Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/bFu4sf7Mz06c7dYVLvNno6sK2p0.roa
File: bFu4sf7Mz06c7dYVLvNno6sK2p0.roa (raw, json)
Hash identifier: ko9gilDjDK7rY7DfWe3so9LGjClGmeBKJ/FHwQaVtEM=
Subject key identifier: 6C:5B:B8:B1:FE:CC:CF:4E:9C:ED:D6:15:2E:F3:67:A3:AB:0A:DA:9D
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 13730874
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/bFu4sf7Mz06c7dYVLvNno6sK2p0.roa
Signing time: Sat 01 Jan 2022 05:58:28 +0000
ROA not before: Sat 01 Jan 2022 05:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200946
IP address blocks: 84.207.232.0/24 maxlen: 24
84.207.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326305908 (0x13730874)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c5bb8b1fecccf4e9cedd6152ef367a3ab0ada9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0f:46:c9:06:13:d2:e4:fe:5a:58:b5:14:fb:
f6:ce:5a:9e:33:67:f7:7f:cb:26:59:83:0c:2c:a1:
67:dd:3e:14:1f:c9:31:34:c8:58:38:cd:fa:44:4e:
7a:60:91:a8:41:ca:22:3b:a9:b2:08:c0:0e:c0:2c:
b3:4b:35:f1:26:b4:d2:0c:78:1e:86:dc:56:bb:86:
c8:57:e2:86:48:7a:6f:ac:da:07:34:9b:d9:7f:fe:
a6:1b:1f:60:5b:81:e3:24:97:17:76:e5:9f:c6:56:
a5:37:ed:9f:40:b5:79:00:2f:df:0b:ec:62:cd:50:
13:2b:fd:a8:09:27:91:52:71:2e:32:cb:81:96:0b:
83:e7:30:f6:0b:54:fd:fe:1b:6c:48:12:fd:df:91:
44:7e:16:a0:51:b3:51:ca:68:50:1f:44:0b:91:72:
70:98:4b:75:9e:cd:32:7c:84:b1:1e:a2:63:b1:d9:
ab:75:ad:1c:cd:1e:fd:fe:23:36:f6:78:0e:d5:a4:
49:c4:7c:a0:ae:4e:84:40:b0:44:8e:04:66:78:d6:
dc:cc:c3:bc:4e:5f:f4:32:df:95:d0:49:95:e3:e6:
ba:d9:4c:38:a0:bc:c2:71:b0:e6:3b:bc:9d:22:65:
ab:5e:fa:7c:83:c0:a9:50:5a:b4:2f:4e:99:71:b9:
78:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5B:B8:B1:FE:CC:CF:4E:9C:ED:D6:15:2E:F3:67:A3:AB:0A:DA:9D
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/bFu4sf7Mz06c7dYVLvNno6sK2p0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.207.232.0/24
84.207.246.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c3:c2:38:81:d9:52:83:7d:7b:95:fa:a8:cf:78:70:fb:05:
ef:53:f4:d9:e8:f5:5d:0b:9c:1b:e0:f5:3a:8b:2c:e9:c4:28:
92:f7:0a:92:bd:c2:f8:7d:89:c5:75:98:84:d6:09:3f:fb:e2:
b3:d7:fc:24:53:bf:98:98:2b:3b:ca:af:ce:02:3c:9f:6b:1d:
49:d0:96:b4:cb:00:aa:01:c3:57:36:dc:88:ef:e9:7f:bd:ee:
ce:00:09:4e:58:54:8f:3e:1c:cb:79:bd:1e:de:9a:df:5c:59:
0a:2e:f0:5f:68:4d:fd:78:48:6e:cb:a5:03:0e:88:db:86:eb:
11:65:6f:2d:98:49:16:18:6d:36:19:58:5f:95:59:2f:07:c3:
d6:ee:59:c6:76:77:52:aa:35:82:12:d9:1f:e8:0e:26:cf:0d:
b7:9c:1d:e5:38:ec:f7:fb:10:70:2e:3c:41:56:45:2d:88:3b:
f3:d1:e7:ba:2f:39:b8:a0:9b:74:31:8e:54:6a:ac:ce:94:b4:
ed:6b:17:fd:3a:59:85:77:98:61:44:92:3c:3a:6c:cc:08:ac:
01:b4:24:77:32:2d:b7:4a:31:0e:85:d1:30:cf:68:e1:79:05:
5c:da:5f:5b:b0:01:91:18:4f:90:03:59:5a:0e:e4:dd:e0:9c:
46:95:14:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org