Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/v8g3WbYyqpsw_ECejQhClJJZmSo.roa
File: v8g3WbYyqpsw_ECejQhClJJZmSo.roa (raw, json)
Hash identifier: dmLaVGWz6EqMYSg418pGCu8dQG5egCiFnpPXyoUD5Yc=
Subject key identifier: BF:C8:37:59:B6:32:AA:9B:30:FC:40:9E:8D:08:42:94:92:59:99:2A
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1CF5550F
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/v8g3WbYyqpsw_ECejQhClJJZmSo.roa
Signing time: Tue 19 Apr 2022 09:41:18 +0000
ROA not before: Tue 19 Apr 2022 09:41:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 64.43.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 485840143 (0x1cf5550f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Apr 19 09:41:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfc83759b632aa9b30fc409e8d0842949259992a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:96:04:77:a6:5d:56:f1:ff:bb:8b:69:71:15:
f4:ba:07:7c:32:3a:d3:09:80:0b:0b:0e:b9:f5:d9:
8d:a1:15:06:f6:31:61:e0:f0:24:4e:3c:0b:93:64:
aa:89:1b:90:0f:a1:24:86:2a:3a:51:5e:69:00:b5:
2f:d9:ba:9d:e8:bb:8a:a1:d5:56:0c:9e:0e:12:1b:
57:f9:18:b5:b7:b8:f2:80:1b:5f:b2:62:1d:e6:12:
cf:08:f0:e7:4d:e7:9d:da:90:1d:62:65:cf:47:d4:
fa:b7:26:a6:2a:49:50:05:72:4c:f1:8c:9f:af:74:
c0:0f:69:02:97:bd:f0:5c:64:a1:4a:3a:a7:93:fe:
34:0e:fe:2d:fd:31:06:83:7f:62:4b:f4:de:f1:6a:
55:67:5f:cd:c5:d3:f2:ba:ed:22:86:21:dc:b1:07:
e0:ed:25:1c:8c:01:43:9f:8d:ba:5e:2a:db:3d:04:
a6:02:75:41:cb:02:76:a7:b7:81:3f:9a:b8:4d:b4:
05:98:a7:69:ef:f9:41:09:77:a2:e7:73:95:9d:80:
53:bc:03:6f:fe:ce:1e:60:40:aa:c6:14:f5:0c:e3:
88:e2:de:d6:ce:82:6c:7b:ab:f8:48:b1:e3:82:3b:
b3:2a:8d:bc:9a:b3:55:57:d8:67:52:0a:f3:d8:b1:
cb:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C8:37:59:B6:32:AA:9B:30:FC:40:9E:8D:08:42:94:92:59:99:2A
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/v8g3WbYyqpsw_ECejQhClJJZmSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.43.124.0/22
Signature Algorithm: sha256WithRSAEncryption
23:01:87:35:4e:52:de:c8:17:fe:1c:65:1f:e1:1d:78:91:16:
e9:1f:50:a4:1e:da:0e:e0:73:ac:14:6c:16:93:74:53:81:4b:
02:f2:91:fa:cc:d1:ed:63:a1:5b:4a:9f:66:9d:f7:07:5e:dd:
22:06:ab:de:bb:4c:11:38:22:cb:e0:0e:ff:c8:ec:b5:4f:0f:
69:1c:e5:16:ae:a3:22:1b:16:35:01:c9:f5:ef:cf:fd:f3:aa:
64:1f:07:84:42:16:26:78:4e:7f:15:b9:ce:ce:eb:ce:d3:fe:
74:ca:dd:a7:f0:3a:55:1b:fc:0d:ff:31:02:55:b0:88:6e:ca:
fe:41:7b:62:00:2b:dc:a4:0e:12:e1:1b:81:0e:99:dd:0f:fe:
f5:2e:68:8a:71:cd:88:d3:1b:80:0f:df:ad:1e:97:cd:a9:67:
6b:f6:e1:74:21:4a:8a:a7:c3:c9:1b:e0:8c:ee:2f:3c:8a:bc:
9d:85:d7:91:bf:4d:8e:81:df:67:6d:eb:8b:be:33:eb:3d:81:
4c:41:2d:44:79:52:93:99:58:1b:d2:39:7e:2c:5a:01:dd:d4:
5e:c4:ab:bd:9c:dc:ef:d8:f6:20:3f:bd:11:6e:5a:5f:ff:c2:
9b:d6:32:ff:ca:91:f9:24:c6:af:b0:a3:c7:1e:3b:8e:a6:93:
73:4b:9e:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org