEncryption
59:17:a3:9c:29:61:70:61:77:22:f1:52:79:4e:1e:3b:15:3e:
b3:f5:17:ff:48:17:9f:9b:5d:e8:0c:01:33:7b:ba:3c:6b:5d:
5d:49:5d:1a:07:a4:c1:27:c6:a2:d5:77:21:ef:0b:42:3a:56:
6a:f4:a3:74:fa:ed:44:62:96:65:cd:a3:41:1c:83:bc:6e:ca:
a8:a6:9c:18:f7:0d:45:e3:39:eb:bd:6c:09:7a:a2:f3:b4:c0:
04:76:e8:e5:69:cf:74:4d:68:60:0b:50:e5:05:1c:03:94:5d:
b9:88:02:59:40:aa:06:0e:dc:de:26:1a:22:0a:1b:e6:d1:62:
41:3d:9b:6d:56:4e:cc:c9:1f:ee:44:a0:e5:b2:c3:67:f0:25:
06:c8:6e:cf:6f:8e:22:e7:cb:32:a7:ed:a4:d8:1a:28:22:62:
cc:c7:3f:40:fc:bf:24:b3:c6:a5:f1:c6:e6:e4:70:f3:ab:dd:
62:47:12:79:3b:39:a5:36:6d:60:ef:82:42:cc:b5:79:d7:62:
4c:7b:96:ae:8a:31:41:96:af:0e:ab:f8:57:2f:0a:98:76:61:
e7:ba:49:85:29:6d:fc:cf:e2:37:50:b0:d9:3f:ed:34:1b:8d:
78:fd:77:43:ba:96:58:8b:e8:95:7c:18:62:fe:21:bd:ce:d0:
24:5e:80:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:34 2024 by rpki-client on console-fra.rpki-client.org