Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/9JfmYrr-ZEuJo_OrD0drWnJx_aQ.roa
File: 9JfmYrr-ZEuJo_OrD0drWnJx_aQ.roa (raw, json)
Hash identifier: qnOUjfPaZAG214BOKMZLcCQ0K3DtjHbIXohP5GpkIyM=
Subject key identifier: F4:97:E6:62:BA:FE:64:4B:89:A3:F3:AB:0F:47:6B:5A:72:71:FD:A4
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 35C383C9
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/9JfmYrr-ZEuJo_OrD0drWnJx_aQ.roa
Signing time: Mon 04 Jul 2022 20:31:25 +0000
ROA not before: Mon 04 Jul 2022 20:31:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49901
IP address blocks: 185.84.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902005705 (0x35c383c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Jul 4 20:31:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f497e662bafe644b89a3f3ab0f476b5a7271fda4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3c:ff:06:67:bc:ff:80:24:ec:02:de:67:f8:
5c:6e:c9:91:77:36:e7:4a:d6:ca:90:ab:86:0f:d6:
7e:98:9c:15:54:39:46:fa:21:0f:f8:17:69:cb:a1:
2f:4e:bf:f7:86:f2:8d:27:8b:01:12:7f:29:b3:9b:
5b:34:01:2e:75:ee:39:4d:86:3e:f9:13:ab:49:c2:
8f:8b:9c:d3:6c:08:ff:70:3d:b7:df:28:d7:60:41:
14:ae:f5:e4:bc:e9:cb:b2:9b:85:c6:57:75:ad:9e:
e3:e7:94:6c:db:6e:3d:ca:f3:03:a0:ba:a3:27:4a:
31:c6:d0:4e:23:54:ac:68:68:47:4e:fb:0b:d6:bf:
4c:f3:41:aa:19:81:6f:35:2a:b2:37:2b:b0:8d:16:
72:4f:e7:e5:a6:41:68:5f:11:cb:85:4e:f7:b7:a1:
8c:d1:a3:3a:b9:6d:7c:3c:60:5f:e2:80:86:90:7f:
f2:69:c0:7e:d0:02:a0:15:26:47:ef:2e:53:cd:91:
20:0c:00:b0:7a:1c:8c:a7:e0:5d:e5:aa:3f:2c:8d:
91:89:c5:2a:87:16:50:ea:d8:b5:8f:5c:6a:e9:0a:
52:8b:6a:a1:ad:c4:6d:04:5f:97:d0:2f:74:5a:3f:
21:eb:cf:9e:ad:0e:a6:80:aa:ed:27:e1:0d:d2:e0:
8e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:97:E6:62:BA:FE:64:4B:89:A3:F3:AB:0F:47:6B:5A:72:71:FD:A4
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/9JfmYrr-ZEuJo_OrD0drWnJx_aQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.163.0/24
Signature Algorithm: sha256WithRSAEncryption
75:df:89:bd:d3:48:e3:99:c2:12:26:54:43:af:b1:ad:82:04:
f9:b2:21:97:e3:38:f7:ae:7f:a4:6f:12:ef:d4:63:67:ba:84:
82:ae:f0:8f:47:6c:e0:ca:15:c8:e2:dc:91:d0:da:88:42:64:
b8:53:76:c8:d2:e5:8a:b9:b1:0f:02:a0:7b:ea:17:7b:26:ea:
01:48:93:6f:d6:fa:e0:9e:50:2c:f9:49:ef:6e:21:b0:23:1c:
cd:11:88:96:a0:b8:2b:c5:dd:1a:26:24:c6:df:8b:cc:8f:9e:
97:7c:4e:37:16:03:a0:b0:a2:7c:de:dc:38:07:9d:64:61:29:
bf:e3:f8:d8:f1:1f:89:43:31:50:79:b0:c2:d6:64:95:12:23:
36:a2:a0:13:ed:b8:05:f8:19:6f:98:e2:b2:07:ed:a0:ae:9e:
72:e7:c2:de:0c:15:90:81:c4:c0:0d:35:a1:1f:76:d8:11:84:
07:13:15:e5:56:c7:52:38:6f:82:c4:a6:32:78:b8:a3:62:07:
04:6c:06:a2:4f:83:33:f4:0a:b0:3a:a8:48:9b:ca:52:79:b9:
98:fe:f3:4f:4b:d6:be:d0:49:bf:2c:02:cb:5b:0d:0b:cf:b9:
6e:4a:f3:75:0f:26:66:88:03:bf:45:c7:52:cf:a1:6d:81:d8:
2e:4a:e6:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:01 2023 by rpki-client on console-ams.rpki-client.org