Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/6dErnupBrUJUua2LOj-AKnxi0P0.roa
File: 6dErnupBrUJUua2LOj-AKnxi0P0.roa (raw, json)
Hash identifier: ZIpuSjHrKx4nDaRAk/1WhGbIadtaO1EaQCpQ6DpQZkI=
Subject key identifier: E9:D1:2B:9E:EA:41:AD:42:54:B9:AD:8B:3A:3F:80:2A:7C:62:D0:FD
Certificate issuer: /CN=9e459aa4602bffa2d2650ba66818458c89fc4582
Certificate serial: 1A5FEF52
Authority key identifier: 9E:45:9A:A4:60:2B:FF:A2:D2:65:0B:A6:68:18:45:8C:89:FC:45:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkWapGAr_6LSZQumaBhFjIn8RYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/6dErnupBrUJUua2LOj-AKnxi0P0.roa
Signing time: Thu 26 May 2022 09:41:14 +0000
ROA not before: Thu 26 May 2022 09:41:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39205
IP address blocks: 84.247.127.0/24 maxlen: 24
188.240.8.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 442494802 (0x1a5fef52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e459aa4602bffa2d2650ba66818458c89fc4582
Validity
Not Before: May 26 09:41:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9d12b9eea41ad4254b9ad8b3a3f802a7c62d0fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:54:a5:16:37:17:02:9f:95:d1:08:96:2f:4d:
c0:62:65:7c:28:c0:4e:ec:3b:16:e9:05:24:30:95:
8e:8f:27:fb:0c:4b:f7:bc:f1:70:b1:1e:fc:78:8b:
5d:c5:c6:e2:9a:7f:87:52:cd:8f:0d:2e:c9:4e:61:
c6:4c:17:39:50:91:40:a2:8e:6d:82:19:c6:19:98:
9c:bb:9d:ce:9f:74:1a:18:19:b5:92:35:40:1f:8e:
07:08:b7:5c:97:58:59:72:cb:19:3e:94:02:b9:ce:
05:71:16:4b:39:41:31:0d:de:02:38:46:29:2a:99:
29:54:20:ff:17:0a:57:4a:6d:91:ad:b1:69:2f:a7:
9a:b2:85:d6:03:f3:36:d2:a6:82:88:be:03:9a:8c:
d6:21:dd:6c:b8:c2:b1:96:a4:4a:52:f8:0d:8d:c6:
43:2a:f4:92:36:54:3b:85:57:7f:15:59:87:45:55:
ef:db:1e:fa:70:35:00:23:b0:eb:bc:af:20:d4:12:
51:7c:27:e2:66:67:57:b5:17:6f:42:53:f9:9b:eb:
19:93:ff:6a:1d:4c:3f:b0:78:4e:be:73:a6:ef:9c:
cb:d0:96:3d:75:3a:ac:63:a3:db:92:67:e6:fd:d0:
4c:11:83:88:fe:8e:ea:aa:01:3d:96:a6:bc:e6:c3:
ce:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D1:2B:9E:EA:41:AD:42:54:B9:AD:8B:3A:3F:80:2A:7C:62:D0:FD
X509v3 Authority Key Identifier:
keyid:9E:45:9A:A4:60:2B:FF:A2:D2:65:0B:A6:68:18:45:8C:89:FC:45:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkWapGAr_6LSZQumaBhFjIn8RYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/6dErnupBrUJUua2LOj-AKnxi0P0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/nkWapGAr_6LSZQumaBhFjIn8RYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.127.0/24
188.240.8.0/23
Signature Algorithm: sha256WithRSAEncryption
24:bc:0f:d3:c5:50:67:8c:fb:14:ac:96:42:13:3b:36:67:de:
bf:0f:60:be:4c:b2:3e:ec:41:9d:79:93:0a:81:72:3f:c0:2d:
28:a6:55:f7:39:d3:37:18:8b:68:d2:35:33:44:4a:31:03:af:
c4:ed:76:8e:ca:c5:7f:83:bd:5e:f9:98:1a:b6:df:e5:ec:72:
c9:22:6a:01:1a:8a:53:0f:6f:e2:97:2b:7c:2b:23:18:85:8e:
f5:d8:8d:b9:be:bd:41:37:fb:4a:6f:1b:d2:dd:16:7c:76:1e:
96:35:3d:be:15:ed:12:98:a4:8e:b1:2e:04:f3:14:7d:db:39:
e2:e4:dc:80:88:08:b5:a5:51:79:02:f6:11:2e:da:4c:6d:b8:
06:dc:5d:7c:43:76:6c:cb:26:e5:7c:37:8e:cd:44:3a:98:1e:
c2:e9:26:27:84:6b:d7:ef:9b:4a:5c:a2:1a:19:87:ad:0f:ab:
03:aa:63:69:65:9d:8b:b3:ab:29:35:ba:d0:05:e2:54:42:58:
64:8b:0e:3d:c8:1d:06:4b:09:ec:71:46:37:3c:cc:a2:66:16:
8e:29:f3:9d:a5:d8:d3:87:90:5a:a3:91:12:82:3a:2c:97:6b:
70:ad:34:88:92:fc:b5:c3:c3:aa:cc:79:41:c1:51:e5:03:06:
2b:7d:59:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:29 2024 by rpki-client on console-fra.rpki-client.org