Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8J8cf1mb3EDkxnlLuchyOpLVogc.roa
File: 8J8cf1mb3EDkxnlLuchyOpLVogc.roa (raw, json)
Hash identifier: AmAIN7IHv0FFBOwd+zL6r5/dHNVHfACRoE8bCe1gE1M=
Subject key identifier: F0:9F:1C:7F:59:9B:DC:40:E4:C6:79:4B:B9:C8:72:3A:92:D5:A2:07
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 709CB5
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8J8cf1mb3EDkxnlLuchyOpLVogc.roa
Signing time: Sat 26 Mar 2022 18:18:40 +0000
ROA not before: Sat 26 Mar 2022 18:18:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 84.32.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7380149 (0x709cb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 26 18:18:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f09f1c7f599bdc40e4c6794bb9c8723a92d5a207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7b:66:94:f6:99:12:23:ad:c7:e4:ec:cb:d8:
8e:32:86:3a:7e:62:0d:cb:95:0d:a0:6e:8b:1c:0b:
b0:fd:10:17:ff:ab:06:8b:37:94:b9:fb:d2:c5:8d:
be:cc:19:20:2e:88:c4:ec:e2:4e:e6:fd:80:7d:2d:
cd:f0:86:13:ff:da:9b:8a:e7:4b:ad:63:ce:81:cf:
ee:86:c9:a1:80:9d:0d:5c:52:87:58:78:c6:7c:c3:
86:b7:7c:b2:cc:aa:d9:f2:67:74:e8:77:57:85:a9:
9f:e6:7d:76:20:b4:27:35:d4:0e:38:ca:8d:b9:88:
b8:14:08:3a:3b:5d:8b:77:0c:e5:f6:11:3a:a6:5a:
2a:78:19:f4:b4:f6:b6:63:9c:08:62:32:d4:69:4d:
82:1c:1a:d5:17:d5:5f:ca:e8:48:0f:34:e4:1c:54:
d8:02:95:0c:73:ae:5f:32:22:18:3b:a1:7e:22:bf:
90:8d:e9:d3:76:ef:36:0d:d8:f8:b4:d3:1b:c7:bc:
0b:6b:00:99:e3:63:b9:21:79:ad:c3:5b:56:4a:ba:
1c:e6:14:cb:15:92:92:30:ed:28:76:03:65:2b:6d:
71:c4:6e:7f:f4:a1:83:88:f8:95:b4:64:97:ca:62:
b2:7b:ea:33:33:80:8f:ec:5c:ac:91:83:b7:56:6c:
86:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:9F:1C:7F:59:9B:DC:40:E4:C6:79:4B:B9:C8:72:3A:92:D5:A2:07
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8J8cf1mb3EDkxnlLuchyOpLVogc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.34.0/24
Signature Algorithm: sha256WithRSAEncryption
24:f7:33:05:57:10:63:05:ba:4e:d3:58:b7:79:38:5f:13:7e:
3d:d3:c6:32:a6:41:5d:1a:b8:94:4d:13:05:a9:b7:42:58:ad:
49:9f:b1:6a:3e:3a:29:99:17:f8:70:c9:fd:3a:cc:e4:ba:67:
8b:c8:aa:a3:c4:23:96:b1:63:33:9e:1c:0e:5f:9c:c6:e2:c9:
79:15:bf:31:7d:26:25:1e:b7:c3:8c:5a:49:50:c0:cc:df:ff:
80:48:be:9e:ac:5c:d4:96:42:06:f1:b4:3d:5f:2a:f3:b4:77:
3a:cb:d8:10:06:10:7f:59:f0:a6:ed:0d:05:e0:df:fa:d9:c8:
32:6a:c4:0d:24:95:3d:a0:94:f8:5e:8c:47:2f:2f:ed:f7:6b:
49:47:13:cb:98:04:66:4a:6b:41:0f:6b:cd:e5:42:5a:76:8d:
66:3d:98:a3:35:d5:41:bc:fa:56:18:76:e9:3f:7c:0a:96:c4:
2c:7f:15:6c:4b:f2:3c:35:77:78:34:03:94:20:ba:a3:fe:12:
2e:33:e7:6f:d3:9d:21:6c:ab:0a:19:45:ee:77:a7:a9:56:22:
25:49:e0:00:9b:61:03:18:0d:a0:53:74:d7:a4:bf:46:42:92:
f3:62:ff:2b:72:f3:60:37:11:ac:af:cf:e2:c8:7c:3b:e9:41:
71:67:2d:ca
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDcJy1MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDRm
YmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZiZGEzYzUwHhcNMjIwMzI2
MTgxODQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmMDlmMWM3ZjU5OWJk
YzQwZTRjNjc5NGJiOWM4NzIzYTkyZDVhMjA3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAjntmlPaZEiOtx+Tsy9iOMoY6fmINy5UNoG6LHAuw/RAX/6sG
izeUufvSxY2+zBkgLojE7OJO5v2AfS3N8IYT/9qbiudLrWPOgc/uhsmhgJ0NXFKH
WHjGfMOGt3yyzKrZ8md06HdXhamf5n12ILQnNdQOOMqNuYi4FAg6O12Ldwzl9hE6
ploqeBn0tPa2Y5wIYjLUaU2CHBrVF9VfyuhIDzTkHFTYApUMc65fMiIYO6F+Ir+Q
jenTdu82Ddj4tNMbx7wLawCZ42O5IXmtw1tWSroc5hTLFZKSMO0odgNlK21xxG5/
9KGDiPiVtGSXymKye+ozM4CP7FyskYO3VmyG3QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFPCfHH9Zm9xA5MZ5S7nIcjqS1aIHMB8GA1UdIwQYMBaAFE+9RfzjVuKmXx5N
Ha94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
VDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMzLzEv
OEo4Y2YxbWIzRURreG5sTHVjaHlPcExWb2djLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8z
OTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMzLzEvVDcxRl9PTlc0cVpm
SGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCAiMA0GCSqGSIb3DQEBCwUAA4IB
AQAk9zMFVxBjBbpO01i3eThfE34908YypkFdGriUTRMFqbdCWK1Jn7FqPjopmRf4
cMn9OszkumeLyKqjxCOWsWMznhwOX5zG4sl5Fb8xfSYlHrfDjFpJUMDM3/+ASL6e
rFzUlkIG8bQ9XyrztHc6y9gQBhB/WfCm7Q0F4N/62cgyasQNJJU9oJT4XoxHLy/t
92tJRxPLmARmSmtBD2vN5UJado1mPZijNdVBvPpWGHbpP3wKlsQsfxVsS/I8NXd4
NAOUILqj/hIuM+dv050hbKsKGUXud6epViIlSeAAm2EDGA2gU3TXpL9GQpLzYv8r
cvNgNxGsr8/iyHw76UFxZy3K
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org