Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Z9Z-rhsvlA41sUiTQORF0ziA2K8.roa
File: Z9Z-rhsvlA41sUiTQORF0ziA2K8.roa (raw, json)
Hash identifier: AeDuBplO146O0XbnN19Y+D7L6d6NhKnXL7W4D5A0bfo=
Subject key identifier: 67:D6:7E:AE:1B:2F:94:0E:35:B1:48:93:40:E4:45:D3:38:80:D8:AF
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01A6229F
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Z9Z-rhsvlA41sUiTQORF0ziA2K8.roa
Signing time: Thu 30 Jun 2022 15:47:28 +0000
ROA not before: Thu 30 Jun 2022 15:47:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 84.32.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27665055 (0x1a6229f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 30 15:47:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67d67eae1b2f940e35b1489340e445d33880d8af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fe:12:56:a7:d8:c0:80:0f:b0:0c:f2:a9:0a:
2c:47:26:77:2e:41:27:76:c7:d6:0b:7f:b4:89:b2:
a2:2a:a3:12:39:f3:59:13:05:bc:1c:8d:5d:41:8d:
a1:85:e2:ad:ea:75:8c:cf:7b:10:1a:fc:be:3b:17:
ab:c6:78:ee:62:c5:08:c4:8d:0c:01:b4:48:ca:71:
c7:07:5b:1b:1c:de:f6:62:3e:e7:ce:db:fd:ab:64:
97:f0:ba:0c:18:ff:3f:66:d2:84:7b:a2:b1:cf:ea:
8a:0e:22:44:52:f0:72:06:62:b6:69:5c:89:c6:32:
c3:94:94:f2:16:b3:68:45:c7:39:d2:88:c5:b5:bc:
89:f1:bf:a6:c6:12:d2:c2:77:f1:d1:f5:28:a3:90:
fc:dd:8d:c5:d4:4c:91:9d:86:60:c8:15:90:9b:4a:
05:25:2a:3e:14:dd:48:93:d1:1c:20:bf:72:b7:94:
fd:bd:e8:7c:62:45:e0:b2:38:18:41:9a:7c:6c:21:
db:7a:e6:08:22:3f:b2:ed:80:ad:5d:a0:77:2a:93:
ed:76:ab:48:31:33:8a:7e:a7:38:fb:21:b9:b1:65:
62:0d:c2:13:7a:c0:96:9e:b1:7a:9a:34:e2:cc:6e:
3d:04:53:2e:df:83:bd:98:ec:78:bd:e7:2e:3f:0e:
0f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D6:7E:AE:1B:2F:94:0E:35:B1:48:93:40:E4:45:D3:38:80:D8:AF
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Z9Z-rhsvlA41sUiTQORF0ziA2K8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.39.0/24
Signature Algorithm: sha256WithRSAEncryption
59:a6:f4:01:df:aa:d5:f1:b0:41:71:d1:1f:bd:bb:23:b9:8f:
36:4e:08:d4:58:e7:b3:ac:7b:90:fc:03:43:fd:35:4f:e7:ea:
23:f5:48:a4:18:ad:13:20:42:58:f2:5e:45:e6:27:c3:be:57:
42:b9:6f:d6:ab:8e:13:19:1b:47:8e:1f:84:dc:ef:10:98:d1:
b3:5b:87:1d:a4:45:4e:6b:af:7c:99:39:2e:a5:10:30:8c:98:
3f:b1:c2:0a:01:3d:69:30:5b:0d:bd:dc:b7:a9:22:54:65:7a:
6d:e5:6b:34:44:08:46:2a:7b:da:c7:91:4f:23:bc:64:6d:e4:
5c:6e:51:0b:ae:cc:40:17:22:fb:2a:85:a1:d7:de:8d:1e:87:
fa:14:44:4b:85:70:77:a4:ce:10:23:22:34:66:23:d3:5c:7e:
54:b3:c7:6a:97:45:81:5b:b2:8d:0e:b6:2a:5b:9f:76:0c:69:
86:8d:e1:80:08:1f:49:f0:6c:89:29:87:2e:40:9a:86:2e:6e:
2d:4a:09:42:34:1b:e8:00:98:df:0f:85:c1:01:5e:c3:76:20:
75:a7:5d:0a:62:0b:1c:5d:91:3c:95:4b:0d:33:d8:d9:16:07:
ee:b6:35:62:ca:f5:50:27:a9:c5:ac:bd:bd:d6:20:f9:49:7f:
1c:fa:16:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:33 2024 by rpki-client on console-fra.rpki-client.org