Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/H7H2pdpSkZWno2lPyjLMvvZ5I64.roa
File: H7H2pdpSkZWno2lPyjLMvvZ5I64.roa (raw, json)
Hash identifier: HXxjPiu0QfZgRNA5dQEBsOYlY8ohghmOJRdeSiUdP4I=
Subject key identifier: 1F:B1:F6:A5:DA:52:91:95:A7:A3:69:4F:CA:32:CC:BE:F6:79:23:AE
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 03C805C7
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/H7H2pdpSkZWno2lPyjLMvvZ5I64.roa
Signing time: Fri 08 Apr 2022 08:41:20 +0000
ROA not before: Fri 08 Apr 2022 08:41:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59584
IP address blocks: 92.63.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63440327 (0x3c805c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Apr 8 08:41:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fb1f6a5da529195a7a3694fca32ccbef67923ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7c:2e:65:3a:5c:b0:b2:90:25:90:4c:91:2f:
17:36:ff:0d:04:81:04:1a:1a:76:b6:32:e1:4d:1c:
de:1d:a5:1e:e8:b9:74:70:ee:83:8c:d8:44:8d:6b:
e6:63:58:0c:69:46:e7:c0:0a:df:fe:ed:d3:b0:7b:
d3:5c:cf:dc:d6:96:76:2f:15:3f:b8:00:bc:ed:5c:
e4:81:8a:80:79:84:32:08:9f:a4:af:67:89:e8:0e:
42:a8:d4:44:2c:7b:24:0a:2a:84:20:2d:2f:16:46:
25:32:0c:91:e8:6c:3a:0e:f0:e5:88:4c:1b:17:5e:
01:7d:c8:f1:44:88:e6:f6:f4:04:f7:51:a5:6c:c0:
ad:3d:0e:92:9f:0c:18:8d:3e:71:be:87:6d:5f:43:
ad:61:18:16:46:24:fe:43:99:e5:fd:73:3a:cc:8a:
ae:1e:8d:91:f6:24:b3:74:d9:17:2b:88:55:97:d7:
ac:bf:cd:7c:ca:78:11:b7:24:4c:46:a1:21:00:bf:
8c:86:22:50:4c:d5:ec:30:0a:99:2c:fa:4e:4c:4e:
87:0b:72:76:65:40:bd:78:00:94:65:78:22:20:24:
6c:de:e8:5d:b8:3c:35:64:fd:60:e6:38:8a:c4:c4:
fd:d3:f8:10:7e:66:8d:87:79:cb:c0:f7:5b:08:ce:
8a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B1:F6:A5:DA:52:91:95:A7:A3:69:4F:CA:32:CC:BE:F6:79:23:AE
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/H7H2pdpSkZWno2lPyjLMvvZ5I64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.200.0/24
Signature Algorithm: sha256WithRSAEncryption
92:7b:c1:ff:14:22:0f:35:72:c7:41:ce:37:4a:89:b8:1a:51:
a1:da:65:ca:9a:45:59:b7:60:58:53:e8:39:2c:5d:93:58:36:
f4:42:2c:25:06:36:4c:4c:14:d1:a5:88:1b:a8:8e:79:4a:e0:
89:ef:97:59:9b:37:08:98:2c:fd:5e:b6:c5:11:e2:67:c6:f2:
fc:ab:48:a5:53:09:2a:84:1d:81:95:a0:58:4d:84:bb:d2:b8:
16:04:d7:e8:e1:71:65:21:43:a2:12:52:67:dd:ed:da:da:77:
95:cf:23:76:e8:0f:ed:c7:64:0d:df:01:bd:80:69:26:02:a1:
2d:49:b0:89:5e:94:80:11:05:6d:45:30:b4:c1:27:8c:d5:b2:
3b:8a:cd:76:0d:99:42:06:0a:5a:a1:a6:52:f2:75:ab:a1:79:
ea:8d:5e:16:b4:f8:8e:e1:22:51:8d:e5:6a:93:63:4d:e1:15:
69:42:24:3b:ce:15:b3:7f:4b:71:5d:9a:1a:4b:cc:fa:9c:b7:
4a:37:06:0d:ed:88:0b:0c:35:2e:0a:31:7d:a3:5d:aa:e8:b1:
f6:8f:8c:62:ba:60:4a:af:07:43:6b:9e:80:19:1b:76:91:b4:
ab:cc:b9:2c:33:fe:ca:2d:d4:81:5e:c9:94:7f:3b:65:3a:1f:
86:d6:f8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:58 2024 by rpki-client on console-fra.rpki-client.org