Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/shCjXI7tHt7STOKzsxp-dAgmEHE.roa
File: shCjXI7tHt7STOKzsxp-dAgmEHE.roa (raw, json)
Hash identifier: P0qUw+7t4vwT5nd5/U2eeAZJ+KtWa6lOY8gPemmvXvY=
Subject key identifier: B2:10:A3:5C:8E:ED:1E:DE:D2:4C:E2:B3:B3:1A:7E:74:08:26:10:71
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B3CEF52
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/shCjXI7tHt7STOKzsxp-dAgmEHE.roa
Signing time: Sat 01 Jan 2022 13:04:54 +0000
ROA not before: Sat 01 Jan 2022 13:04:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14123
IP address blocks: 86.106.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188542802 (0xb3cef52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 13:04:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b210a35c8eed1eded24ce2b3b31a7e7408261071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:9f:a4:e9:4b:e9:7b:eb:62:50:91:e2:28:
cc:e4:9f:b5:08:cb:26:31:87:9f:f9:53:c5:03:ea:
3e:16:5a:97:f3:7b:d1:29:6c:c7:53:0b:f0:fc:69:
2f:bc:02:a7:51:1d:1a:4e:51:a2:31:11:c7:0c:f7:
d5:af:15:b7:15:33:37:2b:29:1f:cb:c9:b7:ed:9d:
0d:23:35:ae:5a:d5:ec:9a:c3:70:c4:08:ad:e6:28:
79:07:35:a2:79:03:65:2d:34:12:ca:f7:a1:a7:42:
70:26:a3:1c:b4:72:18:52:64:7f:6b:c9:52:1e:1f:
88:63:36:be:ef:fa:87:84:8a:fb:93:30:b9:17:b5:
85:98:e2:10:5b:3c:0b:fc:1a:d5:34:44:c8:4c:ef:
b7:40:43:84:6b:fe:c8:32:ac:ca:a0:94:92:74:64:
91:61:bf:45:9b:b6:10:b5:90:b0:32:58:5a:41:d3:
60:01:e3:d0:09:cc:08:c6:7a:3d:77:89:af:29:ca:
81:1d:f5:ee:26:4f:70:65:dd:0b:5a:6a:e7:e7:19:
36:1d:39:81:98:54:ce:bd:8a:26:c6:a4:f6:c0:76:
fb:c7:4f:4b:1f:16:aa:14:07:15:b7:f4:08:2a:5d:
55:d4:d7:97:4e:be:eb:63:1d:9e:04:70:f0:d2:bc:
27:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:10:A3:5C:8E:ED:1E:DE:D2:4C:E2:B3:B3:1A:7E:74:08:26:10:71
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/shCjXI7tHt7STOKzsxp-dAgmEHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.97.0/24
Signature Algorithm: sha256WithRSAEncryption
82:9e:5f:31:03:f0:92:db:14:cd:cd:05:c6:69:a9:eb:d7:43:
75:31:38:8b:6c:00:1e:75:ca:60:1a:d3:36:ef:f4:ae:50:de:
84:d3:eb:63:a8:b7:cc:7e:2d:df:7f:5a:60:49:4d:a2:7b:54:
62:61:85:3a:61:bd:e4:c6:39:fa:99:cc:e2:17:c8:d8:2e:5d:
c7:b2:44:b6:79:a9:dc:fc:cf:7b:25:67:01:25:50:2f:b1:ce:
ef:78:2b:d5:91:c9:08:8c:69:54:59:d7:33:6b:ba:a8:7a:39:
68:0b:32:82:5f:b2:8a:12:85:f4:24:c2:61:05:73:02:98:5a:
87:a8:be:1f:52:9d:c5:78:19:9f:00:c9:9b:88:fd:85:52:f1:
d1:b7:b6:df:b5:18:0c:56:52:71:c3:ac:4e:11:d7:c5:d9:de:
32:bb:47:17:c5:80:0d:07:ed:1b:55:df:9a:d9:01:2b:c6:76:
bf:00:bb:82:f2:09:17:39:d7:bd:ba:25:a8:08:c9:58:56:2c:
24:7d:ae:d0:1d:3b:26:6a:4b:bd:ec:49:56:4e:ee:38:22:88:
79:18:e5:41:fd:25:3e:c1:dd:8c:c3:fa:93:58:eb:fb:68:65:
ff:83:e6:89:2e:0b:4b:39:13:dd:aa:fc:53:dd:b2:80:c8:49:
20:b9:cc:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org