Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/iYrOF-ry3EcFxkhQg5dXVMvUqI4.roa
File: iYrOF-ry3EcFxkhQg5dXVMvUqI4.roa (raw, json)
Hash identifier: eKxqm9uFF08CRywYSzc0lmc1AADjCRR593KezKajElU=
Subject key identifier: 89:8A:CE:17:EA:F2:DC:47:05:C6:48:50:83:97:57:54:CB:D4:A8:8E
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0833CF89
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/iYrOF-ry3EcFxkhQg5dXVMvUqI4.roa
Signing time: Mon 07 Feb 2022 19:57:29 +0000
ROA not before: Mon 07 Feb 2022 19:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24875
IP address blocks: 84.54.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137613193 (0x833cf89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Feb 7 19:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=898ace17eaf2dc4705c6485083975754cbd4a88e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9f:63:3c:9f:ab:03:d7:de:41:c5:d2:0f:e6:
6c:e3:ce:ea:05:53:89:52:55:15:f7:2b:32:9e:87:
1a:c9:6c:e0:73:64:a4:f2:e2:41:06:7a:09:63:e6:
da:c1:6b:ea:16:4d:75:bd:2e:a1:2f:06:60:d8:1f:
87:b9:08:6d:2b:8d:5c:78:f6:f9:d1:08:b2:dd:d6:
d4:73:7c:50:41:47:c2:8b:3d:9e:37:67:91:07:06:
0a:93:60:48:62:13:8e:da:29:5d:01:3d:58:7e:4c:
d3:40:ed:99:39:05:6d:ad:3b:8e:71:65:71:26:19:
a5:44:de:03:76:da:64:a0:6e:11:b3:26:5d:03:ee:
b5:ed:3d:75:cf:05:4f:73:e1:e9:26:09:a3:67:0e:
67:ea:35:21:6f:4f:60:8f:88:34:d0:2d:5c:90:34:
e5:dd:4d:35:10:99:9e:a1:4f:1b:ef:19:7e:eb:09:
c4:2f:2d:78:88:30:55:90:92:99:03:09:05:de:ef:
51:83:ed:b0:83:33:64:b7:07:1e:69:22:e6:5d:c4:
02:6f:99:88:d8:bd:f7:40:4f:6f:4f:32:90:b2:24:
0b:ed:c6:a8:32:c1:3d:49:73:2d:79:9c:18:f8:b3:
d4:96:94:2b:4b:70:6f:3f:88:13:7b:fb:ad:53:3d:
54:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:8A:CE:17:EA:F2:DC:47:05:C6:48:50:83:97:57:54:CB:D4:A8:8E
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/iYrOF-ry3EcFxkhQg5dXVMvUqI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.37.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:fb:6c:45:1d:36:3d:03:89:25:7f:55:08:d9:f5:b2:d3:64:
6f:e3:a8:c2:82:9b:db:f8:4a:91:af:d8:dd:cc:bc:49:db:96:
71:1c:73:1d:9d:77:bd:a2:f8:b1:ea:4c:62:89:c2:b4:2d:8b:
64:db:9f:e4:46:98:5b:06:70:d8:09:60:cb:c4:24:b0:70:04:
c5:84:e8:69:86:da:de:82:ad:2f:45:3b:e8:fc:b7:c9:dc:5f:
28:92:21:7f:eb:57:8f:fb:1d:d9:2f:56:a4:ac:79:76:c6:89:
49:f1:66:11:92:20:ce:44:95:e2:b0:ee:35:b3:5d:12:63:c8:
41:02:b1:56:0a:e8:b0:28:f6:51:ba:84:44:99:ec:2e:94:4e:
a2:e5:a2:c0:83:50:64:20:37:b1:09:f6:33:12:c0:a4:dc:80:
0a:21:f1:3d:de:4b:1d:7c:f8:47:d0:42:e2:67:8b:00:28:09:
38:a3:f3:d0:42:fb:26:5b:15:ef:0d:49:35:cc:4a:73:33:6e:
15:4a:14:87:42:28:98:52:4e:21:84:dc:f2:b4:58:cf:c2:df:
24:23:f2:9b:9a:40:aa:83:0a:dd:96:94:d1:8e:8b:34:57:23:
2b:72:64:6d:91:b7:e0:fe:2f:08:3c:55:b8:51:05:e6:d0:0c:
6a:a2:1f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org