Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1b3749-9673-412d-b348-50fc4d557d08/1/6bokcIO0tLklWdCDvRuc_goKDhQ.roa
File: 6bokcIO0tLklWdCDvRuc_goKDhQ.roa (raw, json)
Hash identifier: M9d1cqHjkp9HFYuCF5Mi1eaN46V01rfPdJqouWyExu4=
Subject key identifier: E9:BA:24:70:83:B4:B4:B9:25:59:D0:83:BD:1B:9C:FE:0A:0A:0E:14
Certificate issuer: /CN=ff56d837fe254fa92e1f3c2f861aa1e485521746
Certificate serial: 08280D1F
Authority key identifier: FF:56:D8:37:FE:25:4F:A9:2E:1F:3C:2F:86:1A:A1:E4:85:52:17:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_1bYN_4lT6kuHzwvhhqh5IVSF0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1b3749-9673-412d-b348-50fc4d557d08/1/6bokcIO0tLklWdCDvRuc_goKDhQ.roa
Signing time: Sat 01 Jan 2022 07:02:31 +0000
ROA not before: Sat 01 Jan 2022 07:02:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57039
IP address blocks: 94.143.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136842527 (0x8280d1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff56d837fe254fa92e1f3c2f861aa1e485521746
Validity
Not Before: Jan 1 07:02:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9ba247083b4b4b92559d083bd1b9cfe0a0a0e14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ea:48:ca:44:0d:90:79:3a:97:c2:69:af:69:
75:cb:4d:e6:f6:38:e8:04:ed:79:31:a1:7d:2b:b3:
ac:da:da:27:6a:f9:82:ef:09:93:5a:2d:90:17:97:
5e:5a:11:fe:0b:de:d8:66:88:20:9e:9c:8d:8f:5a:
3d:67:d2:54:14:3d:90:5a:54:b9:fd:2d:c5:ca:83:
15:69:8a:e9:73:76:b3:fc:4f:20:ce:6b:82:8b:64:
98:82:35:89:04:ed:36:a2:b2:1f:59:7b:53:18:b2:
a6:03:e9:36:68:5e:00:5d:77:ec:74:97:2f:89:3d:
37:7b:e2:7f:7d:f7:3f:d5:6c:ae:6c:1a:b7:6b:d4:
42:23:dd:78:d0:3b:21:89:8d:7c:70:19:50:53:3a:
18:69:57:26:47:d8:b1:8b:a0:1b:0f:8c:d5:94:ff:
3a:d8:00:9a:fe:59:e5:9d:d8:96:36:00:5d:d5:3f:
b9:5b:5c:d1:15:1d:0f:57:fd:b1:1a:50:55:5e:0e:
0b:c1:6e:04:b3:5e:de:67:16:5f:2c:4a:88:40:17:
35:c0:04:ff:3d:08:2b:df:57:06:a8:42:8a:ac:b3:
55:49:bb:25:b9:14:a2:de:2b:5e:f1:35:ce:a1:98:
3d:56:cc:98:42:ba:25:c1:ac:10:f2:7a:c6:21:b9:
6a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:BA:24:70:83:B4:B4:B9:25:59:D0:83:BD:1B:9C:FE:0A:0A:0E:14
X509v3 Authority Key Identifier:
keyid:FF:56:D8:37:FE:25:4F:A9:2E:1F:3C:2F:86:1A:A1:E4:85:52:17:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_1bYN_4lT6kuHzwvhhqh5IVSF0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1b3749-9673-412d-b348-50fc4d557d08/1/6bokcIO0tLklWdCDvRuc_goKDhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1b3749-9673-412d-b348-50fc4d557d08/1/_1bYN_4lT6kuHzwvhhqh5IVSF0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.99.0/24
Signature Algorithm: sha256WithRSAEncryption
22:e5:45:98:d2:f9:42:50:13:aa:49:aa:cc:02:2c:98:71:d8:
64:6a:87:d1:c8:87:b3:e0:05:1b:71:fa:43:6f:a7:36:ee:66:
a2:0b:4e:5d:06:04:98:bf:fe:91:34:80:4d:33:65:24:8e:40:
58:c3:af:c3:65:da:1c:d2:25:d8:ba:ed:9e:8b:d2:74:80:cd:
a0:4d:cb:c8:c9:64:b6:23:92:11:66:7a:c2:19:b6:17:5c:18:
d9:76:06:ce:e9:d3:25:30:bd:75:4e:9b:19:d6:34:65:df:0d:
8b:45:bb:0d:8d:dc:eb:31:c5:74:ae:5e:8e:ad:64:d4:f3:d4:
24:a9:b5:94:d3:5c:a1:03:df:29:5e:c8:da:cc:5e:3b:4a:90:
af:9b:1b:7f:e6:51:f7:22:e7:d8:1e:72:49:bb:ff:15:13:35:
0d:27:e9:02:36:be:b3:c2:4d:22:3f:e3:bd:04:66:37:61:e2:
53:df:6f:9e:af:de:7d:24:af:37:71:7e:01:5c:47:e3:a3:17:
f7:41:a1:36:8f:fa:36:44:59:29:b0:03:5e:ce:00:10:6b:8a:
87:2c:84:53:72:18:8e:38:c8:22:39:97:b6:67:e9:6c:0d:4e:
d0:ef:ff:3c:a5:f0:d7:f5:8c:a6:65:aa:bb:9a:b7:63:2d:72:
a4:ea:21:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:17 2024 by rpki-client on console-fra.rpki-client.org