Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Bn9XSSyI1fQakWOaBTL2ZgTYTBo.roa
File: Bn9XSSyI1fQakWOaBTL2ZgTYTBo.roa (raw, json)
Hash identifier: Rg18AFtwS5Ltg6hS3CxayQhz6xEWs7X8CWEyefpWgqg=
Subject key identifier: 06:7F:57:49:2C:88:D5:F4:1A:91:63:9A:05:32:F6:66:04:D8:4C:1A
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 0456A193
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Bn9XSSyI1fQakWOaBTL2ZgTYTBo.roa
Signing time: Mon 07 Mar 2022 21:29:21 +0000
ROA not before: Mon 07 Mar 2022 21:29:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201382
IP address blocks: 84.47.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72786323 (0x456a193)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Mar 7 21:29:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=067f57492c88d5f41a91639a0532f66604d84c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a8:bd:a0:e1:4c:23:52:67:83:37:0c:71:c9:
d6:e1:2c:85:18:13:76:01:90:cf:de:0c:8a:7d:3d:
34:af:40:b3:fc:ca:fe:1f:74:0b:18:d8:f2:5e:ed:
c5:7c:ca:73:37:7e:ca:b7:b2:fb:76:9b:20:21:94:
80:4c:74:ad:93:42:4c:ba:8e:5e:73:48:f2:76:60:
46:dc:ee:8a:bc:f0:49:3a:0f:31:87:3b:0a:90:5f:
ac:98:9e:e7:1c:e9:52:13:c8:38:c4:aa:0e:9a:72:
7b:0d:8d:10:11:6f:9d:9e:f0:8e:a3:bb:5f:97:e7:
13:39:31:bc:4d:a1:0f:fa:45:0f:6f:07:c7:56:27:
fc:40:39:96:3f:af:97:15:2c:d0:41:a8:99:fb:d8:
38:37:bd:32:47:27:4b:a4:1c:f4:53:e1:d3:03:57:
13:cb:95:7d:4b:28:ee:52:ac:70:9e:7c:3b:72:c3:
cb:22:b1:b6:65:3e:1d:51:46:05:ae:c1:1a:e5:00:
aa:9d:a3:d3:e5:94:86:4c:3d:36:f0:66:6a:db:ea:
d0:7c:f5:31:22:0c:8d:98:4e:b7:69:36:b1:e7:ae:
45:1b:ce:a1:1e:1f:4a:e0:fb:59:74:fe:f4:12:1c:
6b:e6:8e:a0:0c:78:7e:c4:ad:1a:8e:37:e2:07:96:
d4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7F:57:49:2C:88:D5:F4:1A:91:63:9A:05:32:F6:66:04:D8:4C:1A
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Bn9XSSyI1fQakWOaBTL2ZgTYTBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.166.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:cc:3b:8b:21:d2:fb:73:37:ed:d6:21:18:8f:d0:20:05:da:
73:16:26:5b:1b:2a:cb:00:f2:3e:ca:51:8b:ec:55:c5:35:f1:
7e:c7:25:60:7b:b4:1b:dc:60:53:92:a9:4f:c0:d0:e2:c9:05:
37:56:ff:dd:7f:14:78:12:42:d9:f8:f6:f9:fe:8f:7a:ef:86:
d4:43:3f:0a:14:b7:98:27:0e:ea:26:8d:7f:39:2d:3b:e0:a8:
8b:a0:8d:00:42:db:e6:f9:07:9a:9a:ab:eb:13:2b:9e:7d:b6:
45:99:52:69:7d:96:02:23:fc:01:c1:0d:fc:06:bb:c8:57:1f:
8d:6b:3e:bc:99:85:a9:22:31:53:f6:c4:99:7e:fe:72:8b:50:
0b:81:45:d3:78:6c:86:af:32:35:2c:62:a8:40:8d:c5:53:8b:
7a:76:43:14:67:21:0d:8e:f8:b8:ca:c3:41:c9:ee:b2:8a:fd:
d0:e1:ce:32:a4:87:58:0f:69:b6:b9:c4:ae:20:1c:50:10:4b:
d9:fc:91:dd:2d:d4:37:18:2a:64:cb:fd:f0:6d:40:ee:02:9d:
f5:9f:26:11:69:13:f3:9c:4b:9e:18:d3:65:61:59:fb:ab:b8:
a9:af:50:9c:e9:0f:13:c0:92:22:ae:c2:1c:fe:3f:71:3c:0f:
7e:8b:99:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:33 2024 by rpki-client on console-fra.rpki-client.org