Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/9VJHrAEjt5arg3ATAPkvmX308GQ.roa
File: 9VJHrAEjt5arg3ATAPkvmX308GQ.roa (raw, json)
Hash identifier: DjcrmwKyUH2gCSNSq3J6pd7UzdmkOZ+pQSRssySeKWk=
Subject key identifier: F5:52:47:AC:01:23:B7:96:AB:83:70:13:00:F9:2F:99:7D:F4:F0:64
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 18777EBA
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/9VJHrAEjt5arg3ATAPkvmX308GQ.roa
Signing time: Mon 20 Jun 2022 09:36:46 +0000
ROA not before: Mon 20 Jun 2022 09:36:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210276
IP address blocks: 86.110.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410484410 (0x18777eba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jun 20 09:36:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f55247ac0123b796ab83701300f92f997df4f064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:aa:02:71:e0:ed:e5:bd:f1:78:aa:75:09:55:
e4:6d:45:9e:11:cc:d9:0f:58:43:f1:2c:ca:28:91:
da:37:95:e1:48:ca:39:4f:f8:7d:89:e8:85:83:5d:
c2:60:92:5c:51:1d:c8:8e:97:3b:39:df:f6:2a:9c:
c6:27:1a:3a:cf:c6:fc:d1:8c:ac:29:a2:39:13:7f:
65:6d:a5:8b:8f:f2:74:66:d9:7f:01:67:99:f2:ed:
97:8b:6d:f8:bb:dd:b2:fa:04:3f:9c:ca:9f:89:f0:
28:84:de:5b:97:cb:05:67:3a:a5:e0:58:67:de:fb:
b5:9e:58:f9:bc:30:98:03:93:fd:4a:a4:7d:91:b6:
9b:df:99:07:e9:23:0e:01:ec:ef:ee:5e:0a:f6:a0:
a9:86:7c:40:d0:de:ab:2a:76:d7:ff:2c:e1:7f:0e:
64:db:04:fa:ab:9f:1d:4d:ec:f5:2d:2d:8b:fe:2e:
37:79:3f:35:ec:5f:10:41:58:24:a0:ca:32:92:8d:
37:14:21:11:6a:83:79:52:71:d2:54:17:fb:13:8b:
73:4e:0a:fa:08:c7:11:96:03:2d:e6:d3:92:b6:f9:
4f:b7:ed:7d:e6:67:8b:69:29:7d:15:2e:ee:a8:cc:
23:95:22:8f:51:c0:91:bc:bd:ab:01:8f:89:79:6c:
76:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:52:47:AC:01:23:B7:96:AB:83:70:13:00:F9:2F:99:7D:F4:F0:64
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/9VJHrAEjt5arg3ATAPkvmX308GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.100.0/24
Signature Algorithm: sha256WithRSAEncryption
42:47:47:f2:e4:94:b7:b5:81:5b:c3:12:3d:8b:5e:f7:da:da:
e7:1f:34:0e:47:cb:c9:60:5e:2c:77:75:af:d0:9a:00:e5:cb:
ce:66:bf:8d:94:33:56:3a:c4:0b:df:42:cf:ad:7e:e6:20:d7:
b1:c4:36:4f:03:ba:98:6e:79:9b:49:48:cb:07:9d:a9:73:55:
10:07:59:82:c9:cd:f8:b7:54:fe:90:14:2b:54:35:a5:c8:c6:
2f:99:be:9f:1f:e9:7e:d1:83:26:82:39:a1:37:c5:a4:fb:c7:
c7:9e:44:77:95:29:00:4c:ec:ff:cf:5a:75:f3:ee:50:cb:3d:
72:cf:2e:1e:c8:03:b1:37:97:5a:db:19:f0:32:e2:d4:b8:6e:
3b:ce:e8:e5:21:9d:d2:ba:b0:40:67:88:e3:33:b9:6d:e0:f9:
fa:4f:9e:59:25:c0:d4:1c:c9:be:32:b5:26:53:e2:f2:20:b1:
8a:6b:e6:00:c5:62:da:96:52:f8:33:02:ba:c2:f0:ab:de:c5:
2b:ff:ca:ed:1f:62:17:14:12:6f:d2:f8:19:a3:09:60:f9:eb:
49:b0:34:43:da:fc:34:51:3b:65:10:eb:11:5a:1d:d0:ae:43:
ec:c7:b0:e0:61:47:d5:e1:3d:41:79:89:85:99:e9:a7:cc:82:
57:40:40:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org