Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/t8SZebuim5E4h3l4Zzbf008574Q.roa
File: t8SZebuim5E4h3l4Zzbf008574Q.roa (raw, json)
Hash identifier: 6AJqDNpS5ftImL/XPOKSP/0cVpUCjFFhFGoKiBQJVOI=
Subject key identifier: B7:C4:99:79:BB:A2:9B:91:38:87:79:78:67:36:DF:D3:4F:39:EF:84
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 136D3D72
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/t8SZebuim5E4h3l4Zzbf008574Q.roa
Signing time: Sat 01 Jan 2022 05:58:24 +0000
ROA not before: Sat 01 Jan 2022 05:58:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59769
IP address blocks: 84.207.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325926258 (0x136d3d72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7c49979bba29b91388779786736dfd34f39ef84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:28:75:34:da:a2:b9:38:e4:a0:d0:ea:43:e7:
f2:c5:17:89:99:0f:fe:5c:c3:e9:b7:92:44:71:81:
54:0a:a9:22:87:30:cb:32:5e:d5:be:85:07:7b:d0:
fc:30:30:b7:14:f5:6d:8c:80:9c:c0:bf:b9:6c:71:
45:a7:23:bb:5c:5b:8e:86:4c:ee:f5:71:e5:b0:42:
e7:a0:71:4f:8b:27:c7:83:b4:37:a1:24:9f:a9:fb:
69:8b:59:44:79:2e:6b:b6:11:12:ab:07:34:67:52:
b4:cf:ce:9c:82:0f:56:e6:99:0c:2f:12:8f:9e:33:
2a:5a:7a:6c:82:7a:1e:da:b2:26:6e:e8:d4:78:a1:
54:b5:c2:d1:d4:7f:75:8c:c9:51:04:6b:95:9d:61:
cf:04:ca:f1:9f:58:53:14:69:26:87:f7:f1:33:a7:
b7:0a:76:ff:80:1c:cd:ce:d5:a4:c4:08:dd:f5:d0:
96:12:ac:39:d4:d6:af:cf:43:a4:62:61:9f:7f:01:
26:cb:39:6c:d8:77:6e:ca:21:93:80:e9:68:a1:02:
40:0d:c9:07:57:87:06:6a:58:d2:b5:d9:b1:8e:e8:
94:43:38:58:ab:ba:17:c9:cc:f7:09:6e:7c:ba:fc:
e0:0f:3a:78:28:d0:10:26:51:c1:59:f4:1c:d3:f6:
08:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C4:99:79:BB:A2:9B:91:38:87:79:78:67:36:DF:D3:4F:39:EF:84
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/t8SZebuim5E4h3l4Zzbf008574Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.207.242.0/24
Signature Algorithm: sha256WithRSAEncryption
86:66:3d:bd:28:bd:17:42:99:33:72:2f:09:d5:5b:9e:7e:a0:
01:b8:55:4a:b8:45:56:67:72:13:2d:ae:5f:09:48:ac:64:40:
dd:00:20:a2:79:8b:0e:38:46:9f:4a:43:ce:d8:36:cf:e0:3f:
4e:66:6e:e2:24:da:9c:2e:65:19:dc:37:45:9a:d7:fc:60:c1:
2a:35:7c:1b:bd:8f:c5:1c:e3:c6:70:cf:37:09:4a:76:32:50:
ea:f4:03:aa:ac:67:53:21:95:85:df:3c:5f:23:31:99:94:54:
4c:dd:b3:83:6e:f4:b9:44:4a:66:de:e9:30:47:a8:10:5e:fe:
87:16:83:09:1a:cf:09:c1:0f:e7:16:16:d5:d7:3f:89:e1:cc:
01:7e:48:c2:6f:ac:44:d7:f7:63:2b:ba:f8:1a:fe:48:1a:77:
f0:cf:eb:6b:b0:bb:4e:71:c3:07:ca:9d:e0:e2:7c:8b:10:20:
98:58:95:30:03:ac:39:40:0b:cc:c2:f0:f2:02:2a:09:53:55:
42:db:91:95:a0:25:da:ff:bc:77:64:f1:cd:a2:84:f9:3c:20:
8e:b7:0d:f0:4d:1f:d8:41:33:9c:d8:fe:eb:45:5c:9a:8c:50:
7c:10:e7:cc:8c:07:c3:0a:19:46:fc:14:cc:a7:c3:be:7d:0f:
e7:83:86:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:06 2024 by rpki-client on console-fra.rpki-client.org