Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/buuTK__F1y953qKFJXBcXkPDamc.roa
File: buuTK__F1y953qKFJXBcXkPDamc.roa (raw, json)
Hash identifier: wEhOuqDDeTWcgSGNib0tg0UP+MB+kKh9Ub2ncn24v8c=
Subject key identifier: 6E:EB:93:2B:FF:C5:D7:2F:79:DE:A2:85:25:70:5C:5E:43:C3:6A:67
Certificate issuer: /CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047
Certificate serial: 0A0079E3
Authority key identifier: 84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/buuTK__F1y953qKFJXBcXkPDamc.roa
Signing time: Thu 30 Jun 2022 19:53:02 +0000
ROA not before: Thu 30 Jun 2022 19:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12130
IP address blocks: 109.71.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167803363 (0xa0079e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84abf0c981701aba97e4fcd0bed4e4cdb8692047
Validity
Not Before: Jun 30 19:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6eeb932bffc5d72f79dea28525705c5e43c36a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:41:f9:f8:1b:f8:35:b2:26:4c:3b:70:c1:5b:
0e:f7:87:8c:e5:c4:53:e2:ef:a0:fe:e7:59:76:23:
5c:4a:91:74:43:f0:3e:65:50:76:f3:49:c6:af:c4:
9e:77:92:5f:81:50:2f:9c:5c:38:0d:17:24:89:9e:
28:00:3d:02:cf:f6:c9:98:8b:ad:03:bd:e1:82:3e:
ea:97:cc:0e:d2:e5:08:77:2e:b6:a2:07:14:52:4b:
c4:ec:82:39:7c:ce:23:d9:a9:79:38:43:fc:20:46:
2a:9d:b7:ec:f9:19:35:d9:eb:80:c3:07:f3:56:b5:
30:50:32:c7:71:b7:f2:d1:14:71:f2:2d:01:b7:8f:
f7:e3:f4:2c:5f:36:87:22:92:19:ca:2f:98:de:76:
77:4a:0f:3a:d5:8f:b0:70:7b:47:5f:a6:e8:5e:62:
e2:57:ad:f6:f9:d4:6f:d5:35:3d:9a:a1:9e:6a:64:
cb:ff:e0:6c:28:92:6d:61:71:c7:df:7e:67:56:ee:
0e:b5:e1:e5:93:80:de:b6:3e:9c:57:ff:2a:10:ac:
cf:6d:78:e2:4c:5d:05:93:c7:1d:c1:5d:2e:6f:94:
21:80:77:42:ec:46:08:05:b8:35:50:8e:f4:30:90:
41:ad:31:9d:97:d1:ac:75:3b:9d:57:b9:e4:a3:dd:
ce:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:EB:93:2B:FF:C5:D7:2F:79:DE:A2:85:25:70:5C:5E:43:C3:6A:67
X509v3 Authority Key Identifier:
keyid:84:AB:F0:C9:81:70:1A:BA:97:E4:FC:D0:BE:D4:E4:CD:B8:69:20:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKvwyYFwGrqX5PzQvtTkzbhpIEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/buuTK__F1y953qKFJXBcXkPDamc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9952c8-2d40-41e2-ba70-61bc7ecc485c/1/hKvwyYFwGrqX5PzQvtTkzbhpIEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.152.0/22
Signature Algorithm: sha256WithRSAEncryption
28:c7:0a:2e:c9:0f:62:33:80:5f:85:d2:4b:a2:16:b8:06:30:
f2:d8:2a:e4:10:c6:93:d2:13:6e:a8:8c:1b:22:ac:5c:a8:d3:
4e:6f:22:84:97:93:05:b1:ce:b3:37:d2:af:c0:c6:de:a1:17:
99:4e:89:af:e8:59:2b:c9:d8:6f:9e:27:53:6f:d1:59:df:d1:
bd:e2:f3:73:2a:7c:31:30:ed:a0:a2:6a:98:da:19:4a:71:d8:
ea:c3:e0:e5:1a:3d:14:ba:9d:17:68:91:0a:6f:61:56:09:93:
05:a1:ce:a2:bf:66:c3:54:a8:ed:14:2e:6e:c5:f8:b9:af:ac:
b7:cb:7f:9e:6a:77:e6:e4:bf:d5:37:02:20:2f:2a:cf:0e:12:
db:a1:f9:88:8e:89:db:22:ba:42:71:b4:c5:5e:26:20:3f:1c:
72:53:5f:72:7b:99:d4:27:9a:28:9b:d8:48:9d:1f:a5:3f:8c:
c5:45:5d:3f:1c:fc:5e:88:f6:4f:52:50:7b:39:6d:bb:69:d4:
4f:8c:bf:40:c8:0e:19:bb:79:24:b7:d5:c8:83:e3:25:f7:1b:
4c:99:cf:3b:3a:54:56:2c:72:72:ed:f0:4f:a2:96:52:71:8e:
f8:36:48:e5:0e:26:f2:2e:84:2b:a0:ca:d7:fd:5d:34:70:74:
17:32:62:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:07 2024 by rpki-client on console-fra.rpki-client.org