Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/1c9743-546b-4c6d-807d-e3ea6998d42a/1/PcO9uvz2viwTAkmW9XHapnNM84Q.roa
File: PcO9uvz2viwTAkmW9XHapnNM84Q.roa (raw, json)
Hash identifier: RA3bWMWAV64DYOFDfS+eITqPUq9b0JCpIr3638bHW8U=
Subject key identifier: 3D:C3:BD:BA:FC:F6:BE:2C:13:02:49:96:F5:71:DA:A6:73:4C:F3:84
Certificate issuer: /CN=f7a0fdd85292aee4f8e41ae95a7027a40c0f544a
Certificate serial: 0182D09323943744641A6B62A128AA599C57
Authority key identifier: F7:A0:FD:D8:52:92:AE:E4:F8:E4:1A:E9:5A:70:27:A4:0C:0F:54:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96D92FKSruT45BrpWnAnpAwPVEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/1c9743-546b-4c6d-807d-e3ea6998d42a/1/PcO9uvz2viwTAkmW9XHapnNM84Q.roa
Signing time: Wed 24 Aug 2022 15:57:59 +0000
ROA not before: Wed 24 Aug 2022 15:57:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44477
IP address blocks: 84.246.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d0:93:23:94:37:44:64:1a:6b:62:a1:28:aa:59:9c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7a0fdd85292aee4f8e41ae95a7027a40c0f544a
Validity
Not Before: Aug 24 15:57:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3dc3bdbafcf6be2c13024996f571daa6734cf384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:dc:bb:e5:b5:0b:09:ea:bc:b4:30:4c:b4:09:
4d:13:6f:5a:f2:7c:ee:43:5c:60:46:9e:31:67:17:
5a:d3:18:41:f7:9b:0b:d3:ef:f0:8c:1b:c1:0a:21:
47:1c:7c:80:f6:a4:8b:da:5c:75:06:dd:04:70:50:
86:3f:7a:4a:75:be:6d:5a:50:c6:18:27:49:bb:e4:
1e:dc:33:9c:ed:fd:76:a4:89:5c:b3:0a:c4:35:67:
ed:16:89:87:b6:f0:68:1d:7f:33:45:ea:af:49:e8:
d2:7c:ee:13:f5:74:30:78:ae:c1:38:bc:f6:80:24:
2c:73:14:59:6a:73:1c:b5:70:ae:74:0a:29:69:c2:
74:db:82:cb:69:35:68:0e:99:2e:6c:37:65:f8:12:
e0:d8:2a:72:ad:ac:22:16:5d:f0:23:67:41:96:5e:
87:a6:6e:e0:47:5f:de:45:54:a8:dc:8f:81:27:9c:
19:b7:6f:f4:b1:09:d6:c9:83:f8:23:68:f7:2c:03:
6b:b2:ff:68:21:60:bb:66:99:24:88:9a:8c:60:66:
78:44:a0:7a:93:52:25:9e:62:34:9f:58:8d:e5:77:
bf:b2:5b:c5:22:d6:bd:67:8c:b0:d7:af:53:0d:cf:
0c:ee:92:f2:22:46:ed:90:bd:39:ae:4e:31:09:f4:
8c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C3:BD:BA:FC:F6:BE:2C:13:02:49:96:F5:71:DA:A6:73:4C:F3:84
X509v3 Authority Key Identifier:
keyid:F7:A0:FD:D8:52:92:AE:E4:F8:E4:1A:E9:5A:70:27:A4:0C:0F:54:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96D92FKSruT45BrpWnAnpAwPVEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/1c9743-546b-4c6d-807d-e3ea6998d42a/1/PcO9uvz2viwTAkmW9XHapnNM84Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/1c9743-546b-4c6d-807d-e3ea6998d42a/1/96D92FKSruT45BrpWnAnpAwPVEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.246.85.0/24
Signature Algorithm: sha256WithRSAEncryption
08:bc:92:f2:11:db:81:22:d6:28:d8:97:64:4f:66:8c:72:a9:
0e:ed:cf:7e:73:fb:06:f4:f1:4c:87:09:1d:53:4c:cc:10:2d:
8f:1d:92:1d:6c:2d:eb:25:3e:09:d6:4d:62:9f:91:12:e4:51:
79:52:59:b7:d2:c1:6e:1f:a1:96:00:b5:43:39:fb:bd:9e:a3:
e0:e8:9a:a5:ab:85:7c:e7:b3:a9:62:d6:15:ee:9e:4e:3b:2f:
59:b6:fd:1f:bf:59:cb:d9:f9:20:62:11:d0:a7:bd:30:7e:8e:
20:ea:42:4a:05:bc:0c:1e:08:05:e7:5a:cc:13:2a:4b:25:d6:
7e:d4:5b:2c:48:32:be:b1:e2:29:f5:2d:cb:f2:d8:e3:e8:c3:
62:df:3a:99:ac:2a:46:a1:97:45:15:37:7a:3e:65:83:45:8a:
a1:a6:e6:d9:83:0c:ee:b2:85:6b:0f:83:b3:3e:be:b6:31:ec:
8c:00:75:f7:0d:21:4a:9e:0f:01:5d:a1:b4:a5:1b:a0:44:0c:
a4:d7:c1:67:11:6a:1d:51:7b:8e:50:1b:9a:85:71:87:b6:89:
c6:dd:94:ae:4c:a5:d9:e4:9c:b6:86:fe:57:16:9c:95:c1:0e:
ea:f6:76:1a:f7:57:1d:23:b4:1e:13:61:ac:f0:d7:e1:18:a8:
7b:ad:e6:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:50 2023 by rpki-client on console-ams.rpki-client.org