Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/4JwAc-yxaYu-5D10OUTfRoU9usk.roa
File: 4JwAc-yxaYu-5D10OUTfRoU9usk.roa (raw, json)
Hash identifier: 0FFC+ArbbPulorUegiR+0XRFpHJfHG35q5zypUHGcQw=
Subject key identifier: E0:9C:00:73:EC:B1:69:8B:BE:E4:3D:74:39:44:DF:46:85:3D:BA:C9
Certificate issuer: /CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Certificate serial: 38123BE9
Authority key identifier: 1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/4JwAc-yxaYu-5D10OUTfRoU9usk.roa
Signing time: Sat 01 Jan 2022 09:53:44 +0000
ROA not before: Sat 01 Jan 2022 09:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61157
IP address blocks: 84.246.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940719081 (0x38123be9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Validity
Not Before: Jan 1 09:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e09c0073ecb1698bbee43d743944df46853dbac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:16:da:13:fa:b6:1b:ff:a3:95:c9:9f:73:3d:
84:0a:7e:f9:36:da:d9:ee:45:2a:27:d5:dd:13:3b:
1f:f8:5e:69:b6:2b:a6:d4:5f:c2:d3:12:ee:3f:89:
1e:75:12:ba:08:cc:57:1c:68:71:c6:a6:d9:9d:14:
03:fe:fc:3d:11:a6:9c:b7:f7:19:ba:da:1a:24:7a:
1f:db:09:61:09:fc:38:0b:3d:29:08:f9:57:08:2e:
ae:08:53:d8:70:90:e4:f0:6e:41:6a:23:02:4e:10:
11:30:e2:d8:21:23:38:44:9b:65:13:11:de:46:fa:
2d:3b:2f:c7:12:7f:96:68:62:27:3a:aa:02:22:6f:
0b:b6:a1:de:27:fc:c8:91:98:a4:46:05:c3:4b:ce:
65:96:28:e5:bb:3f:e6:af:c3:b4:1e:be:35:f6:7a:
75:5c:6b:0e:3c:08:86:5b:5a:d3:51:cd:10:97:19:
c9:68:46:25:9f:3a:26:78:a9:99:c9:72:bb:b0:63:
fa:ca:69:ea:36:dc:2d:c8:d2:67:a2:e9:63:4e:de:
46:96:27:b9:c9:9d:d0:d1:df:23:c7:d5:70:1b:45:
a0:68:f0:b7:08:89:75:d8:4c:37:23:4b:7f:80:dd:
14:9c:33:f2:57:5b:93:5b:ed:22:89:92:66:f0:ed:
26:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:9C:00:73:EC:B1:69:8B:BE:E4:3D:74:39:44:DF:46:85:3D:BA:C9
X509v3 Authority Key Identifier:
keyid:1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/4JwAc-yxaYu-5D10OUTfRoU9usk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/HHrXdUeV3dYF8og4u3zDWd96Jmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.246.125.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a1:1e:ef:26:67:ad:44:20:07:a9:3e:59:c0:02:03:85:1e:
72:c5:8b:f1:b1:e7:83:93:81:8b:da:ad:2e:db:4d:c5:72:81:
d5:18:82:c1:59:26:4e:04:ed:1d:d7:5d:21:b4:81:99:f3:83:
53:f2:24:ab:34:a3:3b:eb:95:32:78:58:a7:8b:6c:24:9c:14:
61:a6:b1:cc:7d:53:4c:dd:41:55:78:5f:78:94:9e:e8:c6:47:
bb:c1:e6:42:29:a2:a8:bc:25:6d:4c:0c:81:3b:28:58:4f:17:
b1:6c:54:f8:71:0c:b8:53:be:c4:43:f1:86:64:75:14:18:d3:
8c:58:43:ff:46:82:fc:56:96:fe:a3:12:04:30:dd:22:b0:1d:
ca:90:86:a7:19:57:81:90:23:2b:6e:e1:f0:8b:d9:cd:ef:af:
0b:2c:64:18:dc:dc:c8:dd:8f:b7:bf:8f:67:30:91:e0:cb:07:
6d:ae:9f:79:8a:a4:2d:d3:3f:59:c3:09:81:68:60:c3:d2:64:
5c:53:c0:eb:87:5e:42:84:8e:b4:a3:81:68:36:89:29:0e:ef:
aa:8b:0c:39:2f:85:79:78:eb:d8:0f:a1:9c:9f:04:23:b4:16:
d3:9d:51:d5:7f:16:40:a5:4a:42:b7:cc:bd:47:a0:f7:0c:02:
4e:6e:b0:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:52 2023 by rpki-client on console-fra.rpki-client.org