Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/566246-ca2a-411b-aaf2-c682184d704d/1/cmttebAgXkx7HC-6XDaZ1KtKh3Q.roa
File: cmttebAgXkx7HC-6XDaZ1KtKh3Q.roa (raw, json)
Hash identifier: b9s1RhUDrQCpwf2z1hCjAcLQ+O31h1rEwmLFiQSAu3I=
Subject key identifier: 72:6B:6D:79:B0:20:5E:4C:7B:1C:2F:BA:5C:36:99:D4:AB:4A:87:74
Certificate issuer: /CN=7c722f85b31e765d8f77b692b5d2a84c111d805d
Certificate serial: 01856D0A82C90DAEBD56B99A0BFDEDF5D48A
Authority key identifier: 7C:72:2F:85:B3:1E:76:5D:8F:77:B6:92:B5:D2:A8:4C:11:1D:80:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fHIvhbMedl2Pd7aStdKoTBEdgF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/566246-ca2a-411b-aaf2-c682184d704d/1/cmttebAgXkx7HC-6XDaZ1KtKh3Q.roa
Signing time: Sun 01 Jan 2023 11:14:43 +0000
ROA not before: Sun 01 Jan 2023 11:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50673
IP address blocks: 84.246.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:82:c9:0d:ae:bd:56:b9:9a:0b:fd:ed:f5:d4:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c722f85b31e765d8f77b692b5d2a84c111d805d
Validity
Not Before: Jan 1 11:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=726b6d79b0205e4c7b1c2fba5c3699d4ab4a8774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7b:ec:1d:36:63:69:f3:1b:14:27:49:6c:34:
01:cb:52:54:4b:7f:e5:11:0a:e5:54:47:44:fa:24:
89:ff:7b:a9:92:63:89:dd:3c:41:d9:93:5e:93:69:
fd:8e:5a:97:7c:59:99:d6:1d:a7:71:fa:23:38:ed:
ca:4c:e3:80:c2:cd:3c:4e:db:c9:04:e7:36:2d:5b:
98:39:5c:c4:f2:6e:36:1a:2d:16:16:2a:7d:60:34:
9d:65:be:ff:0f:df:d3:3b:23:69:20:cf:3d:ab:98:
23:35:ba:5f:c7:51:d7:0d:bc:5c:c8:7e:41:22:0d:
30:a5:e9:58:3e:a5:39:e0:03:1c:f5:54:ba:23:9a:
df:10:87:f7:d1:70:43:a9:06:22:b4:ee:ec:55:ca:
fb:ee:ca:a7:b2:68:55:2c:81:8e:50:d6:ab:b5:ec:
57:7e:d7:24:71:fa:dc:4b:57:6c:4d:d0:42:d4:58:
4e:9b:b1:29:ea:7e:b5:75:6b:70:37:23:b5:13:4b:
cd:75:de:05:e1:f8:87:62:e7:4a:b0:df:bc:55:2a:
ac:8b:46:c8:ec:12:f2:b7:28:95:71:3f:f4:e6:87:
69:04:e0:b4:f6:c0:d1:bd:d9:78:89:65:4c:db:25:
f1:2e:8b:84:a1:29:02:9c:db:e6:20:30:da:94:b3:
9a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:6B:6D:79:B0:20:5E:4C:7B:1C:2F:BA:5C:36:99:D4:AB:4A:87:74
X509v3 Authority Key Identifier:
keyid:7C:72:2F:85:B3:1E:76:5D:8F:77:B6:92:B5:D2:A8:4C:11:1D:80:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fHIvhbMedl2Pd7aStdKoTBEdgF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/566246-ca2a-411b-aaf2-c682184d704d/1/cmttebAgXkx7HC-6XDaZ1KtKh3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/566246-ca2a-411b-aaf2-c682184d704d/1/fHIvhbMedl2Pd7aStdKoTBEdgF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.246.80.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:02:7c:7c:8c:b5:7c:3d:a1:f5:5b:2e:50:30:28:3d:9e:84:
dc:9e:90:5d:2a:f8:cf:59:63:55:10:e2:61:f9:e8:f7:22:3b:
39:a4:c6:82:23:e5:07:14:39:dd:13:fe:39:b6:e5:74:ef:e1:
63:39:2f:cb:af:b7:18:89:c4:bd:70:5b:14:e4:0a:fd:e0:9f:
30:65:3d:b7:5c:dd:77:fd:4f:f0:52:01:b9:ec:a5:8f:be:e2:
2a:4b:86:72:71:77:6b:4f:a1:f8:1e:15:99:f6:61:30:ba:56:
b6:fd:c9:47:29:13:b1:18:1d:52:38:c5:e6:bd:f8:59:36:99:
fc:a7:9a:a8:ff:9f:cc:cf:b0:f2:38:e0:cb:8c:fe:16:34:8e:
76:fc:0c:37:c2:35:5f:6f:57:7f:47:00:f2:76:1b:1c:cf:7c:
99:4a:bd:4a:4a:1c:3d:bc:43:e0:54:77:27:4e:bd:a9:35:64:
bb:6a:82:ae:55:3a:aa:7a:f4:c2:c7:62:e0:e7:79:f4:28:45:
84:62:92:6e:d0:a7:a8:9b:74:9a:e0:f0:01:9d:2b:09:ff:59:
9f:f0:6f:b0:14:34:97:82:55:e6:3b:c3:92:32:2b:81:cb:92:
62:65:78:7e:d5:b7:d3:34:b2:43:d0:6b:90:84:ca:3d:55:8e:
71:88:47:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:19 2025 by rpki-client