Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/0b938f-189b-4a7d-8c36-2a3fa61c3dc5/1/8Wh3ZC5UqVTNnDakVIejDaCdOt8.roa
File: 8Wh3ZC5UqVTNnDakVIejDaCdOt8.roa (raw, json)
Hash identifier: qGnzHDojlJQ28jjRdxnMEu1KO9PFsn3BZ62muFimyb0=
Subject key identifier: F1:68:77:64:2E:54:A9:54:CD:9C:36:A4:54:87:A3:0D:A0:9D:3A:DF
Certificate issuer: /CN=9fac2fdddabf20ea449870e1dcc0915e60148346
Certificate serial: 09848802
Authority key identifier: 9F:AC:2F:DD:DA:BF:20:EA:44:98:70:E1:DC:C0:91:5E:60:14:83:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n6wv3dq_IOpEmHDh3MCRXmAUg0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/0b938f-189b-4a7d-8c36-2a3fa61c3dc5/1/8Wh3ZC5UqVTNnDakVIejDaCdOt8.roa
Signing time: Sat 01 Jan 2022 15:03:49 +0000
ROA not before: Sat 01 Jan 2022 15:03:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24634
IP address blocks: 77.246.64.0/20 maxlen: 24
92.242.168.0/22 maxlen: 24
2a0d:b340::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159680514 (0x9848802)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fac2fdddabf20ea449870e1dcc0915e60148346
Validity
Not Before: Jan 1 15:03:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f16877642e54a954cd9c36a45487a30da09d3adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:25:0a:dd:3c:e1:67:82:a0:18:48:eb:b7:45:
65:3d:c6:d7:47:bc:6b:73:cf:c1:67:07:61:7d:d7:
f9:79:74:b0:39:5e:47:44:21:45:b1:bd:04:ef:85:
a2:fd:16:68:8a:c8:34:23:1f:92:f0:77:6f:c8:b4:
86:b4:60:d4:f4:e0:25:d7:b4:2c:d4:bf:50:99:80:
61:4d:d9:8b:5b:55:b3:73:51:6c:76:36:1a:d3:7a:
af:18:64:01:55:e1:b7:f1:6d:8b:3a:c7:90:bc:98:
75:52:b4:14:9c:6a:d2:58:2c:29:49:37:ba:eb:7c:
7c:4a:0c:7d:aa:37:de:88:89:50:92:d7:88:f0:6a:
9c:62:07:6a:7f:07:15:b5:c7:dd:b0:94:b6:dd:ee:
c0:bf:9c:61:d8:b1:c0:66:36:81:0f:63:53:33:4f:
fb:11:a7:1a:f5:ce:cd:5c:3c:87:a8:6c:7d:19:03:
6f:ff:44:f6:fd:06:30:17:00:fd:f7:43:88:00:2e:
f1:ee:25:8b:1a:bd:c5:b1:de:83:46:df:01:94:2d:
d7:7e:1e:86:44:59:86:20:0c:46:68:f2:8e:f4:40:
f9:11:34:51:11:c5:9f:5a:d6:ac:bd:35:7c:b0:d4:
f5:3d:b8:c2:33:61:31:ac:5a:e2:61:c7:ee:fa:d9:
a9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:68:77:64:2E:54:A9:54:CD:9C:36:A4:54:87:A3:0D:A0:9D:3A:DF
X509v3 Authority Key Identifier:
keyid:9F:AC:2F:DD:DA:BF:20:EA:44:98:70:E1:DC:C0:91:5E:60:14:83:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n6wv3dq_IOpEmHDh3MCRXmAUg0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/0b938f-189b-4a7d-8c36-2a3fa61c3dc5/1/8Wh3ZC5UqVTNnDakVIejDaCdOt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/0b938f-189b-4a7d-8c36-2a3fa61c3dc5/1/n6wv3dq_IOpEmHDh3MCRXmAUg0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.64.0/20
92.242.168.0/22
IPv6:
2a0d:b340::/29
Signature Algorithm: sha256WithRSAEncryption
57:0c:85:18:87:63:3d:1b:10:84:89:82:24:d0:0a:88:9a:cb:
c8:44:a0:57:81:43:1a:88:73:88:e7:67:bd:0d:24:a9:b1:48:
29:f3:e8:f0:d2:bd:48:fc:31:7a:c6:df:58:9e:57:de:d6:a0:
51:35:d4:f5:5f:ae:6e:6f:0c:55:28:db:0e:a6:45:10:03:8e:
87:f0:9f:aa:c3:2a:21:d5:40:90:a4:4f:cb:45:16:48:ea:e2:
2c:f9:5a:be:09:e3:91:22:8c:b4:43:76:50:48:4f:9c:cb:e5:
da:12:d5:fa:07:3d:fd:1b:f9:a5:29:e0:39:a9:b3:0a:ae:20:
94:a5:07:6f:f5:ac:de:44:15:f8:21:4e:18:67:16:62:18:dc:
4f:fd:be:79:ca:76:e6:21:25:c0:43:91:29:c3:86:ff:60:c9:
fb:c3:ee:b3:8a:c2:14:09:20:c9:df:9d:0c:d4:21:36:99:ad:
6e:aa:14:82:6f:18:9b:8a:cc:8e:b2:54:70:f5:75:96:83:b4:
44:c9:2e:51:94:ac:8b:bf:b3:90:37:06:35:c8:12:bc:96:90:
ce:c2:2a:da:5f:38:a9:06:18:8e:f1:7b:68:93:90:d3:f4:d7:
2f:f4:4b:80:5c:83:b3:3b:a7:2a:80:f7:a8:de:e4:93:6e:15:
a2:b0:29:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:49 2024 by rpki-client on console-ams.rpki-client.org