Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/IaZIdCjt4r8gO5TDM1Bofuc-yj0.roa
File: IaZIdCjt4r8gO5TDM1Bofuc-yj0.roa (raw, json)
Hash identifier: 27pCIYzaM7BQ2+M2bBZMdxObxFDgBnrVkmJH/M9Vx8s=
Subject key identifier: 21:A6:48:74:28:ED:E2:BF:20:3B:94:C3:33:50:68:7E:E7:3E:CA:3D
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018A1A29DB9B72CE92191D65610F2D638B2A
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/IaZIdCjt4r8gO5TDM1Bofuc-yj0.roa
Signing time: Mon 21 Aug 2023 22:14:25 +0000
ROA not before: Mon 21 Aug 2023 22:14:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201971
IP address blocks: 84.54.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1a:29:db:9b:72:ce:92:19:1d:65:61:0f:2d:63:8b:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Aug 21 22:14:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21a6487428ede2bf203b94c33350687ee73eca3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:15:2b:86:ed:4b:a2:50:df:b3:b7:95:6a:75:
09:35:a1:d1:c7:7f:5d:ac:a2:87:9a:d2:18:08:18:
9a:e3:ae:eb:67:79:83:94:05:fc:90:03:56:58:c6:
89:94:ce:27:26:65:01:de:13:be:7d:e9:39:a5:0c:
0d:3c:ae:84:12:eb:75:3e:60:dd:c3:e7:ed:ae:42:
61:d6:f9:12:7a:b4:2f:d5:84:99:d2:0e:d5:b6:b0:
b5:37:9b:1f:96:8d:b3:3e:b1:26:1a:77:a9:75:c5:
62:25:b5:8b:3e:e6:8d:5e:9a:59:0c:e5:d3:4d:9d:
50:b7:c0:8c:87:af:3d:b8:48:dc:8a:df:b6:a2:eb:
d3:37:04:e8:48:61:96:1d:0a:98:97:60:df:52:db:
8f:c0:ed:20:8f:d3:7c:82:3b:26:39:72:46:fd:a4:
44:6f:92:3c:0d:14:a9:eb:6e:ae:12:24:09:5b:f6:
d8:52:0c:68:e0:d7:39:8a:6c:c1:3f:6e:fa:9a:39:
8c:f3:d2:16:1f:b0:80:33:e6:c2:35:63:37:48:b0:
1b:61:01:be:9a:f4:61:80:4b:56:fb:e0:8c:bf:f2:
07:5c:49:a0:63:1a:bd:e9:1c:14:82:89:82:be:8e:
db:89:d2:05:56:96:9c:dc:75:d1:f8:8c:2c:ee:15:
31:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A6:48:74:28:ED:E2:BF:20:3B:94:C3:33:50:68:7E:E7:3E:CA:3D
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/IaZIdCjt4r8gO5TDM1Bofuc-yj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.54.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:cc:5f:c3:5c:74:28:31:c3:7d:1d:a8:51:27:bb:da:2a:4e:
eb:48:f2:f6:09:e0:d1:0f:49:c9:28:75:96:52:e4:33:b1:0b:
ce:d0:df:4b:08:0d:ac:2f:49:73:0a:1f:fb:55:48:cb:9b:bb:
9a:40:62:2e:94:17:1f:0e:f0:dd:ba:47:7a:7f:97:1c:ab:bd:
1c:68:e8:e2:16:4e:fd:75:44:8a:ef:33:63:47:9d:b0:eb:8d:
ad:9d:d2:b6:35:22:cd:cb:11:56:58:c1:5a:c9:cd:f5:b2:a7:
11:97:d2:d9:9f:15:83:b5:99:5b:9a:e2:35:c5:57:c1:3e:29:
b0:fa:ec:95:6c:8a:68:b7:51:02:7e:a9:e7:89:15:c3:bf:64:
b3:5e:cb:19:2b:0a:ef:9d:68:b0:d5:e5:1d:a3:09:65:c5:bf:
24:8f:6c:f5:45:d5:4c:25:13:4e:51:76:c6:d9:df:d0:7b:23:
53:f1:e1:c7:43:e1:ce:31:9c:86:a0:7b:17:e1:c9:da:5e:32:
62:a8:e1:b8:f9:2c:b8:4c:de:88:15:d5:74:c4:3a:36:b1:da:
33:b6:76:02:9b:cb:f6:46:3a:38:55:f5:78:3e:38:fa:e7:93:
c3:10:d4:bd:d9:ce:76:68:b1:53:2f:fd:fd:b3:e5:8b:7d:f1:
d2:fd:e5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:24:03 2025 by rpki-client