Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/_kVsfhz7_-oIzvQkE0AWqdBaw5Q.roa
File: _kVsfhz7_-oIzvQkE0AWqdBaw5Q.roa (raw, json)
Hash identifier: h/t06o1q2THUGjdTyQ3exeRyqE1SzsEhUeDmqgjp+FE=
Subject key identifier: FE:45:6C:7E:1C:FB:FF:EA:08:CE:F4:24:13:40:16:A9:D0:5A:C3:94
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 3323FE56
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/_kVsfhz7_-oIzvQkE0AWqdBaw5Q.roa
Signing time: Sat 01 Jan 2022 10:59:08 +0000
ROA not before: Sat 01 Jan 2022 10:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61270
IP address blocks: 82.144.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 857996886 (0x3323fe56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 10:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe456c7e1cfbffea08cef424134016a9d05ac394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1c:e2:3f:4e:97:e9:be:5c:51:ce:ff:e8:92:
b1:2c:9b:45:98:72:8a:0b:6d:24:8b:47:da:f8:cb:
b1:88:13:2d:cb:70:66:69:3a:38:b8:f2:79:0c:4c:
a4:4e:4a:7e:5f:a7:93:41:77:54:c1:d0:91:30:94:
a3:ba:54:5f:08:70:c2:b0:9f:99:2c:07:cd:41:fa:
48:9d:20:fe:ab:61:8f:13:da:92:d0:16:ed:3b:44:
4e:10:12:58:58:7b:1c:9b:fe:9d:ba:6c:eb:e5:26:
53:b6:6e:89:6b:dd:81:af:7b:bb:37:ea:45:c7:d1:
c0:ad:5c:90:59:1e:1b:18:05:20:63:27:67:84:59:
35:5a:50:fe:fd:1a:e3:bf:b4:ac:f5:80:6d:68:75:
d9:29:e2:38:b1:0d:74:fe:0a:68:0d:99:3f:1c:bf:
c0:fd:a4:b4:c6:c7:01:1c:0a:66:34:12:96:29:58:
e0:1f:4e:ba:75:2d:3b:60:b7:92:0c:73:82:51:6c:
93:e6:95:6d:74:07:ac:a6:78:98:7b:62:a7:23:3d:
eb:7e:c9:d1:02:af:12:32:41:11:02:af:cd:ea:18:
ea:46:b0:83:54:db:e3:8e:d0:c1:c9:6d:be:ba:2e:
87:08:f5:dc:6a:1b:11:02:59:d9:f7:c4:24:b3:b5:
69:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:45:6C:7E:1C:FB:FF:EA:08:CE:F4:24:13:40:16:A9:D0:5A:C3:94
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/_kVsfhz7_-oIzvQkE0AWqdBaw5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.187.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:55:af:21:aa:28:99:62:42:7f:2b:9d:99:8c:5b:d3:81:ff:
3e:d1:4a:f5:72:fd:65:dc:e5:80:7d:d6:7c:37:43:77:c5:17:
5e:d0:58:27:a9:38:5c:11:52:5b:28:02:b1:31:fa:b0:8c:b3:
c9:c7:3c:5c:35:73:6e:74:17:55:fd:d4:45:e0:84:f3:b8:0f:
c2:fa:9d:88:c2:0c:98:bd:ca:93:86:df:38:cf:82:aa:22:6f:
60:80:ec:bb:49:57:e0:aa:93:9d:d2:f8:6f:2d:55:84:0b:55:
3b:57:ce:47:b3:58:c7:f3:92:d3:04:c5:d9:81:3b:63:c5:f7:
bb:4f:1a:97:44:8e:5b:b2:88:1e:75:80:3e:06:c2:cd:7e:70:
96:b9:34:8f:50:1c:a6:37:c4:9e:f1:b4:6a:26:bf:2c:63:59:
31:61:84:b5:e7:91:4c:ef:5b:33:44:cf:a5:19:57:d7:27:b2:
8b:4b:37:fc:5d:e5:8a:21:00:d6:01:74:58:88:74:54:8f:68:
1f:29:3a:18:44:6b:cd:2c:f6:58:57:96:1e:0a:40:4d:56:d7:
b1:ec:e8:73:6b:21:82:13:05:49:fe:5b:ec:e5:bb:00:ff:33:
52:35:8e:51:0f:87:cc:6d:49:f1:2a:c4:6c:ec:c5:25:06:25:
3d:ff:a1:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:02 2024 by rpki-client on console-fra.rpki-client.org