Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/IUljbNUZhJVxj1aTedQI5ZRAV_8.roa
File: IUljbNUZhJVxj1aTedQI5ZRAV_8.roa (raw, json)
Hash identifier: hP4fTZrUDYs1uN5BOhLdc8ZT29UzEYXx1hY7YpHyzts=
Subject key identifier: 21:49:63:6C:D5:19:84:95:71:8F:56:93:79:D4:08:E5:94:40:57:FF
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018486F3A2E65BD4826EA79ECE80850F0073
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/IUljbNUZhJVxj1aTedQI5ZRAV_8.roa
Signing time: Thu 17 Nov 2022 18:57:04 +0000
ROA not before: Thu 17 Nov 2022 18:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 84.32.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:f3:a2:e6:5b:d4:82:6e:a7:9e:ce:80:85:0f:00:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 17 18:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2149636cd5198495718f569379d408e5944057ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:21:1c:ef:fa:71:78:61:f6:c9:1a:97:ab:2c:
72:0e:1b:13:24:d2:ce:93:41:df:72:3a:af:f6:02:
bc:3c:3e:e4:6f:98:e2:a0:41:63:67:09:e4:76:ad:
08:52:26:9a:e5:9d:16:cd:50:9d:db:8c:5e:6b:b2:
cd:0d:3b:ba:a9:5f:5b:3e:5b:cd:43:c3:85:74:ee:
8d:ee:3b:52:70:49:b7:37:6d:e9:9c:84:b1:c3:fe:
e5:f3:52:3d:37:e4:2d:c9:65:a5:a0:b8:c6:12:ee:
63:96:3f:3e:26:66:bb:d8:1e:88:bd:62:36:57:7b:
a0:fe:f2:22:0e:d2:ad:af:38:04:f0:c2:44:ca:c1:
56:3f:e2:34:fe:e5:c3:b8:0a:d2:17:41:e4:2c:a5:
7b:11:ec:48:c8:ad:af:0b:1a:f4:59:ec:4e:aa:cd:
c0:4d:48:8d:67:80:e7:54:1d:d1:1b:e7:75:a8:c2:
94:59:fc:c2:72:4f:38:1e:04:67:cf:8a:4e:c1:11:
9b:b1:a5:35:10:34:2e:47:a2:55:32:5d:e6:f3:8c:
4b:61:83:6b:5d:1f:0b:7e:f3:d7:c0:48:f4:24:ea:
06:79:6a:20:d1:bc:37:77:0b:4f:d5:76:7e:34:32:
21:7e:60:a5:7c:97:fb:13:04:34:71:70:bf:b3:63:
db:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:49:63:6C:D5:19:84:95:71:8F:56:93:79:D4:08:E5:94:40:57:FF
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/IUljbNUZhJVxj1aTedQI5ZRAV_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.56.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:9d:e9:7d:10:80:9f:38:fb:f0:d2:6d:90:f1:60:35:01:db:
b4:20:ad:e9:d9:f0:94:39:d7:d3:5b:fe:b3:d1:d0:e7:5b:08:
60:d0:c0:ac:03:c7:d3:6f:e2:b9:81:85:2b:3b:18:ae:a0:4f:
8b:e0:1c:2f:0f:9f:81:5e:51:7a:f1:8f:fb:24:a5:ae:b7:2c:
26:bf:c4:65:70:3a:e1:78:17:11:69:a8:2e:77:11:37:f0:b3:
90:0e:57:96:01:85:b7:51:00:70:94:08:3e:86:22:e7:8c:34:
d2:d2:c3:53:b0:68:77:b6:93:95:6c:00:89:cd:7b:fd:16:6b:
0e:b3:e7:4a:31:7f:be:b8:40:bd:31:2a:e5:9a:59:7c:05:fe:
60:1f:3b:5f:df:b3:fe:69:4c:73:b1:a7:09:73:31:76:d1:40:
40:07:20:8f:c4:33:a2:ca:de:65:7e:18:c5:f9:2d:10:a2:b1:
bb:3f:44:3e:ed:3a:23:ae:b5:c2:26:f1:3c:c0:67:5b:be:69:
ee:62:0d:bb:13:1e:a6:ea:f9:9b:dd:44:08:e2:94:f8:b7:d6:
62:7e:9c:bc:95:22:e6:ad:4c:51:05:76:79:ca:10:c2:96:e9:
05:0a:b0:a8:a5:cb:2e:d4:7e:e1:7d:ef:35:bb:0b:27:41:08:
96:76:07:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:26 2024 by rpki-client on console-ams.rpki-client.org