Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/AgBPG93IM066m_QyXSU7f-QTIOo.roa
File: AgBPG93IM066m_QyXSU7f-QTIOo.roa (raw, json)
Hash identifier: JO9yC4z+OCIK1J5BdCcprSplvFoERCgIO7a9wab06j0=
Subject key identifier: 02:00:4F:1B:DD:C8:33:4E:BA:9B:F4:32:5D:25:3B:7F:E4:13:20:EA
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018321F4A1FF0393C2B266A9AFEF18F5114E
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/AgBPG93IM066m_QyXSU7f-QTIOo.roa
Signing time: Fri 09 Sep 2022 11:13:43 +0000
ROA not before: Fri 09 Sep 2022 11:13:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47294
IP address blocks: 84.44.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:f4:a1:ff:03:93:c2:b2:66:a9:af:ef:18:f5:11:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Sep 9 11:13:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02004f1bddc8334eba9bf4325d253b7fe41320ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:15:85:02:d4:bf:d3:f2:fa:4e:12:67:fe:5b:
8f:f2:6b:f8:17:1f:b9:72:25:b2:6a:d5:fa:6a:a9:
1e:e1:10:12:86:4c:1c:14:93:ea:d8:b9:46:ba:39:
85:01:d0:38:fc:8b:d3:af:4b:a7:5b:06:79:d2:cf:
e8:6e:79:d3:7c:c7:cb:09:05:ae:d1:ab:d7:5b:8b:
1c:30:15:a6:16:44:dd:01:3e:a5:5d:b7:3a:bb:a4:
27:17:7b:68:51:52:50:af:09:60:bb:01:40:d9:18:
7c:69:cb:84:06:32:5e:6a:54:9b:f2:58:89:6f:c1:
8f:15:42:70:64:1d:f9:b9:79:ac:53:4d:5d:de:74:
c0:51:c7:b2:28:90:e9:88:bf:76:18:a1:3e:12:66:
ca:18:7b:39:52:49:dc:b6:71:a7:46:fe:a3:c6:28:
09:03:1c:54:12:18:84:28:52:d7:77:3e:ea:e1:54:
bb:b6:8f:81:70:7f:f6:9c:74:d0:08:74:6e:da:5f:
23:1f:fd:b0:cb:0d:62:ac:2d:74:b7:0e:be:d6:45:
bb:fb:c3:9c:7c:c2:cf:ad:c7:23:26:35:ee:ad:1f:
04:d1:55:9f:04:4b:fd:f4:80:13:25:4c:65:ce:2b:
40:a0:b7:b1:b0:ba:80:34:78:81:8b:13:65:0e:12:
79:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:00:4F:1B:DD:C8:33:4E:BA:9B:F4:32:5D:25:3B:7F:E4:13:20:EA
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/AgBPG93IM066m_QyXSU7f-QTIOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.44.41.0/24
Signature Algorithm: sha256WithRSAEncryption
92:df:e0:a5:f3:38:b9:7d:d2:74:31:03:18:c5:ec:07:3c:d7:
cf:1a:cb:82:26:10:85:a7:57:71:9f:3c:3c:e7:0f:b8:08:7b:
b5:d5:c9:7c:37:19:5b:c5:e8:68:63:ec:93:fe:a6:48:11:bb:
a8:39:83:9b:86:df:36:52:6e:f7:ae:41:ce:85:8f:f2:24:53:
ba:94:22:37:8a:d5:2d:f9:10:ee:13:78:49:9d:35:5c:ba:43:
16:3f:cb:4b:25:aa:c6:c5:a1:85:b7:e4:73:5c:20:d6:82:20:
02:4e:58:64:03:15:9b:9c:8f:ef:25:10:83:c2:ec:f7:c1:f5:
5b:c2:ce:b4:ec:e1:dc:4a:a4:cf:65:ea:09:0e:e9:21:a1:27:
24:5a:00:a1:4e:07:05:58:02:a2:74:ab:28:d0:a0:3b:80:5f:
77:ff:bc:42:77:75:94:a4:8f:ba:5f:f2:79:e6:33:bc:32:08:
bd:65:31:4c:66:aa:d7:e6:ec:82:6e:e8:53:9f:30:6a:86:5e:
34:7d:d4:6f:6b:4a:3c:7b:47:f5:f3:78:79:da:e6:71:70:07:
36:2f:90:2b:c2:f0:d8:34:ac:ad:c6:0e:8a:84:31:ee:34:69:
d9:bb:48:36:bf:2f:98:35:41:cd:2c:0e:cc:bf:a4:ec:3b:55:
91:3c:69:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:11 2023 by rpki-client on console-fra.rpki-client.org