Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/X1NOKKIQBBbnyAN2tniERH-3z_g.roa
File: X1NOKKIQBBbnyAN2tniERH-3z_g.roa (raw, json)
Hash identifier: +rUAZqGX+lSTh4HUF44FLOKSh9wjEWZYWaPJH+azulo=
Subject key identifier: 5F:53:4E:28:A2:10:04:16:E7:C8:03:76:B6:78:84:44:7F:B7:CF:F8
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 04456E77
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/X1NOKKIQBBbnyAN2tniERH-3z_g.roa
Signing time: Thu 03 Mar 2022 06:28:29 +0000
ROA not before: Thu 03 Mar 2022 06:28:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15695
IP address blocks: 84.47.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71659127 (0x4456e77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Mar 3 06:28:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f534e28a2100416e7c80376b67884447fb7cff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7e:e4:31:1c:48:f9:5a:ca:0b:39:12:0c:03:
ab:b5:3d:85:bc:12:f0:a2:4a:e0:d0:44:0c:3a:2f:
a6:d8:5e:f0:4c:a6:99:e8:c0:a8:78:bd:32:43:3b:
ee:03:d2:59:2c:f3:8b:0c:61:95:5e:f1:cc:72:06:
2d:d3:f3:f6:5b:5e:54:b6:a8:21:1a:43:cb:b6:05:
a9:85:72:9c:65:f0:40:d7:0e:4d:b8:06:65:0b:4a:
33:d1:96:e5:3f:72:a7:8e:63:48:8f:cf:8c:7b:c1:
c1:cc:9e:d8:ca:1e:5b:aa:e1:29:3c:61:ac:64:43:
c6:cb:1c:e1:b0:6e:58:e4:6e:70:d9:36:04:ac:44:
11:09:1a:a4:5f:32:c7:15:aa:b8:78:7b:dc:2c:7b:
d3:44:5b:5e:69:f3:c0:de:47:e1:e0:0d:80:e2:9d:
c9:e7:89:55:05:13:4d:9d:cb:05:57:22:f4:45:22:
ce:30:58:cf:de:1c:f4:43:54:05:cb:a4:7a:26:1f:
57:8a:b2:e6:d6:68:25:66:e2:aa:ae:3c:f8:7e:ec:
98:7c:2a:32:d9:cd:bf:79:9f:5b:7d:ec:dd:03:85:
c1:10:f3:9f:65:47:7e:bf:c8:e9:b1:51:0d:3a:7c:
f8:62:cd:ba:51:f4:93:5d:9b:6b:65:37:e1:e3:c3:
97:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:53:4E:28:A2:10:04:16:E7:C8:03:76:B6:78:84:44:7F:B7:CF:F8
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/X1NOKKIQBBbnyAN2tniERH-3z_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.184.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:d1:91:f2:50:0d:22:b5:83:dc:fc:de:c9:b4:62:6b:04:03:
f0:c3:27:e6:ec:0a:6a:d9:89:e5:fe:12:f5:ba:7e:a1:24:aa:
a8:0e:10:f6:d4:1c:50:06:a9:f9:57:cc:e4:f7:99:75:79:c3:
c8:71:6d:96:c3:ce:d3:24:8e:03:7a:86:bb:cc:43:5d:62:89:
5e:d3:64:18:20:f2:5e:ea:90:a7:6d:44:c0:0a:d4:c2:fc:d2:
0b:69:54:b5:59:21:ff:57:1b:65:d8:45:a7:71:21:87:07:1c:
f5:22:d5:51:ce:11:f0:4f:2e:a1:36:24:62:a7:a3:13:b6:b5:
33:08:f9:8c:04:45:4e:32:a1:6e:fd:60:9a:5b:b5:ee:58:d2:
a6:84:44:d6:f1:3d:49:ad:09:53:a7:74:55:40:71:71:fb:73:
01:b6:50:54:29:ff:95:76:0d:c2:94:79:48:11:a5:53:bf:47:
38:71:51:5f:04:3b:a5:4e:77:e1:3f:a0:29:90:6d:10:e2:67:
0e:bb:bc:63:16:8f:28:43:50:4d:ab:08:0b:99:69:2b:15:42:
98:8e:1b:0e:91:e6:d5:41:d0:40:7e:be:c5:fd:48:10:ff:91:
f9:b5:70:f2:79:66:02:aa:af:94:16:aa:f0:f8:5b:84:2f:ee:
81:79:68:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:21 2024 by rpki-client on console-ams.rpki-client.org