Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/Cs7rjTART3CtuxSSTfHCKeGwUBA.roa
File: Cs7rjTART3CtuxSSTfHCKeGwUBA.roa (raw, json)
Hash identifier: d8TdmszGcE5V4S7JCq2aZ4qEVdtqw6lQKO/dmx8Jhi8=
Subject key identifier: 0A:CE:EB:8D:30:11:4F:70:AD:BB:14:92:4D:F1:C2:29:E1:B0:50:10
Certificate issuer: /CN=f9356a96e74ea2d72b6545c87c79d212d72a7bde
Certificate serial: 0505A859
Authority key identifier: F9:35:6A:96:E7:4E:A2:D7:2B:65:45:C8:7C:79:D2:12:D7:2A:7B:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TVqludOotcrZUXIfHnSEtcqe94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/Cs7rjTART3CtuxSSTfHCKeGwUBA.roa
Signing time: Sat 01 Jan 2022 15:03:48 +0000
ROA not before: Sat 01 Jan 2022 15:03:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42810
IP address blocks: 87.237.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84256857 (0x505a859)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9356a96e74ea2d72b6545c87c79d212d72a7bde
Validity
Not Before: Jan 1 15:03:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0aceeb8d30114f70adbb14924df1c229e1b05010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:76:3a:dd:80:55:9e:b4:6e:b0:fc:fa:d7:78:
dd:10:03:c7:95:2d:dc:9f:f7:a4:69:02:95:5e:f3:
f3:8b:92:e6:77:09:30:66:02:53:b1:1a:cf:d4:97:
88:93:66:7a:b4:96:12:f5:f1:fd:67:55:4f:5c:a5:
91:26:ca:5d:69:d8:a7:c0:63:e7:71:58:9a:e9:e4:
a1:2b:b9:57:d3:89:91:5f:2d:cf:25:79:83:7a:ca:
e8:1b:86:a8:a2:7f:6a:cd:f8:4d:06:60:11:59:64:
7d:f8:2f:e7:f4:1d:ac:35:d5:71:e2:df:fe:c6:8d:
b4:f8:51:58:71:79:04:39:46:13:d5:ba:a1:14:de:
f0:c5:c0:80:a7:b7:65:b7:f7:04:78:ca:6a:2a:9d:
8f:8b:f4:2d:ff:a2:b0:18:c8:26:85:25:bc:cd:ad:
57:c0:a8:7e:b2:d9:f0:62:a6:1f:e4:5f:1e:d1:ff:
a9:95:b0:de:9d:8c:06:bb:a9:80:8f:eb:a2:b9:fb:
8e:14:64:7f:90:d9:fd:de:e5:e7:ba:01:ca:37:cd:
2d:06:4c:89:b8:34:48:80:33:71:f4:65:cd:7e:26:
fb:f7:63:73:1f:1f:df:2c:91:f8:2d:48:8d:34:17:
ac:71:f3:c2:e2:c4:7d:aa:16:fc:3e:a9:38:29:02:
a2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:CE:EB:8D:30:11:4F:70:AD:BB:14:92:4D:F1:C2:29:E1:B0:50:10
X509v3 Authority Key Identifier:
keyid:F9:35:6A:96:E7:4E:A2:D7:2B:65:45:C8:7C:79:D2:12:D7:2A:7B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TVqludOotcrZUXIfHnSEtcqe94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/Cs7rjTART3CtuxSSTfHCKeGwUBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/1-TVqludOotcrZUXIfHnSEtcqe94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.168.0/22
Signature Algorithm: sha256WithRSAEncryption
66:28:66:a2:bd:4b:aa:dc:4f:08:5e:71:1b:30:73:f0:d6:b0:
ed:22:2f:05:08:dd:de:e9:5d:e5:b8:ed:f8:de:0a:0b:df:80:
89:8f:93:99:f8:47:38:b1:51:1f:97:e8:08:68:97:68:20:ad:
9f:56:7b:10:29:00:23:bc:f1:e4:40:7e:be:a4:04:db:a1:2f:
95:48:db:54:6a:4b:53:aa:9d:58:78:87:56:17:9e:39:42:51:
81:7c:9d:d4:10:d8:ae:d0:10:51:b5:46:ac:28:ea:f1:75:21:
dc:76:7a:c4:7b:c5:d2:7d:25:be:32:a0:94:68:a2:43:32:8d:
62:cd:67:0c:f5:8f:8a:43:b6:e3:30:4b:5a:cb:2e:db:b3:7b:
ab:f8:3b:d7:e9:92:75:40:83:b3:bc:f7:7d:48:11:2c:99:4b:
93:e0:ae:7a:1e:4e:6d:01:85:6b:95:83:83:74:1b:9e:38:4c:
e9:7a:cf:e8:2f:af:f2:c6:88:07:0f:bd:e4:9a:a6:55:06:70:
28:72:a1:64:95:92:1d:77:9c:77:73:0d:bb:77:b7:4e:7d:a7:
8d:d0:c6:4c:d8:e0:5d:65:3c:66:89:59:6b:aa:9f:fd:3d:7c:
19:b8:f2:be:5d:b3:24:08:2a:aa:7a:bc:bf:4c:3f:58:76:5c:
e5:6e:d4:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:09 2024 by rpki-client on console-ams.rpki-client.org