Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/6hYz8KmuTFU9zoHvgRkSSUazc3M.roa
File: 6hYz8KmuTFU9zoHvgRkSSUazc3M.roa (raw, json)
Hash identifier: nu77/OqGjjlLWWGA5tCHHKjTi4jdz+/j3qBQb9s3/mI=
Subject key identifier: EA:16:33:F0:A9:AE:4C:55:3D:CE:81:EF:81:19:12:49:46:B3:73:73
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 0184CD6BBDCA6B1EDB0C5583DFE4D5130333
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/6hYz8KmuTFU9zoHvgRkSSUazc3M.roa
Signing time: Thu 01 Dec 2022 11:21:40 +0000
ROA not before: Thu 01 Dec 2022 11:21:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30942
IP address blocks: 84.2.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cd:6b:bd:ca:6b:1e:db:0c:55:83:df:e4:d5:13:03:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Dec 1 11:21:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea1633f0a9ae4c553dce81ef8119124946b37373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:66:4b:af:98:a7:c8:64:5d:9f:8e:8b:7e:7d:
ac:2d:80:a6:53:53:9e:9b:74:04:44:2b:b8:68:2b:
d9:6d:5c:33:74:27:80:b4:5e:2c:9c:ea:4c:84:f1:
ab:c9:3c:cb:23:35:f9:fd:ae:af:c2:7d:5b:47:09:
ea:18:84:b0:4a:1b:80:ea:4e:1a:35:5f:4d:30:c5:
cd:41:3b:31:67:4a:10:21:d3:db:57:59:a8:d1:f3:
2c:c9:8d:a3:d0:e5:90:99:0a:ba:86:c7:17:47:97:
70:cb:f7:9d:f8:41:dc:37:05:9c:44:98:c3:e3:f6:
97:eb:24:6a:19:d5:99:3e:b5:fc:91:39:95:5e:ac:
10:29:23:ea:56:95:76:9e:34:64:57:73:4e:00:d0:
38:81:08:09:27:67:44:42:d0:08:df:f0:d3:40:f1:
42:90:02:47:0f:d9:5a:2d:66:3a:26:31:5d:15:27:
b5:4b:6d:e0:33:42:34:2b:34:1a:8b:15:46:ee:b4:
9f:b7:24:07:f4:3e:f3:38:da:0e:ea:d8:0c:5b:13:
e6:df:be:d8:d2:93:4a:19:61:ed:cf:92:fa:9d:86:
fa:63:07:b5:2a:1e:f4:06:ff:0b:a9:c3:2b:76:6c:
ce:d4:77:a6:42:3a:7c:1a:3a:24:32:15:72:95:c0:
b1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:16:33:F0:A9:AE:4C:55:3D:CE:81:EF:81:19:12:49:46:B3:73:73
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/6hYz8KmuTFU9zoHvgRkSSUazc3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.2.79.0/24
Signature Algorithm: sha256WithRSAEncryption
59:00:8d:5c:a5:01:bd:25:c2:c9:d6:56:63:41:18:48:47:54:
10:9a:b9:35:ac:3c:e7:42:0d:05:c7:4b:2f:21:e0:85:74:8f:
d1:14:bd:ed:63:2d:f6:69:c8:9f:ab:be:4d:c0:e7:57:58:ab:
e9:3a:7f:ca:f2:86:35:49:1d:f1:ee:32:ca:42:40:69:9c:69:
08:28:42:68:e1:94:07:b5:63:79:c0:dd:76:73:ec:e6:47:e6:
bc:01:2b:0b:a6:ac:01:2f:88:72:92:c0:7c:1b:74:7a:77:9e:
3d:35:7d:7a:83:ab:5e:ae:44:d6:ba:a5:04:21:ca:8d:3f:cd:
e3:72:68:40:c7:30:b2:91:d5:70:85:f9:1f:77:c0:fe:6f:dc:
9f:32:8d:63:49:ac:ef:b6:2b:16:96:30:a0:1f:10:11:f8:1d:
b3:4b:25:59:30:da:e5:b6:d6:dc:35:35:98:ea:42:be:53:85:
86:05:64:b8:a2:9e:8e:c9:46:81:a3:1c:a3:d8:25:a2:75:41:
88:5c:98:1e:31:45:c5:e5:05:67:2e:89:22:26:68:d0:a1:76:
6f:16:6a:0f:9a:c0:55:d0:f8:0d:be:85:5f:1c:2c:de:02:51:
b2:40:c0:8f:55:f9:e5:e2:ac:9a:28:db:0c:fe:d7:be:81:bb:
92:56:e3:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:13 2024 by rpki-client on console-ams.rpki-client.org