Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/xHS6jqTSvrAyCn1RPphAIoeqnmM.roa
File: xHS6jqTSvrAyCn1RPphAIoeqnmM.roa (raw, json)
Hash identifier: xi375TO9nJgfavdI7XOwlfxV/1Khsb1XFkFG3F0PFfI=
Subject key identifier: C4:74:BA:8E:A4:D2:BE:B0:32:0A:7D:51:3E:98:40:22:87:AA:9E:63
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 37EFDAD2
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/xHS6jqTSvrAyCn1RPphAIoeqnmM.roa
Signing time: Thu 28 Apr 2022 12:08:51 +0000
ROA not before: Thu 28 Apr 2022 12:08:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198576
IP address blocks: 84.242.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938466002 (0x37efdad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 28 12:08:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c474ba8ea4d2beb0320a7d513e98402287aa9e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:df:36:1e:1e:a0:76:20:44:33:62:f6:1e:32:
b8:ea:e5:c8:02:7d:45:31:d8:63:5d:ca:c9:b7:27:
03:25:e1:7c:48:65:fa:59:12:d0:0a:80:3f:b8:78:
77:bf:dc:a8:c1:29:08:93:bb:8e:33:c3:2e:02:ea:
7d:c1:c5:e1:cd:17:cd:d5:29:01:f8:fa:d8:c8:1d:
5e:94:f1:82:aa:7a:68:79:a4:f9:2c:d5:42:b9:28:
2c:fe:46:42:ed:2f:3a:86:93:53:4d:ab:db:e0:06:
8a:cc:38:9b:69:7c:10:f1:80:e9:88:c1:71:54:6d:
bb:eb:41:1c:f1:ec:68:85:3a:62:b1:cf:67:ba:fa:
bd:cb:3f:8e:27:af:67:e4:fd:90:f5:fc:84:80:0a:
b9:0a:ac:0c:94:19:d1:45:67:0e:81:6f:8a:e6:b8:
8a:81:45:0d:0b:1d:f7:58:bc:57:63:92:b7:1e:4a:
67:05:c1:d3:15:19:73:2d:ba:b9:f5:0d:be:4d:2f:
2c:f7:0f:81:b8:80:87:78:b1:62:3f:a8:f7:47:02:
68:98:e2:ed:db:cd:28:5e:c0:b0:14:f5:f8:e3:ac:
fb:3c:2f:53:22:6a:b7:f0:3a:6b:2b:07:13:1e:fb:
8a:22:57:8b:6c:e7:74:0e:89:29:84:7f:ea:18:ec:
14:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:74:BA:8E:A4:D2:BE:B0:32:0A:7D:51:3E:98:40:22:87:AA:9E:63
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/xHS6jqTSvrAyCn1RPphAIoeqnmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.242.132.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:06:b4:37:56:ec:e4:4c:bc:70:a7:00:09:f6:80:85:cb:16:
a5:d3:cc:3a:62:46:f6:45:65:69:79:9e:05:9b:32:12:b1:47:
9b:c2:e7:da:91:b9:31:f7:39:03:8a:34:e8:1f:99:c9:3d:2a:
e9:69:97:f2:c0:c2:13:b8:10:95:1d:a9:26:83:79:7b:0a:f6:
d8:84:99:c6:62:72:d1:ec:da:98:c4:5d:d3:37:88:67:13:ee:
76:6b:22:0a:d9:5e:07:37:1a:9d:8e:dc:30:b0:d9:f5:75:f3:
dd:90:d9:c0:2b:3d:cf:5c:c6:ab:46:f7:49:f2:02:e9:47:8d:
e7:37:23:74:47:87:3d:79:75:1d:db:73:02:06:b3:6e:32:20:
e2:fa:b4:95:a0:c1:63:75:5d:42:37:b2:02:59:f4:f1:23:e4:
9e:ff:7b:b5:48:fd:7d:ae:bd:9a:78:bf:94:cc:42:61:40:63:
09:3a:89:69:a8:db:d1:27:07:e2:a8:cc:3d:7d:b6:00:58:ac:
63:9c:18:63:89:62:ab:89:76:a9:8f:c7:e9:0f:4c:79:d1:8a:
28:07:05:6c:d5:4d:bf:6d:3d:07:fb:06:5d:71:31:9b:3b:86:
a6:82:ae:81:a3:e9:0d:19:f1:9b:98:89:45:ce:4a:cc:35:db:
26:65:a7:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:21 2023 by rpki-client on console-fra.rpki-client.org