Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/300165-25c6-401b-9cbf-1f49bc7fd3bd/1/ln78NT8_YPEPus9hKMtVwzgIzFQ.roa
File: ln78NT8_YPEPus9hKMtVwzgIzFQ.roa (raw, json)
Hash identifier: x6t8BzZB3mZpauKeXHgm28rklgZKVBZrN2J9ga+DNiI=
Subject key identifier: 96:7E:FC:35:3F:3F:60:F1:0F:BA:CF:61:28:CB:55:C3:38:08:CC:54
Certificate issuer: /CN=a8ef61bdc034fb5638bcf19e07ec21d90019d42c
Certificate serial: 0A16B164
Authority key identifier: A8:EF:61:BD:C0:34:FB:56:38:BC:F1:9E:07:EC:21:D9:00:19:D4:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qO9hvcA0-1Y4vPGeB-wh2QAZ1Cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/300165-25c6-401b-9cbf-1f49bc7fd3bd/1/ln78NT8_YPEPus9hKMtVwzgIzFQ.roa
Signing time: Sat 01 Jan 2022 09:56:30 +0000
ROA not before: Sat 01 Jan 2022 09:56:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39848
IP address blocks: 84.234.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169259364 (0xa16b164)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8ef61bdc034fb5638bcf19e07ec21d90019d42c
Validity
Not Before: Jan 1 09:56:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=967efc353f3f60f10fbacf6128cb55c33808cc54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:34:f7:e5:03:8a:36:68:18:b8:1c:49:74:7a:
39:2d:6a:50:1c:28:dc:7c:4b:41:8a:1e:0b:04:08:
e1:ad:97:05:29:87:da:b9:c5:1b:1b:d8:97:20:0b:
3c:ac:7b:7a:95:81:8e:e7:30:2c:fb:a8:4e:2c:96:
2c:7a:de:75:dc:9c:d5:a3:f8:ff:21:47:c6:6b:82:
b3:e7:79:a5:03:7f:21:5a:39:9b:4c:0b:38:b9:f7:
22:26:18:9e:a3:20:c5:a4:bf:9f:b4:f3:37:91:9f:
c0:29:c3:5e:06:18:6b:60:a3:77:c9:a4:c2:90:17:
f7:fe:4a:e0:4e:02:15:77:69:1e:f9:cd:5d:35:e1:
c0:64:3f:69:a7:b4:85:ce:22:c4:fe:af:06:04:9d:
fe:79:32:c7:e9:36:29:1f:2c:2f:c4:bd:de:fb:3d:
36:1c:fd:b4:6a:2a:2d:7d:bf:87:75:5e:66:1f:bd:
e0:85:05:17:3b:81:8e:61:e6:97:50:21:cc:1d:d2:
dd:34:23:a0:f5:09:bf:6c:c5:6e:28:6b:57:53:98:
d4:c5:81:43:e6:66:9e:ad:47:4f:10:c6:bd:17:30:
c1:54:44:43:3d:9c:bc:2f:74:14:51:08:86:2f:75:
50:f9:e3:a0:80:b7:45:66:e5:0e:b5:9f:92:d8:0a:
af:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:7E:FC:35:3F:3F:60:F1:0F:BA:CF:61:28:CB:55:C3:38:08:CC:54
X509v3 Authority Key Identifier:
keyid:A8:EF:61:BD:C0:34:FB:56:38:BC:F1:9E:07:EC:21:D9:00:19:D4:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qO9hvcA0-1Y4vPGeB-wh2QAZ1Cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/300165-25c6-401b-9cbf-1f49bc7fd3bd/1/ln78NT8_YPEPus9hKMtVwzgIzFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/300165-25c6-401b-9cbf-1f49bc7fd3bd/1/qO9hvcA0-1Y4vPGeB-wh2QAZ1Cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.234.108.0/22
Signature Algorithm: sha256WithRSAEncryption
38:5f:ff:aa:da:d4:fd:d4:9f:b2:9a:05:0c:b2:d4:71:7c:f9:
3d:90:cc:a2:4f:ff:b3:a4:19:74:14:49:85:db:df:7a:37:58:
13:3b:95:ac:92:74:fd:a7:b0:31:47:d9:64:cb:b9:7e:f1:85:
eb:3e:62:e2:c5:58:45:21:e3:7f:0c:8d:3b:1f:e6:98:43:9c:
9a:53:41:48:09:78:96:48:0d:4c:a9:20:d0:e9:f8:7e:be:46:
c6:8e:2c:95:b9:06:6e:bf:d3:20:ec:7b:4d:88:79:91:48:d9:
8e:79:22:f4:94:0f:54:81:bc:77:59:ef:da:e4:6f:85:3e:4d:
d9:c6:b8:e3:9f:85:6e:2b:ca:85:81:f8:25:39:de:67:c7:84:
8c:6d:9c:f5:e5:48:78:b6:3c:7f:2b:a4:63:90:40:24:73:64:
e5:6a:1a:85:26:9f:76:00:62:f0:ff:3c:d8:80:41:42:7b:a7:
af:ca:04:11:de:15:2c:90:cb:3d:e0:c6:21:e6:1e:24:31:77:
9e:2d:62:19:b3:be:94:d7:ec:3f:ba:4b:21:5d:b2:6d:3c:4c:
58:ac:e1:b9:15:86:b5:af:4b:a8:f9:bd:5e:95:e9:40:66:37:
12:40:55:a4:1f:94:2c:d3:89:ed:e7:81:72:1f:d3:21:79:2d:
52:11:bc:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:52 2024 by rpki-client on console-ams.rpki-client.org