Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/8cdghnG9IO8DhfKv_4AI1j2Y584.roa
File: 8cdghnG9IO8DhfKv_4AI1j2Y584.roa (raw, json)
Hash identifier: H2zaJCwwJPSbxew16x1TcdxnC2yPSNOSMEfPaWiCvjo=
Subject key identifier: F1:C7:60:86:71:BD:20:EF:03:85:F2:AF:FF:80:08:D6:3D:98:E7:CE
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17E3CF01
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/8cdghnG9IO8DhfKv_4AI1j2Y584.roa
Signing time: Sat 01 Jan 2022 04:54:41 +0000
ROA not before: Sat 01 Jan 2022 04:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207682
IP address blocks: 84.39.184.0/24 maxlen: 24
2a06:7a05::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400805633 (0x17e3cf01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1c7608671bd20ef0385f2afff8008d63d98e7ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e7:60:2f:1a:9f:ba:2b:f6:12:14:e0:82:0a:
34:10:91:34:9e:40:94:22:e1:9c:ab:86:84:73:ca:
81:4b:75:48:01:50:f1:11:06:67:a8:1d:4e:ca:a2:
8b:62:d4:8e:2f:35:f5:09:63:50:94:0a:7a:a3:f2:
a1:f5:b5:06:05:02:2d:23:a6:d2:ce:83:cc:4d:3f:
ca:24:eb:4f:4d:7e:82:9a:f8:ba:dd:a3:70:2d:46:
bb:cc:ed:bc:8e:4d:ef:7e:e2:c1:3b:49:76:40:de:
c9:1a:bc:22:2a:1d:bb:c8:9e:26:88:96:50:b7:52:
d9:11:4a:f5:ea:1f:20:d5:99:77:a9:32:9e:9b:1c:
72:a8:1c:39:27:57:60:66:55:d7:39:8b:4d:f5:23:
c7:57:f0:bb:c1:e2:b1:5c:70:4f:2d:08:d8:e2:07:
98:ab:4f:f3:a1:a1:2d:9c:a2:6f:1b:44:1b:55:22:
63:fd:1e:25:33:4c:2c:4c:fb:30:97:18:0e:cc:a5:
81:b0:2e:24:f1:7e:d5:73:5c:e6:84:cf:19:f0:8c:
08:e8:f2:ab:d7:0a:4e:d7:07:24:63:0b:1d:d3:39:
37:e9:42:6f:8f:32:ba:38:86:2a:9c:e5:f4:64:28:
99:c8:41:8a:e8:32:22:29:64:8b:3f:f6:36:de:fd:
0a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C7:60:86:71:BD:20:EF:03:85:F2:AF:FF:80:08:D6:3D:98:E7:CE
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/8cdghnG9IO8DhfKv_4AI1j2Y584.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.39.184.0/24
IPv6:
2a06:7a05::/48
Signature Algorithm: sha256WithRSAEncryption
37:66:a8:da:26:c1:75:7c:ae:cd:b7:b3:ac:f8:8d:09:e7:2f:
dd:3a:48:c6:06:b2:de:91:37:a4:53:fb:75:a6:34:56:c9:5c:
59:3d:c9:67:d9:94:de:fb:27:59:b7:fd:86:4e:15:81:ce:cb:
a1:4c:1f:4a:0b:15:f7:bc:25:76:98:d2:0a:e2:3f:b2:f1:69:
39:31:40:38:86:1b:84:66:a0:58:af:30:20:e5:2f:f6:22:22:
02:62:04:e1:96:d5:4c:87:63:a6:42:9e:de:e4:52:7f:ed:c7:
92:3d:27:3e:e6:b5:29:0b:c3:b6:f8:97:bf:b2:6f:c6:b8:2f:
c9:df:be:58:17:98:b9:79:4c:1a:a9:c5:14:2d:b8:e7:2d:eb:
e8:a5:36:bd:4a:06:3e:b6:95:35:42:fb:09:21:46:53:95:bb:
11:a0:e7:b2:af:89:9b:21:49:f2:f2:0d:df:e3:6a:a3:cb:1a:
e9:83:81:fd:cd:c3:fe:44:2c:7b:1a:e9:a1:d1:79:38:bd:3b:
cd:b1:5a:94:dd:71:00:5c:ee:6d:7b:b2:2a:52:38:27:3c:49:
01:eb:d7:b3:90:75:9f:28:fc:d2:06:c0:87:9c:99:fe:7f:b9:
85:19:5c:3d:28:dc:05:60:81:a9:ac:48:13:c5:d8:94:ee:84:
f3:d1:62:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org