Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Q0NHx8DaDdezrJ3ESbscpahV5HQ.roa
File: Q0NHx8DaDdezrJ3ESbscpahV5HQ.roa (raw, json)
Hash identifier: IiSgeJ8c2m2RUuCqlBQZJx/oES4/SfLbUuy1js69WDg=
Subject key identifier: 43:43:47:C7:C0:DA:0D:D7:B3:AC:9D:C4:49:BB:1C:A5:A8:55:E4:74
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 07B565F5
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Q0NHx8DaDdezrJ3ESbscpahV5HQ.roa
Signing time: Sat 01 Jan 2022 02:54:42 +0000
ROA not before: Sat 01 Jan 2022 02:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205550
IP address blocks: 82.99.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129328629 (0x7b565f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Jan 1 02:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=434347c7c0da0dd7b3ac9dc449bb1ca5a855e474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:46:55:a1:9b:ad:13:03:29:c3:23:4f:6f:69:
a9:96:a6:05:08:f3:cb:a9:1f:cd:a4:88:a4:82:1a:
30:2f:7b:88:5b:e2:42:73:2a:8e:8f:aa:5b:21:6f:
17:ed:f9:3a:c1:fe:98:25:26:13:bc:d0:1e:77:38:
ca:ce:8b:c9:30:ae:a1:c7:23:f1:b8:d5:69:6a:9d:
d5:d3:ff:f5:5a:0f:de:1f:7a:44:08:18:cb:b9:71:
ae:ee:c4:4c:17:68:73:74:ed:1d:21:ab:51:e3:34:
8a:8a:a3:15:68:fc:7d:d7:62:c2:db:3e:84:50:9a:
bd:63:6d:26:a8:04:b0:5c:c1:bb:6e:cf:62:d5:ed:
bd:91:18:33:52:f7:ed:b6:dc:0d:40:57:98:25:0f:
fe:34:e3:18:d6:04:0d:40:90:61:5c:fe:f6:84:a8:
ae:4c:21:3e:d9:70:7f:76:4f:32:61:43:0e:47:fe:
c1:cb:10:99:78:fd:8d:df:60:1c:b9:66:79:42:11:
5e:f0:28:07:49:52:c7:a4:09:c6:68:0e:04:2a:d5:
05:01:f6:d0:0f:7f:c1:3a:ef:6a:1e:8a:df:10:7f:
84:8a:9b:68:ae:35:c2:e2:5e:2d:2e:93:74:fa:54:
34:a7:c8:81:49:d1:19:59:1e:3f:57:0f:76:ea:ec:
d4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:43:47:C7:C0:DA:0D:D7:B3:AC:9D:C4:49:BB:1C:A5:A8:55:E4:74
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/Q0NHx8DaDdezrJ3ESbscpahV5HQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.99.224.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:20:a4:a0:05:5a:0f:b9:6c:ac:b6:ec:09:3a:74:c8:36:ae:
37:c8:41:89:a5:aa:7b:35:c2:47:d5:08:01:a0:2c:5b:41:32:
17:83:e4:e6:a6:ea:f2:6f:60:bb:df:e8:ea:44:4c:dd:51:91:
ac:10:ee:ba:fc:b3:87:2c:b9:16:69:46:bd:c9:c2:89:fb:b4:
f3:2e:44:1b:40:99:7b:21:35:1a:ca:96:e3:a6:e6:33:77:5c:
bd:f0:c3:e1:a1:47:5c:41:c6:d0:1d:6c:31:f6:d0:2c:4d:fd:
1a:44:7c:a2:13:5e:68:33:7a:2e:30:85:78:be:be:a6:86:6b:
b1:8d:0d:5b:51:c7:e4:0b:37:2b:01:dd:66:e6:da:90:62:44:
75:1e:79:c2:df:fb:91:df:28:64:c7:a3:de:ea:53:53:1e:f7:
a4:5e:90:77:58:ed:c9:98:3d:5e:4a:66:1d:69:5c:f8:31:49:
a2:a2:88:4a:b2:bd:57:a7:5b:4a:5a:d5:af:2b:f2:1a:8f:7c:
82:e4:de:95:99:d2:68:39:b0:f9:09:ef:d6:45:91:a5:12:47:
58:ac:8b:8b:1b:cd:83:6f:00:78:f6:6c:d5:ed:a2:25:e1:b3:
7e:83:4b:fb:5b:60:9c:52:95:01:f5:b7:e2:ad:ef:7e:97:6e:
e7:45:a6:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:06 2024 by rpki-client on console-ams.rpki-client.org