Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/b9mY_EtgfsjY3dKNxb4qgDkgxA0.roa
File: b9mY_EtgfsjY3dKNxb4qgDkgxA0.roa (raw, json)
Hash identifier: W2zlt6vg6fILJYNgxkGHTnJXXhUnbVyHV/sUNL930fc=
Subject key identifier: 6F:D9:98:FC:4B:60:7E:C8:D8:DD:D2:8D:C5:BE:2A:80:39:20:C4:0D
Certificate issuer: /CN=28927775b44db879e9f39c2977bdaed62a4ff24d
Certificate serial: 9C3C
Authority key identifier: 28:92:77:75:B4:4D:B8:79:E9:F3:9C:29:77:BD:AE:D6:2A:4F:F2:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJJ3dbRNuHnp85wpd72u1ipP8k0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/b9mY_EtgfsjY3dKNxb4qgDkgxA0.roa
Signing time: Thu 28 Apr 2022 12:03:13 +0000
ROA not before: Thu 28 Apr 2022 12:03:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12446
IP address blocks: 194.102.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39996 (0x9c3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28927775b44db879e9f39c2977bdaed62a4ff24d
Validity
Not Before: Apr 28 12:03:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fd998fc4b607ec8d8ddd28dc5be2a803920c40d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:71:62:ca:53:d4:8d:32:07:74:6e:6b:2d:9b:
37:21:26:a7:d9:52:70:93:16:ba:c1:41:3d:db:d9:
ea:b2:05:82:07:11:b6:ae:1f:74:39:52:b4:31:cc:
64:c2:e8:a1:65:b2:72:03:1d:df:3d:ad:f6:ac:37:
67:2d:c9:2a:42:dc:9c:57:59:49:85:d5:0e:7b:d7:
f8:bb:ff:31:cf:f1:15:e1:31:e7:7a:28:df:62:6e:
3a:42:6d:0b:dc:6b:2f:a4:f5:7b:a4:19:fb:73:00:
19:01:be:d6:70:e6:8e:29:42:8d:04:28:ea:79:9c:
c7:95:81:02:3b:f0:a1:41:31:8d:63:44:58:5c:b3:
fa:de:02:e3:3b:98:65:a6:d6:72:79:58:33:e5:9c:
4b:24:3a:db:af:b7:b4:8d:a9:58:55:05:d6:b7:a9:
a5:e1:1c:b9:89:4f:6a:1b:90:cd:a7:92:8e:70:0e:
a0:7f:a5:0c:00:fd:2e:80:5f:4a:9f:c0:29:25:3b:
4b:a5:10:7a:fa:e3:20:0b:4a:31:3c:b4:fb:b9:3c:
8d:42:8e:4a:0f:b9:21:bb:f8:31:76:88:cb:96:38:
a6:d2:5d:2e:b9:ee:3b:c7:f0:59:82:96:e1:e3:97:
b7:95:81:1a:81:15:3c:66:a7:41:b4:0e:a5:54:ac:
ee:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D9:98:FC:4B:60:7E:C8:D8:DD:D2:8D:C5:BE:2A:80:39:20:C4:0D
X509v3 Authority Key Identifier:
keyid:28:92:77:75:B4:4D:B8:79:E9:F3:9C:29:77:BD:AE:D6:2A:4F:F2:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJJ3dbRNuHnp85wpd72u1ipP8k0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/b9mY_EtgfsjY3dKNxb4qgDkgxA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/KJJ3dbRNuHnp85wpd72u1ipP8k0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.101.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:01:43:75:23:61:b0:a3:1a:75:9a:ba:b3:3c:28:0d:5e:15:
e1:51:ca:34:bb:fe:6e:31:9e:5e:63:8b:c9:d9:d2:96:d3:d0:
fe:68:77:99:91:c6:c2:2e:ca:e9:34:86:8e:dc:1f:91:a1:1d:
08:35:d4:2c:fd:56:f3:76:94:a5:a7:82:48:80:38:a4:78:b4:
61:77:f3:33:34:f3:3b:cc:63:97:5c:fe:6f:fe:ce:65:ae:5b:
9a:ee:e9:97:3d:52:4b:2c:8c:4c:f9:61:13:d8:ea:7f:3f:5f:
0a:10:17:82:c0:f6:06:79:6a:e0:8b:e9:26:6d:df:eb:63:a0:
58:2c:9f:60:c7:10:19:fa:52:f4:f3:ae:ab:a9:97:2a:59:91:
0c:bc:e3:34:33:5a:90:2e:11:61:63:32:a7:7d:41:e7:c8:d5:
83:a5:6b:df:2e:0a:36:be:ae:d3:4f:52:4b:4f:72:a6:43:f6:
8f:ec:a6:e8:01:a6:b9:13:ec:6e:0f:eb:2b:e4:3f:2d:18:1f:
90:9d:1c:37:b0:31:be:62:a1:71:c1:5b:c6:47:31:0f:32:a5:
7d:c4:6c:45:9f:92:f2:43:4a:d0:b8:96:50:4e:a5:37:23:62:
ef:f0:37:71:62:ec:04:51:a1:33:d8:8c:bd:84:6b:ba:36:10:
ba:d3:eb:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:21 2024 by rpki-client on console-fra.rpki-client.org