Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/76dc25-b389-4024-bf28-f4f0561b7a57/1/1-6aTD2kD7dC3J0a--6b2VKK8MMA.roa
File: 1-6aTD2kD7dC3J0a--6b2VKK8MMA.roa (raw, json)
Hash identifier: Cr+kNunVfD6F34gE2jFO7cEsEiEBVfAW54eQXahp2PE=
Subject key identifier: FB:A6:93:0F:69:03:ED:D0:B7:27:46:BE:FB:A6:F6:54:A2:BC:30:C0
Certificate issuer: /CN=9c4d86afb59f1d9dd16c1125009b998382e36ed3
Certificate serial: 653974
Authority key identifier: 9C:4D:86:AF:B5:9F:1D:9D:D1:6C:11:25:00:9B:99:83:82:E3:6E:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nE2Gr7WfHZ3RbBElAJuZg4LjbtM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/76dc25-b389-4024-bf28-f4f0561b7a57/1/1-6aTD2kD7dC3J0a--6b2VKK8MMA.roa
Signing time: Sat 01 Jan 2022 02:54:08 +0000
ROA not before: Sat 01 Jan 2022 02:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34763
IP address blocks: 193.84.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6633844 (0x653974)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c4d86afb59f1d9dd16c1125009b998382e36ed3
Validity
Not Before: Jan 1 02:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fba6930f6903edd0b72746befba6f654a2bc30c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e8:a9:71:08:0b:77:e0:78:6c:6c:b9:ee:5e:
97:02:6f:a1:79:df:7f:5d:5b:cf:d4:6b:0c:34:b4:
db:03:d9:08:10:13:15:b4:e5:a0:0e:dc:b3:a6:76:
da:b8:ed:47:f5:e3:e3:c6:85:7b:b3:17:16:59:06:
57:d4:dc:c4:03:80:e8:49:38:8a:a4:1c:86:15:c7:
c3:02:78:44:d0:95:e9:07:6c:7b:b9:9f:c5:c2:2d:
9c:eb:60:01:42:9a:98:50:19:fd:15:d0:16:ad:9c:
da:c0:5a:38:27:aa:67:da:96:89:8b:19:84:58:80:
03:0c:69:be:19:28:f1:2f:b0:04:21:68:97:e1:2c:
d8:e6:59:66:b1:da:2a:65:f4:9d:ef:46:6a:13:54:
88:cb:06:86:34:4a:56:f5:1a:c6:c4:a5:7d:86:e1:
ec:2f:76:13:56:09:a1:6a:96:bf:d3:48:89:84:68:
a4:4a:ed:55:1c:22:32:46:78:e3:98:04:74:42:f9:
78:af:51:57:cb:9a:3c:cb:1a:c9:b6:61:cf:30:d7:
ca:cc:65:a2:e1:3f:5c:ad:e3:fc:33:ad:e4:aa:b2:
d6:8e:d4:84:a5:7d:83:3f:68:f2:db:b1:89:11:04:
ce:d5:1f:c0:a1:ed:3e:93:6f:80:ad:c0:94:49:61:
86:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A6:93:0F:69:03:ED:D0:B7:27:46:BE:FB:A6:F6:54:A2:BC:30:C0
X509v3 Authority Key Identifier:
keyid:9C:4D:86:AF:B5:9F:1D:9D:D1:6C:11:25:00:9B:99:83:82:E3:6E:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nE2Gr7WfHZ3RbBElAJuZg4LjbtM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/76dc25-b389-4024-bf28-f4f0561b7a57/1/1-6aTD2kD7dC3J0a--6b2VKK8MMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/76dc25-b389-4024-bf28-f4f0561b7a57/1/nE2Gr7WfHZ3RbBElAJuZg4LjbtM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.119.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ad:a7:bb:87:07:af:88:7e:10:cd:e0:72:38:62:4d:4b:bb:
29:c4:b7:3d:df:91:5f:d5:02:70:a4:82:c5:fe:44:79:cd:a4:
e3:86:42:68:d6:87:97:81:5a:c9:d9:5e:b0:aa:8a:fe:3e:1a:
e4:7a:5b:73:da:7c:7b:d7:2c:53:7b:65:39:8d:a2:3c:c0:da:
61:4d:b3:35:4f:ed:5f:52:77:93:0a:d1:6e:f2:3e:7b:66:98:
59:7c:f7:75:5d:fc:6c:c3:9f:b5:c0:5b:65:42:80:f0:92:5c:
c1:ae:00:ce:93:42:a5:cb:1c:8f:91:13:a9:e7:77:f0:fb:6c:
99:83:53:e8:b0:6c:88:0e:ff:36:31:71:7a:d4:00:4b:29:ed:
06:2d:d4:d6:ad:36:5a:56:ce:b4:65:f8:5f:38:e3:b4:24:6a:
03:99:be:d1:5a:60:a8:26:48:34:5a:08:60:6f:d3:67:6f:fb:
ba:10:e1:b5:00:98:d7:b6:40:5e:85:71:c4:52:4c:bc:42:e0:
eb:62:ce:a8:cd:4f:8c:69:30:9e:e7:a5:7d:16:58:b6:03:2d:
21:24:60:cb:8a:fe:cc:ca:3c:7d:ba:b6:df:38:d6:e4:4b:b9:
bf:72:56:c8:aa:35:4d:c4:b5:51:08:ce:7d:09:41:f1:d7:91:
ba:2f:c6:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:03 2024 by rpki-client on console-ams.rpki-client.org