Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/IE3E4T2ySXgpts1UZ0RzkdgVfGw.roa
File: IE3E4T2ySXgpts1UZ0RzkdgVfGw.roa (raw, json)
Hash identifier: 2H/gd9z1Ge+8UbvB9RdMvtyeA9FDGKADtv+XVI/AJ4c=
Subject key identifier: 20:4D:C4:E1:3D:B2:49:78:29:B6:CD:54:67:44:73:91:D8:15:7C:6C
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 018480C942287677877D5A847F0FA2C50D67
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/IE3E4T2ySXgpts1UZ0RzkdgVfGw.roa
Signing time: Wed 16 Nov 2022 14:13:04 +0000
ROA not before: Wed 16 Nov 2022 14:13:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201383
IP address blocks: 84.47.185.0/24 maxlen: 24
84.47.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:c9:42:28:76:77:87:7d:5a:84:7f:0f:a2:c5:0d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Nov 16 14:13:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=204dc4e13db2497829b6cd5467447391d8157c6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f4:3f:d8:50:1d:a5:7a:d2:c1:51:c6:f6:14:
0e:d9:77:8f:f9:3f:fd:0c:20:ae:d3:39:77:ff:94:
0a:8b:ee:13:57:45:65:cb:12:89:46:04:0c:6f:92:
67:a2:c3:98:ef:89:d6:a8:bd:f7:fb:ec:ac:c7:71:
72:c0:81:b8:76:d1:e0:86:e3:f1:0d:15:c9:19:d5:
aa:1c:c8:8b:52:d1:3e:84:a2:76:a6:14:f8:46:c0:
ac:f9:bc:0a:e6:21:30:30:25:ff:8a:aa:1e:af:dd:
b2:f8:de:17:ab:1d:77:1c:bb:29:78:3a:d1:ac:23:
91:69:24:9d:26:7e:59:44:ed:e5:b1:e7:17:06:28:
94:a9:8f:40:21:e4:49:9d:62:8d:ec:03:2f:80:de:
8a:da:16:7a:62:99:24:20:4b:a6:35:7a:3d:8a:5d:
c0:42:28:8f:c4:07:5b:f8:fb:cd:cb:0f:0c:5e:97:
b5:b9:fe:5b:69:6d:9a:5d:a7:c8:d6:76:fc:6c:f8:
a7:6b:15:f6:99:08:34:65:e8:59:4d:df:7c:d4:b6:
ef:10:21:f4:b0:83:7c:15:b5:cf:67:42:02:0e:31:
9b:f5:20:88:d6:b9:a1:9c:6b:54:c9:e7:14:8e:68:
75:6a:4c:f2:04:90:39:37:01:0e:c7:dd:cc:7f:70:
cd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4D:C4:E1:3D:B2:49:78:29:B6:CD:54:67:44:73:91:D8:15:7C:6C
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/IE3E4T2ySXgpts1UZ0RzkdgVfGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.184.0/23
Signature Algorithm: sha256WithRSAEncryption
80:ea:6e:5e:69:93:83:c9:c5:93:d9:e1:db:e7:41:a8:2f:e8:
1e:d3:29:d2:eb:1c:0e:af:dd:7a:13:52:88:23:a0:50:92:12:
6d:a9:91:82:7b:b6:be:46:fa:00:b4:3a:b6:96:58:10:40:9a:
52:f7:14:13:74:d1:10:3b:49:8d:f3:63:96:5a:45:27:57:3f:
04:aa:44:c4:04:a7:e4:cb:1a:ae:02:36:d6:43:0c:bd:d4:b9:
61:ca:79:8d:31:d0:e7:68:6b:c4:f6:1e:e7:cd:b2:be:45:48:
a5:13:ae:a6:80:4d:87:f7:4e:7f:61:49:f9:8e:09:42:5e:23:
3d:13:da:56:9d:42:44:d9:36:e4:8e:16:32:42:fc:a4:8e:68:
a0:17:f2:a9:85:a5:75:50:6f:2e:ac:18:3e:54:6f:34:91:f7:
fc:9c:5f:e9:33:26:fd:64:4f:5e:3d:c5:e4:57:ea:a2:c5:6c:
26:42:77:ed:c1:33:c5:d6:c9:09:cd:d9:dd:a8:0e:2c:e6:aa:
c5:f3:25:6d:64:4d:05:e0:23:15:e4:d7:51:89:46:71:e5:36:
06:81:5c:66:19:ff:65:15:a4:46:86:a3:dd:0b:3b:0f:61:5e:
0b:33:ff:82:ff:46:6f:db:c9:f4:08:98:7c:6c:ff:dd:1f:df:
43:3d:89:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:33 2024 by rpki-client on console-fra.rpki-client.org