Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/a7M8cxDGZ2R8j2pMvkSrNs91-u4.roa
File: a7M8cxDGZ2R8j2pMvkSrNs91-u4.roa (raw, json)
Hash identifier: 6Uq9lyFXQarAhnTif0wn3G/7FJhj+DEt52jYkXiv6pk=
Subject key identifier: 6B:B3:3C:73:10:C6:67:64:7C:8F:6A:4C:BE:44:AB:36:CF:75:FA:EE
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: A9034E
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/a7M8cxDGZ2R8j2pMvkSrNs91-u4.roa
Signing time: Tue 12 Apr 2022 15:56:55 +0000
ROA not before: Tue 12 Apr 2022 15:56:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 84.32.34.0/24 maxlen: 24
88.216.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11076430 (0xa9034e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 12 15:56:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bb33c7310c667647c8f6a4cbe44ab36cf75faee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fa:3a:65:7d:fd:b4:5e:57:62:e4:4e:5d:3a:
20:4f:a8:54:ef:bc:cf:b6:ea:53:11:e9:0f:17:22:
ab:7e:be:e7:fd:aa:11:f5:22:ff:64:bc:b9:9c:88:
b0:ab:69:9b:4c:1e:3a:23:e8:09:f8:4e:53:6c:64:
36:6a:7b:b3:e7:f8:f1:10:b4:59:51:72:63:76:3f:
38:b9:2d:93:89:28:23:c0:52:6d:f5:ea:d4:09:95:
f7:c1:ea:b7:23:52:5a:d6:07:8e:7b:9e:cb:99:90:
d1:9c:2c:f3:e9:07:9b:31:a5:c1:69:81:d3:90:48:
08:01:54:90:22:b7:df:84:19:f9:81:b9:ff:cc:44:
a0:4b:e2:3a:e8:30:89:a1:04:bc:ee:f2:e3:83:1b:
9f:8d:3d:c9:9e:9c:8e:b0:f4:72:d3:00:d2:f4:ea:
cc:3d:3e:98:6e:8d:91:39:0f:dd:ac:61:80:fd:f0:
c8:bb:cc:c0:c1:f0:8f:c2:cb:b6:54:a6:27:52:4b:
71:ef:4f:97:16:3a:fd:1a:aa:85:cb:00:7a:b2:5a:
ea:db:42:c7:20:96:4a:fe:81:02:71:c8:f2:c3:3c:
69:5c:1b:96:f1:c4:a2:19:36:7e:63:95:72:08:11:
5d:dc:21:e1:2c:57:3d:6b:dc:00:59:22:66:a0:82:
fa:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B3:3C:73:10:C6:67:64:7C:8F:6A:4C:BE:44:AB:36:CF:75:FA:EE
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/a7M8cxDGZ2R8j2pMvkSrNs91-u4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.34.0/24
88.216.33.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:6a:28:03:3f:ff:fa:31:99:fd:f7:70:95:45:f3:6e:a1:8b:
38:a5:1e:31:0e:66:75:ef:1d:0e:14:af:11:9f:95:79:68:20:
3c:10:0b:14:11:0a:b6:8b:91:e2:b3:71:3a:83:84:c7:18:ee:
ae:50:4b:04:a6:55:ac:fb:eb:53:80:e8:7b:3c:1c:eb:51:d9:
29:64:ba:17:e8:f8:63:14:59:10:5e:d3:97:6c:1b:1d:dd:2e:
99:a1:b7:69:db:7c:44:93:d0:22:67:30:eb:c5:69:fa:cf:db:
c3:fa:d1:a0:74:4d:74:78:5e:83:b2:4c:cc:8a:51:dc:af:11:
ea:ce:8f:97:52:d6:2f:fa:68:88:1e:9f:03:f2:98:28:5e:5f:
01:fc:29:82:f4:a5:b2:7e:80:6e:6f:c5:f1:d1:b6:5a:6e:b2:
94:b4:4c:dc:45:ad:1b:98:05:f3:d4:ec:48:d6:aa:17:37:6c:
9f:04:d3:26:d7:30:b6:85:ab:e6:5d:dc:f7:fd:bc:03:55:c7:
c4:76:65:18:1d:42:a7:43:12:99:57:06:0a:0a:49:78:2a:35:
bc:2d:cd:a3:2c:ea:e8:4e:5a:df:42:fb:c0:72:13:44:45:dd:
7f:00:7e:f0:83:94:9a:a0:8e:3d:57:98:96:ff:c4:fa:95:db:
6e:31:07:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:29 2024 by rpki-client on console-ams.rpki-client.org