Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/hI4ykfH5RR5OuA3Jn-JkxQL8OhE.roa
File: hI4ykfH5RR5OuA3Jn-JkxQL8OhE.roa (raw, json)
Hash identifier: cbWIcPFWNib28vDQrleCzVCwCV2oUJ7feq84uap5lL8=
Subject key identifier: 84:8E:32:91:F1:F9:45:1E:4E:B8:0D:C9:9F:E2:64:C5:02:FC:3A:11
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 02E771FC
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/hI4ykfH5RR5OuA3Jn-JkxQL8OhE.roa
Signing time: Sat 01 Jan 2022 15:59:49 +0000
ROA not before: Sat 01 Jan 2022 15:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206766
IP address blocks: 92.63.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48722428 (0x2e771fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Jan 1 15:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=848e3291f1f9451e4eb80dc99fe264c502fc3a11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:03:2b:b1:a9:d9:5f:f5:b9:cb:dc:f4:58:c9:
0a:84:06:20:65:5b:f2:3a:4f:b2:e0:f6:51:c9:bb:
1b:6f:7d:fc:6f:b4:87:be:3a:24:b3:42:48:23:d2:
84:ff:82:9d:db:96:f6:d1:7c:18:59:a5:f9:40:9d:
2c:e0:1d:9a:19:5a:03:14:1c:4a:d5:a3:54:5d:b8:
48:7c:b1:7e:fc:ea:a8:7c:71:9d:68:5b:e0:a1:fe:
89:df:50:d4:d5:ac:60:e1:2a:5f:44:cd:2e:d3:6b:
94:1b:b7:1b:bf:77:6f:4e:46:b9:9c:21:45:c9:d6:
4a:8d:e1:26:a8:29:0b:0d:c0:01:74:61:c8:48:eb:
3a:5b:e3:9f:0d:d3:4c:49:10:d5:8e:1a:6b:6e:0b:
50:67:7c:2d:6e:d4:52:6e:15:ce:25:c1:10:e6:69:
d4:b1:5f:0f:09:b2:43:d7:d4:48:7c:6a:8c:49:f4:
dd:92:06:17:6f:de:38:1c:ce:07:13:a2:70:a3:a0:
8a:9a:21:57:f1:c1:0c:6c:bd:b2:7e:b2:05:b4:fc:
ae:3a:1f:b3:21:b1:0e:79:8c:b3:ed:a8:19:39:a2:
38:3f:fe:e8:37:ec:6d:94:67:9c:bc:88:f3:1b:95:
4b:78:ce:f8:ce:f4:c0:eb:31:df:6d:78:2e:69:b3:
4b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8E:32:91:F1:F9:45:1E:4E:B8:0D:C9:9F:E2:64:C5:02:FC:3A:11
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/hI4ykfH5RR5OuA3Jn-JkxQL8OhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.198.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:76:2c:3c:0c:eb:31:bf:1f:ee:ed:86:0e:29:73:81:dd:a5:
ac:a0:16:38:65:ee:05:7e:6a:d9:9b:d3:1b:77:bb:e9:73:56:
88:4a:ba:47:52:c1:77:38:d1:3d:7d:5c:46:17:0b:a6:af:57:
d2:b4:48:e5:99:05:52:b0:c8:3e:ce:e9:09:95:78:49:9f:d0:
c9:c1:d9:0b:aa:42:20:ad:5e:0c:e8:15:7d:af:cc:6a:c8:80:
0f:a7:89:eb:45:fc:58:05:7c:df:bf:e0:e4:a9:f5:fa:3f:d5:
bf:c7:d4:74:ee:e4:7e:d0:70:17:38:e0:7d:46:e8:3f:71:c6:
d8:0c:a0:16:3a:85:4f:d0:a9:e0:3c:0e:f8:0b:75:cd:0c:98:
71:cd:d6:cd:09:68:73:96:d3:71:61:b9:ac:6b:a3:a6:f9:cb:
da:2a:51:c4:d6:90:f4:4c:c4:73:61:be:ab:1a:a8:6e:58:55:
ca:5a:67:e6:4d:55:99:2e:ac:ef:d9:95:d4:11:5d:45:95:61:
37:0c:03:6f:b4:60:63:51:eb:31:45:fa:5a:9c:d9:88:e4:f7:
a6:2a:62:fa:0c:63:53:54:5f:26:41:cd:50:31:11:52:b1:36:
82:0c:4a:57:b2:30:0e:9b:f8:b5:5b:0b:03:1a:d5:46:6e:f5:
d8:11:bb:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:58 2024 by rpki-client on console-fra.rpki-client.org