Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/slQ0k7qu0e8P3y3QOd4a0s0TYcY.roa
File: slQ0k7qu0e8P3y3QOd4a0s0TYcY.roa (raw, json)
Hash identifier: ZL2O285GvFcGsl/EMTReDTdASq8/ONinxbJ0ZWL+KSk=
Subject key identifier: B2:54:34:93:BA:AE:D1:EF:0F:DF:2D:D0:39:DE:1A:D2:CD:13:61:C6
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01A6D88F
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/slQ0k7qu0e8P3y3QOd4a0s0TYcY.roa
Signing time: Thu 30 Jun 2022 16:20:02 +0000
ROA not before: Thu 30 Jun 2022 16:20:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204770
IP address blocks: 84.32.128.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27711631 (0x1a6d88f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 30 16:20:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2543493baaed1ef0fdf2dd039de1ad2cd1361c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bb:38:b4:73:ed:56:68:25:04:b8:5a:7a:8f:
d6:bd:31:dc:cc:4c:f9:90:f3:46:7c:92:8c:3b:ac:
79:f9:e4:29:62:0c:af:d2:8c:c6:62:04:ae:a2:8d:
a0:5c:d9:ec:1a:35:a5:5a:90:2a:63:ee:04:ff:49:
1b:31:bc:d0:a9:d6:0c:da:64:86:b7:0b:cc:20:17:
d7:30:51:58:29:3e:6c:73:98:16:2a:b0:3e:ab:db:
1d:a0:83:f0:04:5d:7e:03:c2:3a:55:c2:ec:c6:0e:
70:0e:03:66:ee:18:fa:46:9e:32:3b:68:7c:b5:38:
3d:3c:d1:8b:13:96:4f:1a:fa:9e:89:43:64:81:1b:
b8:64:e1:bf:a3:a0:28:51:52:df:09:50:e2:e8:60:
7f:54:a1:75:84:09:47:13:6b:a7:54:8f:5f:52:af:
63:f5:b6:81:36:73:16:50:2e:92:2d:95:ae:dc:62:
6f:e0:01:db:cb:bf:04:36:04:8c:d1:f6:87:ac:fc:
19:50:b2:f3:ba:33:f6:1f:dd:8a:df:76:71:e0:0f:
d9:fa:fe:e9:2c:42:24:a9:6c:05:45:c3:23:87:c9:
bc:33:04:3b:e0:3e:62:06:5a:a1:a6:57:52:69:5c:
99:aa:7b:23:3c:e7:3e:da:c0:40:2f:87:1c:8e:a6:
86:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:54:34:93:BA:AE:D1:EF:0F:DF:2D:D0:39:DE:1A:D2:CD:13:61:C6
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/slQ0k7qu0e8P3y3QOd4a0s0TYcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.128.0/22
Signature Algorithm: sha256WithRSAEncryption
32:65:79:c8:c7:a0:09:81:08:f5:9d:6b:f4:b2:bb:3c:f6:ec:
c3:e4:d1:56:2a:02:8d:cf:24:5e:8c:62:28:1f:fa:b3:5e:d5:
1d:84:03:7b:00:73:35:9f:3f:2c:5e:f5:6c:be:51:d5:27:2d:
aa:05:9d:c3:b9:a7:cc:c2:42:b3:c9:a8:d0:98:eb:e9:07:b1:
ff:d1:b8:6f:51:cb:d0:ba:33:0e:53:3a:43:e6:d3:dd:a5:bb:
84:2c:ea:9d:4b:b4:ac:b2:0b:b9:a0:84:e6:21:d2:79:3c:85:
90:85:3b:90:3b:46:ea:9e:a0:36:74:70:fc:54:c3:9a:55:fd:
1f:1b:e2:ad:86:4c:6b:a7:45:00:ab:c2:1f:19:4c:b2:81:88:
1b:0a:7f:d3:60:6e:ad:e3:fa:f4:02:aa:7b:f6:91:3c:ea:95:
64:cf:05:a0:9d:35:e3:eb:3d:8e:b4:2e:1d:7e:cb:63:66:c4:
2a:8b:85:99:3f:0d:0d:a6:60:f6:85:63:84:5e:a0:d7:e0:33:
3d:31:55:ca:77:bd:85:20:da:f6:b7:87:ff:e0:6e:ef:a0:c5:
3e:9b:bd:42:4a:dc:83:26:e8:03:11:6a:26:f1:cf:67:57:91:
5d:29:2e:a2:32:86:49:d1:9e:6d:c3:64:0c:a6:28:77:b8:4c:
84:95:02:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:51 2023 by rpki-client on console-fra.rpki-client.org