Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/fMznjgqOJ9rIpTybNozZaF6z_ps.roa
File: fMznjgqOJ9rIpTybNozZaF6z_ps.roa (raw, json)
Hash identifier: F6opdQ3GORe7uu+X+CG6mE7fyM/VV8utVDB4hpL6+q4=
Subject key identifier: 7C:CC:E7:8E:0A:8E:27:DA:C8:A5:3C:9B:36:8C:D9:68:5E:B3:FE:9B
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 0F1D6EB8
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/fMznjgqOJ9rIpTybNozZaF6z_ps.roa
Signing time: Thu 24 Feb 2022 19:32:14 +0000
ROA not before: Thu 24 Feb 2022 19:32:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44698
IP address blocks: 84.237.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253587128 (0xf1d6eb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Feb 24 19:32:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ccce78e0a8e27dac8a53c9b368cd9685eb3fe9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5e:9b:f5:27:39:e3:8c:b7:29:fe:bf:a4:6f:
ac:60:61:7b:4f:49:c1:0b:f1:97:3c:1e:2e:e1:3a:
04:7b:9b:e8:cf:24:e3:15:15:35:a7:41:39:98:c8:
cc:12:ff:4f:56:e1:81:98:9a:71:92:75:9f:35:13:
56:20:3c:18:97:92:43:4a:4d:69:88:e5:00:57:ff:
6d:14:d5:4c:47:63:ee:a3:36:8d:fc:2c:8d:69:06:
eb:55:4c:cd:dd:7a:a8:df:43:70:ad:26:1d:f3:7b:
ce:7e:15:ca:cb:15:b0:0d:21:a5:5c:63:5b:0f:06:
9f:df:8c:02:81:15:fc:f2:c2:e1:94:e4:a5:1e:51:
b3:c4:18:d0:b5:24:aa:68:19:8a:19:62:d8:25:7b:
67:c6:5b:27:ba:ca:ff:b2:22:01:06:ae:17:c6:0e:
be:2a:42:71:72:8a:cc:7b:77:26:85:3e:f4:b4:ab:
24:88:04:69:21:3b:83:e4:46:be:1b:bf:42:12:d7:
dc:91:27:74:aa:ba:99:48:11:1d:51:09:3e:90:c1:
19:a8:fd:9e:7f:1c:1a:0a:cb:1f:05:2f:99:7e:57:
97:b5:d3:d6:88:36:cc:55:54:2e:52:d7:9b:8b:b6:
a6:8f:cd:12:95:b2:2c:80:33:36:3f:7c:5b:27:07:
cb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:CC:E7:8E:0A:8E:27:DA:C8:A5:3C:9B:36:8C:D9:68:5E:B3:FE:9B
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/fMznjgqOJ9rIpTybNozZaF6z_ps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.237.235.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:69:30:9a:55:2d:bb:1a:48:c6:b1:4f:32:e4:46:a5:56:a3:
42:e4:44:97:70:6c:d7:65:6c:67:69:ea:c1:5b:dd:57:12:bc:
c7:ec:bb:a7:91:2d:64:c6:05:34:41:09:ba:6b:02:4a:ed:fc:
6e:90:68:8b:0f:ce:9a:07:34:9d:c2:b4:b1:c3:19:f3:ee:40:
4e:7a:bc:49:5b:2d:18:06:84:20:5f:e1:f4:a8:5b:c2:c4:4f:
8d:2e:9c:9d:01:75:e7:a4:50:69:1f:4c:9d:e2:a1:13:13:a5:
c2:f2:83:01:fa:96:d5:39:c0:2c:8f:b0:5f:20:4e:8c:48:19:
d5:42:54:27:c0:91:19:8b:ed:a1:76:39:f7:5d:db:fa:15:41:
05:d9:5c:19:fc:43:3d:21:c9:94:9c:68:34:6b:4b:c9:23:7d:
29:b7:4c:4c:12:68:c8:80:2b:3e:18:74:a1:e1:f9:dc:8e:fe:
16:c5:7d:01:60:62:61:94:55:67:73:84:8d:5b:9c:0e:73:8c:
82:86:3c:5d:e7:6b:50:69:01:9c:fb:92:d3:8f:f4:27:f6:2e:
a3:2b:4e:40:0d:aa:26:91:c6:60:8f:bb:cd:fd:89:a9:c2:a1:
bb:8d:0f:7b:c0:ef:40:11:f5:05:05:56:4b:89:7b:fe:26:56:
b3:74:0b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:47 2024 by rpki-client on console-ams.rpki-client.org