Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/tOiOfHfk2bFXaPG-R_slLl3FbhQ.roa
File: tOiOfHfk2bFXaPG-R_slLl3FbhQ.roa (raw, json)
Hash identifier: v4Tusx6X6r7J0126kK3VGqZ1oc5pZVRDZzC/UOKrgVg=
Subject key identifier: B4:E8:8E:7C:77:E4:D9:B1:57:68:F1:BE:47:FB:25:2E:5D:C5:6E:14
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 1806AA8B
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/tOiOfHfk2bFXaPG-R_slLl3FbhQ.roa
Signing time: Sat 01 Jan 2022 04:00:32 +0000
ROA not before: Sat 01 Jan 2022 04:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199048
IP address blocks: 62.176.98.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403090059 (0x1806aa8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4e88e7c77e4d9b15768f1be47fb252e5dc56e14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c9:ca:cc:ab:d4:48:98:5f:c0:d5:fe:4d:9e:
ed:07:15:67:66:2c:d8:6b:f9:99:45:0b:a7:0c:f2:
9e:ca:48:46:4b:c2:f1:8d:df:4c:18:18:68:57:14:
53:0a:4d:db:50:48:d5:2f:01:25:3a:87:8c:a8:29:
c3:01:91:9b:0b:14:22:09:87:83:df:9f:f6:0c:cb:
58:cd:32:af:05:a7:12:26:f0:54:94:83:c8:23:8f:
89:d8:f9:32:f6:9f:00:56:dc:ca:d5:12:45:08:b4:
8b:7a:61:59:ba:7e:ac:16:c9:64:25:cc:b3:d9:e7:
5f:59:41:e0:22:e2:97:8e:44:f1:3a:23:15:01:f6:
7c:87:b9:17:e6:c8:d3:f8:e6:fd:92:1d:e4:f8:eb:
59:25:76:f8:80:1b:ac:95:26:c0:76:ef:97:50:cf:
1c:f8:5b:f4:6d:07:62:74:2d:18:71:05:48:25:ed:
46:3f:f4:e6:88:d8:c3:ef:51:43:b2:9b:3d:ee:4d:
e0:7a:4e:18:09:7e:fe:9f:89:d1:12:13:17:52:c9:
7b:36:e6:f6:4c:0e:19:f9:f6:eb:60:4b:1d:00:60:
1d:60:23:6e:65:1a:4d:31:b7:19:bc:4e:f1:72:f0:
94:a9:b1:4d:8b:d1:dc:1e:9b:d3:77:39:db:9a:02:
7f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E8:8E:7C:77:E4:D9:B1:57:68:F1:BE:47:FB:25:2E:5D:C5:6E:14
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/tOiOfHfk2bFXaPG-R_slLl3FbhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.176.98.0/23
Signature Algorithm: sha256WithRSAEncryption
10:36:fc:2c:a0:66:57:6a:32:c0:15:89:f5:62:6b:cb:42:78:
ba:5f:1c:f1:0a:b0:64:72:fc:6d:fa:81:19:01:d4:f9:5a:82:
49:74:9a:54:6f:89:ff:70:eb:03:60:4f:25:6c:cf:9d:eb:b6:
49:50:ca:88:62:93:f5:c5:6a:fb:53:58:17:3b:99:f9:1f:f2:
34:13:6b:ce:92:9b:7e:d5:24:24:d9:9d:e4:3c:d7:4e:48:64:
eb:ff:8b:eb:f4:6f:7a:2c:3a:f8:5d:94:76:cf:47:ca:aa:62:
3b:b9:e6:5d:df:44:5e:bb:4f:34:b3:7f:73:3c:45:c6:53:6e:
47:69:0d:97:55:aa:31:cc:64:8a:1c:63:16:2d:c1:a8:01:b1:
80:a4:d0:b2:0b:75:f1:6b:15:c8:ca:e9:b1:d3:9a:cd:b7:72:
21:47:ec:19:96:82:11:92:87:2d:2c:ab:9c:06:19:cd:24:92:
20:91:aa:ea:76:02:b4:fd:ce:91:44:02:01:d4:24:aa:f8:aa:
d1:08:97:dc:7c:b3:c6:95:d1:66:89:cd:0c:54:2c:9b:a6:1b:
63:08:5d:95:f9:f5:e7:8c:f9:eb:dc:92:21:7d:c4:bb:b8:63:
54:b1:39:1d:6c:e3:4b:99:58:21:d0:20:87:26:ac:e7:eb:cd:
6d:f4:2f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org