Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/t92Vq1y8EPeJfvgTSOtgZiEb7kI.roa
File: t92Vq1y8EPeJfvgTSOtgZiEb7kI.roa (raw, json)
Hash identifier: I8/zNds3l2/GDhemUFjL+Z4QtYjt7xN/kkHFze2C6Aw=
Subject key identifier: B7:DD:95:AB:5C:BC:10:F7:89:7E:F8:13:48:EB:60:66:21:1B:EE:42
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184D2EC8D6F890C8E6497C75223A78C395B
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/t92Vq1y8EPeJfvgTSOtgZiEb7kI.roa
Signing time: Fri 02 Dec 2022 13:00:28 +0000
ROA not before: Fri 02 Dec 2022 13:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59642
IP address blocks: 84.32.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:ec:8d:6f:89:0c:8e:64:97:c7:52:23:a7:8c:39:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 2 13:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7dd95ab5cbc10f7897ef81348eb6066211bee42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:74:6e:b9:ba:c3:8c:b7:3d:ab:f3:00:a0:dc:
48:db:9c:6e:c3:86:35:ce:4c:2a:56:69:86:55:aa:
d0:83:b2:ab:e1:e3:01:d4:d1:89:c8:7d:bf:56:a3:
1a:54:58:73:e6:e4:44:2e:e1:94:a5:18:8f:76:0d:
74:ee:3b:74:2a:58:96:dc:fc:84:a0:35:a2:32:1b:
2e:40:c2:d8:86:64:10:69:b5:6c:21:60:aa:fa:24:
2f:53:a0:d4:63:98:d3:6f:ae:a8:f5:a1:45:3d:39:
9d:17:6c:7e:a4:c8:9a:db:da:b1:8c:34:3d:84:60:
53:9a:98:f3:fb:31:58:67:0e:ca:fb:32:3b:f4:b9:
28:33:25:0b:fc:07:c4:1e:fa:8a:cc:0a:c9:36:67:
0c:ce:5d:55:96:75:09:9f:a3:ee:66:4f:51:37:1c:
bc:8a:2f:06:1c:42:2b:b7:23:88:0d:0e:17:23:82:
d4:b2:00:15:bc:82:0c:cb:12:bd:44:a0:73:1c:30:
3d:c6:15:28:7e:af:09:d5:36:c6:1b:93:b9:56:72:
7e:02:7b:1c:9d:62:29:97:80:10:22:76:2c:68:67:
44:67:62:1f:d3:60:c9:5f:2b:36:6d:4f:aa:c2:7c:
d0:0d:5b:21:9d:71:02:ef:7f:bb:45:73:f8:6a:aa:
1c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:DD:95:AB:5C:BC:10:F7:89:7E:F8:13:48:EB:60:66:21:1B:EE:42
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/t92Vq1y8EPeJfvgTSOtgZiEb7kI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.184.0/22
Signature Algorithm: sha256WithRSAEncryption
65:e1:13:8c:dd:ec:11:7a:91:e5:66:74:07:0b:ad:ad:b5:91:
66:c8:0c:eb:f5:32:ed:b2:0f:a4:39:20:8d:fa:dd:be:7c:f5:
cc:fd:88:19:b2:ba:a4:56:bb:4d:99:17:e1:85:0e:86:6a:d6:
76:3a:bf:51:7e:c0:d8:1f:00:51:79:9d:03:21:24:3e:9c:4a:
8c:ce:c8:81:f0:1c:4b:fc:57:36:49:39:f0:c2:45:e6:05:6a:
dc:f1:c1:0c:70:4c:97:95:8c:dd:dc:82:90:bd:c0:45:cd:a8:
b8:b8:32:c6:99:38:46:40:86:40:b3:7f:cb:3f:2e:f6:90:d2:
38:ea:e0:54:d7:44:0c:ac:da:ef:71:f8:8a:b4:0d:55:f5:d8:
1e:25:33:7e:6c:f7:f0:e1:59:17:ad:97:a9:1c:93:73:a0:ca:
6a:52:55:44:8e:15:2e:14:68:89:c4:da:9b:1e:30:26:17:9a:
49:e6:25:c6:c8:e7:53:8f:7f:d5:a0:07:95:db:9c:f2:4d:fa:
77:31:15:17:a3:a8:76:87:fd:af:08:7c:5b:66:a5:51:e2:c2:
e0:dd:97:06:ff:c7:b6:00:82:6c:ea:89:60:72:6e:ea:ca:ea:
12:20:33:71:8e:51:35:4c:1d:69:90:8f:77:4b:7a:ac:ce:f4:
47:45:6d:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:34 2023 by rpki-client on console-ams.rpki-client.org