Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Xd_9Maj4QivI6eqdhMauv31t-QM.roa
File: Xd_9Maj4QivI6eqdhMauv31t-QM.roa (raw, json)
Hash identifier: rkyuAATInkULwh8fNxhgtADnUlOQQsZgSdoOzR8TNbk=
Subject key identifier: 5D:DF:FD:31:A8:F8:42:2B:C8:E9:EA:9D:84:C6:AE:BF:7D:6D:F9:03
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01852BC71786551281070D22D38C04360D26
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Xd_9Maj4QivI6eqdhMauv31t-QM.roa
Signing time: Mon 19 Dec 2022 19:05:46 +0000
ROA not before: Mon 19 Dec 2022 19:05:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200482
IP address blocks: 84.32.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:c7:17:86:55:12:81:07:0d:22:d3:8c:04:36:0d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 19 19:05:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ddffd31a8f8422bc8e9ea9d84c6aebf7d6df903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4b:02:85:46:5e:76:07:5d:ca:f5:f9:80:ce:
bc:e9:3a:cb:4f:5c:fc:12:6d:19:aa:d1:3b:e4:c3:
05:b7:dc:db:6c:ac:3a:31:61:23:c6:dd:2b:e3:bd:
e5:53:96:51:2c:49:24:3b:f8:94:ff:9d:b5:5c:1f:
0a:39:b3:30:ed:b2:0c:90:1e:97:b4:32:ee:3d:75:
2b:42:83:53:ff:fa:b5:2a:67:eb:5d:54:62:51:f8:
84:66:fd:a8:52:78:58:f4:68:de:05:d5:d3:4a:a4:
a2:ff:6f:34:18:4a:1c:8e:ea:c6:8e:03:46:73:55:
2a:11:69:28:0e:3d:aa:4d:1f:30:e9:b6:53:64:2d:
0f:37:a3:0e:7b:3e:c6:f2:4f:a4:e0:0b:85:0f:d9:
ee:4d:8d:b4:f2:82:87:76:c5:23:d1:94:4e:47:7e:
5b:6e:08:f2:98:1e:4d:45:bd:18:a7:f0:54:57:e5:
e4:be:b4:b7:db:03:ae:f2:bc:3d:63:0d:ab:2f:8c:
22:df:42:e6:a5:31:75:e4:7f:6d:55:13:22:b0:86:
25:11:d6:73:52:f2:21:f2:41:dd:79:9d:70:8f:41:
ab:16:84:39:e5:db:c4:a6:e2:12:cb:3b:50:98:35:
aa:fd:59:92:7e:80:1a:4c:d4:7c:e8:f8:bc:25:ce:
54:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DF:FD:31:A8:F8:42:2B:C8:E9:EA:9D:84:C6:AE:BF:7D:6D:F9:03
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Xd_9Maj4QivI6eqdhMauv31t-QM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.217.0/24
Signature Algorithm: sha256WithRSAEncryption
07:88:c8:ce:6d:0b:d8:87:2a:e7:e7:cf:95:9f:20:bf:b8:9a:
d7:96:13:8d:16:2a:48:3a:ea:8c:bc:89:44:ee:f2:c5:74:0a:
75:da:32:6c:0c:25:f1:d4:d8:7b:bc:13:65:0d:74:16:db:d9:
5c:b8:37:9c:b8:c4:ad:ef:27:47:fe:3d:2a:6c:00:03:21:4a:
63:74:29:46:a2:80:24:80:30:89:5f:30:b0:7f:90:9e:c5:22:
92:64:62:47:25:4c:ab:96:89:a0:bb:32:c4:74:49:67:4c:af:
da:ca:5c:68:eb:43:ea:48:91:db:f3:b0:2a:ea:1f:18:9a:19:
2a:33:9a:fe:fb:9d:e3:0f:63:cf:c1:b2:37:85:96:e7:e8:69:
35:25:75:d0:73:2c:45:f3:9c:1f:2e:c5:7a:90:5d:62:9b:df:
d2:37:44:c2:96:29:62:03:a0:ad:64:0f:c7:f7:af:6f:45:97:
2a:9f:f6:c1:14:67:40:f3:09:2e:e0:2f:5e:83:56:27:7d:ef:
d3:60:84:35:33:23:ff:9c:44:81:33:a5:02:0d:a8:ca:6c:e1:
5e:58:53:90:1c:5c:ec:67:c6:05:36:ce:2b:8f:8f:c8:1a:2c:
27:7f:fe:9d:d0:88:21:ef:d9:12:95:fb:07:47:64:5d:ce:d0:
3b:48:52:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:33 2024 by rpki-client on console-fra.rpki-client.org