Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/7CEYK2P5RLI9IU03kKP4hX0JuZk.roa
File: 7CEYK2P5RLI9IU03kKP4hX0JuZk.roa (raw, json)
Hash identifier: +OZTA4a+Vanihd79J0OoARhItypEWQFXRJo7MoU28Ag=
Subject key identifier: EC:21:18:2B:63:F9:44:B2:3D:21:4D:37:90:A3:F8:85:7D:09:B9:99
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01843D6D4BBF71C7D0939CD117B4F4E5CE1B
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/7CEYK2P5RLI9IU03kKP4hX0JuZk.roa
Signing time: Thu 03 Nov 2022 12:18:03 +0000
ROA not before: Thu 03 Nov 2022 12:18:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205431
IP address blocks: 84.32.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3d:6d:4b:bf:71:c7:d0:93:9c:d1:17:b4:f4:e5:ce:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 3 12:18:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec21182b63f944b23d214d3790a3f8857d09b999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:20:c0:6f:cd:32:0e:bd:42:5f:d0:b6:c9:20:
62:d5:a3:14:2e:16:9e:7c:85:b3:9e:3e:82:d6:5f:
91:28:34:1e:78:73:d5:e4:6f:5a:c2:ad:19:7e:37:
34:be:03:21:b6:0c:cd:46:4b:8e:12:11:19:54:97:
aa:87:bb:0c:44:fd:ff:cc:55:83:a9:34:13:29:ec:
e6:94:11:84:a5:54:c3:47:51:5f:27:fc:fb:d7:d2:
d2:10:62:08:3c:29:db:60:f9:a3:d1:77:6b:63:6e:
63:f2:6d:b6:13:38:6e:ef:f3:84:4e:41:17:e1:3d:
36:5a:76:23:3a:6f:3b:89:33:4d:72:bc:be:07:dd:
ba:d9:eb:f5:c2:22:06:2c:ce:d0:6b:4f:d8:22:e4:
fe:e8:ce:4f:fd:d5:f6:c4:21:94:3a:81:91:cc:3e:
e8:1c:53:9d:ad:c1:c9:fa:ea:38:b4:f4:f1:3c:b1:
74:8f:c2:e8:54:42:26:5b:fe:0f:06:f0:c5:3f:b0:
10:55:50:b0:0e:a3:31:a3:51:7e:14:5d:20:f8:6b:
5c:62:59:22:34:75:89:53:f0:a8:14:6c:48:de:77:
70:d2:04:39:cd:bb:f1:d4:95:3e:75:4b:d8:32:a5:
23:65:34:72:f9:de:b3:f0:d4:ed:19:e2:61:34:5a:
f9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:21:18:2B:63:F9:44:B2:3D:21:4D:37:90:A3:F8:85:7D:09:B9:99
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/7CEYK2P5RLI9IU03kKP4hX0JuZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.89.0/24
Signature Algorithm: sha256WithRSAEncryption
47:77:82:a2:9c:c7:ec:60:ec:c6:08:4f:97:89:ce:5d:95:db:
83:ef:76:f0:21:a1:be:78:89:90:11:3a:0a:25:3b:2c:60:e5:
78:53:c5:8a:b3:bd:1e:20:c3:4e:d2:41:52:4b:91:d4:85:63:
52:7f:fe:25:9f:d0:be:9a:13:c4:3f:c9:79:dd:6f:e1:89:e7:
7d:63:da:56:a1:79:99:7a:6e:96:f3:97:e5:2d:c6:f7:14:e9:
b2:47:2d:3d:48:b4:28:cb:07:c0:15:00:44:96:94:c6:52:c5:
48:cc:4e:f7:d7:c0:8c:e7:87:f7:e1:fe:e3:b4:77:85:d3:41:
0d:ac:6d:63:e3:84:cd:c1:71:fa:59:45:9a:ea:21:d7:4f:ad:
6f:86:87:16:40:88:ee:25:68:38:01:e6:c2:00:71:5a:5c:45:
1e:22:00:58:f4:cf:ad:45:a3:61:d9:04:d3:90:e8:cb:11:08:
e8:08:e0:00:4d:3e:12:29:36:65:93:ed:61:32:df:2b:44:54:
d8:b8:0b:a6:7a:f3:67:5f:18:4a:e3:a6:33:90:11:19:e2:82:
40:88:b8:fc:f4:6c:ef:63:ba:d1:f3:39:03:5d:de:09:c9:c7:
23:8d:d9:3c:b0:1a:6a:d7:63:9e:c9:87:4f:19:19:dc:98:e0:
c4:b8:5d:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:30 2024 by rpki-client on console-fra.rpki-client.org