Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/9qN7ECJ-0gbxIVTWM8tYKhoK9jA.roa
File: 9qN7ECJ-0gbxIVTWM8tYKhoK9jA.roa (raw, json)
Hash identifier: xt/tjhXMdo/xaypMvvSnrEvxa0581QQUjDWbl8oEkT4=
Subject key identifier: F6:A3:7B:10:22:7E:D2:06:F1:21:54:D6:33:CB:58:2A:1A:0A:F6:30
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 1372CAD4
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/9qN7ECJ-0gbxIVTWM8tYKhoK9jA.roa
Signing time: Sat 01 Jan 2022 05:58:28 +0000
ROA not before: Sat 01 Jan 2022 05:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200682
IP address blocks: 84.207.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326290132 (0x1372cad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6a37b10227ed206f12154d633cb582a1a0af630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cb:7f:b7:ae:22:b7:50:bc:b5:4d:82:20:75:
9c:72:df:1d:48:ad:33:b4:be:68:84:61:39:a6:9b:
71:15:7a:59:c4:67:a2:25:c4:e1:db:40:b3:49:91:
a7:ab:56:5b:de:45:00:80:8a:6c:be:98:c7:bc:59:
ea:9d:41:0f:2a:9e:7e:90:11:36:5c:33:24:a4:1c:
a7:5d:a6:83:27:81:1e:60:40:9f:69:f7:cd:6f:cd:
a4:fe:58:1d:60:da:e9:53:1b:7d:50:d0:86:7a:b7:
a0:78:d3:84:09:55:af:6f:77:fe:be:f2:d8:cd:e2:
5d:1b:9e:58:80:e0:45:32:33:f2:ab:f8:bf:1a:66:
b0:cc:5f:c6:73:03:41:7d:d4:de:78:d5:38:27:ae:
dc:bd:e2:5d:b4:2f:fb:19:47:e0:2c:3f:f7:38:38:
7a:81:00:17:85:cd:e8:f4:1b:39:af:f3:ae:e5:17:
9c:a4:da:77:79:82:bf:9b:78:31:97:b1:56:f5:21:
c6:7f:30:e2:84:d7:24:ff:9a:b1:2d:13:d9:0e:61:
02:59:c1:bb:7e:71:23:50:f6:bb:26:b3:90:a5:c6:
6d:7f:08:93:99:9b:ba:3a:20:45:fe:62:8d:8d:af:
42:1f:51:d6:50:d1:ee:98:5d:fb:60:e6:4a:22:5a:
66:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A3:7B:10:22:7E:D2:06:F1:21:54:D6:33:CB:58:2A:1A:0A:F6:30
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/9qN7ECJ-0gbxIVTWM8tYKhoK9jA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.207.247.0/24
Signature Algorithm: sha256WithRSAEncryption
79:e9:96:26:bc:0e:7b:2e:ab:28:8d:94:d4:4d:52:44:2b:1c:
c3:2d:58:3f:1b:3c:27:1a:50:8a:1b:bd:d6:5f:1a:47:2c:e1:
bc:6a:cd:e3:7c:32:31:9d:da:be:01:62:82:79:da:c1:43:46:
f4:9d:8d:76:fa:b7:8b:d0:03:31:0b:53:32:ed:f1:9a:4e:ad:
86:f8:26:2d:1a:e3:f8:d9:9e:05:8a:3d:cb:f5:4d:e0:41:18:
10:06:14:c5:fb:02:93:f3:58:06:2f:eb:69:5f:37:5f:f7:57:
09:44:d0:ae:0c:80:b4:9d:96:b6:3c:19:90:29:ca:83:7a:2f:
6c:71:94:4e:53:da:ec:de:bc:c9:6b:50:c4:80:4f:3a:6d:35:
8e:af:61:92:f3:79:5a:99:98:22:b6:23:68:af:42:f7:a8:f7:
10:f7:96:e4:23:e5:ae:37:52:72:1b:2f:8d:b0:72:fa:3e:6d:
b9:1f:44:99:11:da:99:28:65:82:02:82:5f:29:6d:63:d1:7b:
db:ae:29:e6:c4:8a:65:7e:3b:7c:af:d5:f6:36:7d:9e:b3:e8:
b4:39:81:7f:41:37:9d:bc:b1:91:4d:91:e2:d5:dd:36:b9:a8:
51:20:ac:8d:1d:fc:b3:9c:60:6f:56:41:78:98:d2:6d:79:6d:
ab:1a:4a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org