Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/aZjY6Ma1t2uCnBax02hk5xXFJGo.roa
File: aZjY6Ma1t2uCnBax02hk5xXFJGo.roa (raw, json)
Hash identifier: KKEsO4PQ4nblwgowS0xYakhCWHlftaYHiTzyaJaOkaM=
Subject key identifier: 69:98:D8:E8:C6:B5:B7:6B:82:9C:16:B1:D3:68:64:E7:15:C5:24:6A
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 0183D1266121423206E8CBFAD1164569C940
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/aZjY6Ma1t2uCnBax02hk5xXFJGo.roa
Signing time: Thu 13 Oct 2022 11:41:36 +0000
ROA not before: Thu 13 Oct 2022 11:41:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201382
IP address blocks: 84.47.166.0/24 maxlen: 24
85.91.108.0/22 maxlen: 22
85.91.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:26:61:21:42:32:06:e8:cb:fa:d1:16:45:69:c9:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Oct 13 11:41:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6998d8e8c6b5b76b829c16b1d36864e715c5246a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:30:81:83:a0:57:a0:f3:ae:41:85:fc:7c:13:
fb:58:b8:95:a9:55:08:9a:8a:0b:30:04:c1:2e:a9:
30:89:09:44:40:a4:80:36:55:7e:01:ab:58:b7:de:
59:4d:14:f3:6b:af:74:6a:7f:aa:12:a1:68:06:d9:
e4:24:b5:af:cf:27:a8:ec:5b:2b:59:3c:91:19:98:
a6:00:f6:d6:6a:65:93:bd:11:cb:eb:02:d3:b5:27:
d9:78:25:e3:0b:a7:84:89:9a:f9:50:43:4a:a4:84:
30:63:78:d8:7b:07:bf:bb:c5:aa:98:cb:1c:73:46:
b5:d1:23:ea:77:c6:3a:ff:52:2a:12:0f:80:09:66:
22:09:f1:b9:3e:6d:eb:b3:fd:ef:06:1e:d7:02:91:
c2:68:f3:b5:c5:0c:fa:22:f1:bd:ab:c6:bc:e3:78:
55:90:e3:7f:b6:d6:74:98:47:d3:4b:55:b4:e6:70:
43:d3:b3:d4:89:25:53:13:1c:b5:58:d4:18:ed:53:
a4:7f:1d:c5:ad:24:26:7c:8a:01:fb:dc:3f:f7:18:
7b:31:0d:99:43:d6:00:6c:65:10:45:8d:05:a6:da:
92:cc:3b:d6:63:a1:dc:c5:c1:f4:97:36:1b:89:47:
a5:8f:bf:af:43:6e:78:68:58:fd:19:6d:20:26:94:
62:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:98:D8:E8:C6:B5:B7:6B:82:9C:16:B1:D3:68:64:E7:15:C5:24:6A
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/aZjY6Ma1t2uCnBax02hk5xXFJGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.166.0/24
85.91.108.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:4e:60:7e:29:7e:60:e8:22:95:5c:15:2c:5d:71:8f:2a:c9:
81:c0:f2:21:52:0b:1e:cb:6f:29:ab:90:2c:99:df:7a:ff:3b:
ad:40:87:4a:bc:35:01:b0:24:1d:8b:04:bd:71:e9:63:e8:78:
4c:4f:93:8c:bf:fd:71:c8:b5:d1:73:ed:4d:4f:5e:2a:dd:45:
ea:6e:6c:ee:9d:8c:89:dc:b5:d2:e7:58:ac:10:2c:a8:e5:c0:
30:79:62:e7:c2:17:52:49:bf:5b:a6:8f:ca:3f:75:0e:4c:d0:
fc:cd:af:d0:60:66:08:7f:57:5f:76:7a:53:11:9d:b2:de:65:
7f:1f:f2:26:1e:fd:c1:fa:48:83:32:c0:7f:ec:8c:1a:b4:f9:
f3:29:cf:a7:dc:4e:a0:c7:bb:85:17:9a:54:94:4c:66:a1:5b:
1b:d7:7c:5b:3a:42:cd:36:73:2b:2f:d8:0b:a8:29:70:b3:f3:
79:58:99:57:99:91:fc:a5:05:fd:62:27:08:b2:bf:81:2c:5d:
55:7f:01:8e:58:e0:64:2e:34:5d:4e:4f:da:25:c4:da:e9:08:
18:b3:34:98:04:1d:26:af:0f:f0:f2:b3:79:55:64:30:2f:7c:
a1:db:24:2d:1c:1e:36:d7:92:39:52:05:f4:63:45:00:1f:a7:
08:0a:0d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:33 2024 by rpki-client on console-fra.rpki-client.org