Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/bmF9ohb04fedkGlTLZaWN9ZhfpI.roa
File: bmF9ohb04fedkGlTLZaWN9ZhfpI.roa (raw, json)
Hash identifier: P+lpyftcyVfJQgay/e0e/McMEpvQVnccQTIQ33nF1XI=
Subject key identifier: 6E:61:7D:A2:16:F4:E1:F7:9D:90:69:53:2D:96:96:37:D6:61:7E:92
Certificate issuer: /CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Certificate serial: 04477F1F
Authority key identifier: F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/bmF9ohb04fedkGlTLZaWN9ZhfpI.roa
Signing time: Thu 23 Jun 2022 06:43:32 +0000
ROA not before: Thu 23 Jun 2022 06:43:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 83.136.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71794463 (0x4477f1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f879988e0f49971a326f419e5cfacbfddcc993e7
Validity
Not Before: Jun 23 06:43:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e617da216f4e1f79d9069532d969637d6617e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1a:4f:91:c2:13:c1:01:57:31:b0:43:c9:48:
24:2f:02:44:fa:45:13:8f:93:5d:ac:39:82:b4:c9:
98:52:31:e3:05:f6:06:45:34:24:99:3d:c9:da:00:
df:b0:34:59:20:d5:e1:43:31:33:da:f8:ea:c3:79:
86:06:98:f2:f1:0d:f0:2d:54:89:4e:ef:bf:30:d9:
73:bc:7f:47:e5:43:87:18:ae:47:be:bd:7f:35:21:
88:07:c4:ea:88:7d:f7:8d:32:8a:47:bc:c9:fe:92:
be:03:28:1b:12:47:8e:b2:fb:52:2d:f0:ec:2c:3f:
85:29:08:31:05:ca:2d:3c:27:35:73:44:91:c8:96:
80:82:6f:29:9d:bb:3d:41:5b:40:9f:a0:8a:a3:bf:
a4:f4:a4:f7:00:6c:55:33:2a:0e:76:59:e5:c8:50:
d9:4e:c0:a4:3a:9b:46:17:9a:97:fb:51:ed:84:98:
63:5b:75:30:b0:39:10:53:c5:59:69:c7:bd:79:cd:
61:bf:45:ed:86:ae:ad:bc:1b:8c:21:bd:7b:7c:5e:
bd:20:55:31:04:a4:d1:b5:7e:61:7f:de:4a:e4:bc:
d8:f6:96:d3:25:34:98:77:0a:70:c6:84:ff:bd:66:
5b:3b:06:0c:29:60:e6:aa:5b:50:56:c7:bf:de:a2:
e1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:61:7D:A2:16:F4:E1:F7:9D:90:69:53:2D:96:96:37:D6:61:7E:92
X509v3 Authority Key Identifier:
keyid:F8:79:98:8E:0F:49:97:1A:32:6F:41:9E:5C:FA:CB:FD:DC:C9:93:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/bmF9ohb04fedkGlTLZaWN9ZhfpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/af3d81-0047-413c-91f4-0470b4bb30db/1/1-HmYjg9Jlxoyb0GeXPrL_dzJk-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.213.0/24
Signature Algorithm: sha256WithRSAEncryption
52:1b:a1:f9:60:17:ab:0f:e6:99:fe:0d:09:19:0b:30:ca:3d:
90:b4:4b:14:dc:e7:dd:58:d6:f7:60:79:db:65:75:51:67:48:
27:04:94:2f:a8:83:0d:7a:21:6b:e4:aa:84:38:32:44:a4:fe:
8a:f1:6e:e3:3f:db:ba:06:d7:ca:9d:7f:28:22:16:79:e7:68:
6c:65:42:eb:d5:82:62:b1:0a:e0:9c:d1:de:14:5e:3e:62:7e:
57:d2:c6:89:11:d2:a4:a2:4c:98:13:0d:af:c2:7c:b9:6a:7e:
f1:11:95:a5:29:4a:93:e1:18:a2:ef:17:82:4f:e3:d2:f9:e8:
48:31:79:19:93:a7:9d:1f:16:5c:24:66:1c:d5:d2:04:39:92:
6d:2d:33:15:bc:be:f2:1e:55:5f:ae:cf:09:09:24:40:ff:95:
c6:19:00:d0:0b:bd:91:a2:53:0c:64:56:c3:56:df:cf:da:35:
5a:d4:16:ca:f4:c9:b2:fb:69:44:79:c2:05:11:b3:62:0a:63:
93:ce:cc:c0:45:a3:8b:04:62:b7:ae:20:94:56:e8:9a:76:a1:
c6:be:e4:cd:36:61:6c:91:97:7d:25:0b:eb:fb:f2:51:a0:ae:
39:4d:c7:06:80:ce:dc:0a:7f:56:85:96:3f:c3:ce:4a:72:c0:
2c:e7:ee:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:53 2023 by rpki-client on console-ams.rpki-client.org