Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/A_RS322g1F9XmIA-LA1sAoRD7Vk.roa
File: A_RS322g1F9XmIA-LA1sAoRD7Vk.roa (raw, json)
Hash identifier: l1p0ysR/gCxXcF7XuNjBwZYxHzZhAJ8VAIrrYVtMuRk=
Subject key identifier: 03:F4:52:DF:6D:A0:D4:5F:57:98:80:3E:2C:0D:6C:02:84:43:ED:59
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 1371FDFF
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/A_RS322g1F9XmIA-LA1sAoRD7Vk.roa
Signing time: Sat 01 Jan 2022 05:58:28 +0000
ROA not before: Sat 01 Jan 2022 05:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200451
IP address blocks: 84.207.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326237695 (0x1371fdff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03f452df6da0d45f5798803e2c0d6c028443ed59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:82:c2:79:6b:d9:e6:a2:3c:27:61:73:23:ca:
8e:9d:ac:9d:7f:6a:de:f7:31:ef:b5:a8:9f:61:0e:
31:df:56:a8:aa:33:3d:3b:ce:b2:9e:a2:48:cf:0b:
76:41:a2:d5:bc:59:12:18:f7:da:7f:da:97:b0:2c:
0d:e3:fc:d7:7a:90:a3:0a:0e:26:53:cd:db:5d:40:
04:96:b9:09:ca:4d:3c:ed:d5:ed:9f:ad:5f:f7:6b:
14:72:3b:69:bc:be:75:be:08:7c:cd:95:ff:38:10:
5f:67:ac:f9:1b:d0:d9:d4:6a:dd:52:a7:0a:84:14:
5e:09:1d:12:18:7b:93:a9:ea:ed:b4:be:df:c2:8f:
24:c1:8c:00:d8:50:0d:76:ca:12:8a:c4:8d:f5:75:
bc:89:25:55:75:23:4b:f3:e3:38:37:21:9d:f3:87:
63:e3:0c:91:42:52:36:bd:db:49:e8:bd:89:07:9f:
49:d3:4a:83:be:39:62:06:bd:a3:63:6f:c4:6e:61:
3e:8b:47:e2:65:e1:9c:ed:72:49:c9:46:b9:c4:35:
39:f9:54:f3:2a:e2:70:64:bb:54:3e:f2:9a:0b:67:
47:b9:ec:2b:7a:31:99:31:1b:ac:fe:57:5d:60:af:
9c:ee:62:71:75:c4:7f:1c:0c:d3:61:d6:9a:0b:bc:
04:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F4:52:DF:6D:A0:D4:5F:57:98:80:3E:2C:0D:6C:02:84:43:ED:59
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/A_RS322g1F9XmIA-LA1sAoRD7Vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.207.213.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:36:2e:c3:59:d6:72:68:f4:cb:3b:77:2b:cc:8a:19:8a:b5:
14:37:73:84:fc:0b:96:fc:1b:70:7d:35:cc:14:3e:71:8c:62:
76:50:70:2d:cf:82:6a:dd:11:01:bb:75:ec:b0:c2:37:d4:d9:
0f:8f:0a:75:09:05:f8:42:60:85:52:9a:7e:06:40:e7:89:07:
1e:4c:30:75:55:ee:9f:bd:02:37:a4:b2:52:f6:f4:c3:2e:4c:
f2:f6:71:f8:7e:0f:bb:a3:10:29:fd:0a:cc:56:c4:e9:be:db:
b7:3b:fd:16:03:56:97:1c:3e:8b:68:41:6b:12:d8:73:61:0e:
8b:b3:34:40:7e:1e:95:ec:29:93:e0:f3:77:48:5a:fb:40:43:
fe:69:12:99:e4:2f:09:fe:9d:d6:ca:03:e8:47:e3:df:12:a2:
e0:97:bb:2a:e5:43:52:50:59:df:52:3e:1c:cb:f0:7d:d1:a6:
d9:59:b4:a3:52:2b:55:8e:47:e1:14:9b:71:01:b7:1d:6d:48:
1d:8c:1e:68:cc:09:8e:a9:bc:2d:e7:74:70:a1:da:e8:6c:76:
cc:3b:3f:8c:f5:93:79:21:7b:e8:7d:09:03:c9:f0:b9:46:24:
be:ee:3d:a8:25:38:f6:c5:01:bd:4a:21:6c:5c:94:2c:1d:b7:
cd:4e:b0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:30 2023 by rpki-client on console-ams.rpki-client.org