Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/xRa6jzM2zMHgCjnVGObQLD2lR8M.roa
File: xRa6jzM2zMHgCjnVGObQLD2lR8M.roa (raw, json)
Hash identifier: 4YgrbdCd/eH2jOqE5tgDhVwAt/2d+isbrftJkItJYpk=
Subject key identifier: C5:16:BA:8F:33:36:CC:C1:E0:0A:39:D5:18:E6:D0:2C:3D:A5:47:C3
Certificate issuer: /CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Certificate serial: 018366AD668EA8D30DD44FCFD0AF648074E1
Authority key identifier: BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/xRa6jzM2zMHgCjnVGObQLD2lR8M.roa
Signing time: Thu 22 Sep 2022 19:29:43 +0000
ROA not before: Thu 22 Sep 2022 19:29:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45021
IP address blocks: 86.104.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:66:ad:66:8e:a8:d3:0d:d4:4f:cf:d0:af:64:80:74:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Validity
Not Before: Sep 22 19:29:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c516ba8f3336ccc1e00a39d518e6d02c3da547c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:63:2c:50:3c:c2:40:5b:cf:b1:c0:7c:e7:d9:
c5:89:54:86:5c:1a:9d:7a:de:58:2c:07:02:8f:d7:
7d:b7:a0:68:12:7c:6b:4f:05:19:a0:14:ff:27:7c:
15:7a:de:57:83:d7:cb:c5:ef:68:f4:fb:f3:fb:ef:
cb:99:f9:c0:01:c1:38:9d:5d:a5:67:18:34:7e:d5:
65:7b:57:0e:d0:51:be:d5:1a:1a:14:e7:50:62:f9:
69:d9:59:d7:fd:f0:ac:fc:be:7c:1e:c5:55:43:b6:
e7:af:91:7a:21:e8:cb:02:c0:1c:61:32:01:7a:e6:
84:3b:ad:ef:e7:33:68:2c:f1:52:a6:cc:7c:85:1a:
8c:cd:b8:91:01:ac:4a:b7:a7:30:c8:ca:32:b0:7a:
98:6a:ce:f1:ef:e6:de:0e:7a:78:9b:28:fc:0a:5e:
8b:f1:60:62:fc:73:4f:73:f3:b5:ce:ef:60:92:31:
12:a1:27:8d:55:f5:fe:4c:f8:b6:98:02:09:a3:cf:
94:d1:0c:b4:bf:ca:24:d4:12:33:0b:e4:f2:24:ab:
9b:b8:79:de:c5:4b:08:09:70:9f:6b:3e:a6:1d:e0:
8f:10:ef:e6:6f:7f:f6:50:96:32:7a:ee:a3:ee:a2:
3e:2d:ce:83:6b:35:54:0d:82:8d:c1:20:de:ef:04:
8a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:16:BA:8F:33:36:CC:C1:E0:0A:39:D5:18:E6:D0:2C:3D:A5:47:C3
X509v3 Authority Key Identifier:
keyid:BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/xRa6jzM2zMHgCjnVGObQLD2lR8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/voSufAUDrEUJNMn2z_OaFTelEm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.228.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:79:4e:24:8f:41:50:56:6f:55:9b:19:5c:a9:b4:41:fb:bc:
fb:b6:ab:64:59:b1:3b:f3:3e:1a:96:6b:7c:d2:c8:51:02:24:
0e:bc:54:54:d1:2e:ab:68:48:df:9f:f7:78:6c:c0:45:99:c0:
0c:9a:95:20:54:40:04:ce:23:3a:24:16:f7:2d:11:db:8e:ce:
be:b6:4a:1a:79:65:7b:07:1e:49:ab:5b:89:a2:32:ae:35:c5:
48:e0:7a:71:60:57:c1:29:e4:34:cb:10:1d:89:31:2e:97:12:
de:0a:a0:04:b2:cb:d2:f6:98:fe:23:f9:c5:31:04:21:22:d0:
9a:cc:3e:e1:4c:19:67:06:62:53:3d:76:7a:31:a8:ac:fc:f2:
20:a9:03:0a:f2:09:57:a9:fd:ed:11:95:c7:f5:a8:c2:07:96:
24:91:be:ce:ad:0c:14:80:1f:18:0b:89:19:30:c0:8c:84:7d:
36:3b:59:08:2f:32:a9:7d:d7:ad:99:a5:7d:d8:e1:10:88:0f:
38:5c:ba:8a:a6:35:12:ed:09:81:ff:60:ae:5d:a9:a3:71:a4:
0a:3c:27:77:e1:ce:18:63:15:c4:1a:9d:a1:28:85:1a:d5:d3:
8f:63:6c:64:d9:82:9f:15:49:4f:48:e5:c4:8b:1c:47:75:67:
17:d9:9e:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org