Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/sy7OQwfpp8q4hhWtLJW0f0R2npg.roa
File: sy7OQwfpp8q4hhWtLJW0f0R2npg.roa (raw, json)
Hash identifier: nHUyTrKRHpeXZnKz1Xc8CyQX3EFut+VQL7Vmop3LwxU=
Subject key identifier: B3:2E:CE:43:07:E9:A7:CA:B8:86:15:AD:2C:95:B4:7F:44:76:9E:98
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 13680E30
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/sy7OQwfpp8q4hhWtLJW0f0R2npg.roa
Signing time: Sat 01 Jan 2022 05:58:22 +0000
ROA not before: Sat 01 Jan 2022 05:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35831
IP address blocks: 84.207.248.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325586480 (0x13680e30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b32ece4307e9a7cab88615ad2c95b47f44769e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:af:f8:1b:9f:59:d3:11:71:e5:50:1b:b7:87:
49:5d:86:74:ec:1f:80:f1:7e:ec:a6:4f:ce:d3:42:
d8:f6:4c:43:8a:fb:62:92:e3:f7:3f:83:73:0f:cf:
f6:69:fa:ad:c4:22:0f:af:74:26:b1:90:36:43:cc:
77:95:46:3a:c8:d6:6e:1a:99:7c:d1:79:36:e6:19:
77:24:a1:10:b2:04:cb:f7:3c:b1:1f:1f:69:bd:04:
6f:4a:03:6d:0d:bd:c4:e1:50:1e:d4:9b:4a:35:99:
f6:6c:30:00:ce:b0:4a:b8:ac:3f:9a:a1:43:4a:34:
5a:d6:33:19:c5:c3:ad:9c:81:fb:8a:6c:09:ed:26:
14:0e:8a:bd:09:3b:c2:1a:86:b6:62:72:67:a7:d1:
60:7e:04:58:c7:a9:84:ba:c8:df:e8:be:16:ac:43:
e5:13:b7:c2:28:1f:f6:96:26:f8:5d:6a:dd:f3:8e:
5a:b2:c5:7e:dd:df:47:f8:22:cb:ac:9a:3e:2d:0e:
23:b6:c3:2c:2b:c2:ff:1a:82:9a:3d:2f:12:fd:a1:
f4:b2:41:93:3c:42:f6:13:eb:3f:a2:63:4f:15:ab:
f2:83:08:9b:3a:ef:4c:2f:1c:a9:69:73:0f:fe:6c:
e5:56:e0:18:b6:4c:2a:b9:09:5d:63:32:dc:9b:e8:
15:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2E:CE:43:07:E9:A7:CA:B8:86:15:AD:2C:95:B4:7F:44:76:9E:98
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/sy7OQwfpp8q4hhWtLJW0f0R2npg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.207.248.0/23
Signature Algorithm: sha256WithRSAEncryption
83:3f:15:05:ea:50:2b:78:67:05:b6:db:39:d5:aa:0c:c4:73:
7a:c9:fe:fe:95:7e:4c:35:6f:3b:c3:27:6f:e1:aa:22:a8:1b:
a6:50:92:f2:4c:6e:27:fc:04:fe:ab:74:80:d1:d8:f2:e8:4d:
e7:6c:0a:e3:13:05:4b:30:44:71:a8:96:c4:62:f0:a5:ec:61:
75:dc:6d:52:7b:ea:07:5a:40:2c:68:07:c5:f9:a1:b6:7e:38:
8f:20:11:40:4f:2d:33:26:24:4b:f1:b9:75:17:9c:aa:85:cf:
4d:8a:53:64:7f:bd:65:23:c7:93:36:8f:aa:b3:15:79:3f:7a:
2f:cb:eb:4a:33:64:fe:24:86:33:b8:e7:34:da:0e:cd:ad:4f:
1f:73:37:8a:3a:2e:45:3a:5b:9a:24:4f:f7:d2:49:8c:e1:a6:
32:f4:c8:b9:4b:38:35:95:34:69:4d:31:bb:6d:73:7d:d1:42:
ae:ce:6d:42:64:17:fa:f6:e1:85:e2:a4:e2:c3:70:b6:6b:34:
c8:1e:f3:cf:1a:bf:a1:a5:9c:26:eb:06:14:52:c9:59:9d:69:
9c:37:ed:bd:95:a4:f8:15:c6:b5:d8:f6:48:18:ce:02:26:86:
9c:fe:c1:98:65:55:d1:a4:89:ef:0d:00:9b:82:37:ff:99:d8:
b2:bb:6f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org