Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/q_zbsIiQuKXgMCYWKy_9UJgBQTE.roa
File: q_zbsIiQuKXgMCYWKy_9UJgBQTE.roa (raw, json)
Hash identifier: goIoKLISdrfW9+qbH2xewAan9+bzdE2Zb4NAUYCUA6g=
Subject key identifier: AB:FC:DB:B0:88:90:B8:A5:E0:30:26:16:2B:2F:FD:50:98:01:41:31
Certificate issuer: /CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Certificate serial: 17176D
Authority key identifier: 4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/q_zbsIiQuKXgMCYWKy_9UJgBQTE.roa
Signing time: Mon 02 May 2022 18:01:42 +0000
ROA not before: Mon 02 May 2022 18:01:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51970
IP address blocks: 84.247.22.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1513325 (0x17176d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Validity
Not Before: May 2 18:01:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abfcdbb08890b8a5e03026162b2ffd5098014131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a0:2e:b1:8f:b5:38:1c:84:57:53:67:ba:32:
dd:5c:55:ca:e1:93:d1:71:4a:19:1f:92:53:8f:1a:
2e:f7:3d:30:ed:bd:9c:9d:fe:8d:bf:c0:38:ab:9a:
f7:9d:aa:5c:9b:4c:aa:b5:a9:b1:2d:58:ff:56:d6:
3c:6f:cf:0a:14:e9:dd:b8:5a:73:80:d4:7a:a9:d3:
74:d5:aa:a1:8c:54:f7:6a:81:6d:23:ce:4a:fa:cb:
e2:a2:9d:2a:54:17:92:5e:37:7c:87:40:93:2b:bf:
a3:9d:6f:ea:44:94:3c:91:73:4d:b1:7a:2e:88:c3:
e1:07:00:70:b8:b3:c8:ec:79:6b:a8:ac:5b:fd:3d:
7b:5c:28:ac:c1:fb:00:cb:50:36:91:aa:1f:0c:de:
02:10:4d:a9:8c:64:3f:4c:0d:fe:1c:ea:bb:13:32:
33:78:a2:72:c9:af:72:6a:bd:c1:18:ec:60:fe:8e:
47:1e:26:5a:1f:0d:f7:fc:9f:48:29:05:c8:a5:42:
f1:bb:b5:1c:0a:39:0b:e2:59:4a:0c:50:ac:45:a3:
a8:d7:fe:35:b6:e8:55:d4:3b:57:55:54:cf:90:4a:
63:72:b7:a1:75:0c:c6:d6:24:8b:ae:12:c9:0f:73:
04:44:ee:ab:f1:17:64:99:b1:9d:4e:fe:31:93:95:
d8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FC:DB:B0:88:90:B8:A5:E0:30:26:16:2B:2F:FD:50:98:01:41:31
X509v3 Authority Key Identifier:
keyid:4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/q_zbsIiQuKXgMCYWKy_9UJgBQTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.22.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:da:74:4d:7f:df:10:7a:31:08:31:6f:20:5b:62:97:ee:26:
32:f4:d8:08:d3:19:fd:4b:cc:9c:4a:f2:e4:d6:0b:a1:cd:03:
1b:70:73:a1:71:ea:77:74:b2:b2:65:35:8b:36:2c:91:10:35:
b7:45:e6:ee:4a:d4:ce:ed:51:7e:25:b0:28:3b:68:f6:6c:86:
d0:21:d2:0f:b8:0c:fd:5f:24:81:e1:e8:51:46:1c:67:04:7b:
50:ba:49:3c:1b:7b:b2:11:7f:0f:73:b1:56:89:fd:10:d0:a5:
98:68:18:8a:76:7f:12:47:2e:1c:26:d3:b3:23:7f:55:43:c2:
ec:37:af:aa:b3:32:50:f1:01:27:7d:f5:17:8b:4a:7c:3f:b3:
d7:b8:2c:e3:0d:0a:0c:84:44:b4:94:7a:4e:4e:30:58:35:a6:
47:97:b0:bb:04:3d:a2:17:71:b9:75:65:8a:4d:c5:dc:e1:ed:
08:30:90:bb:fb:7e:e9:7b:4f:89:89:b4:29:93:97:8a:77:34:
43:25:0e:d6:7a:32:da:e0:a8:54:84:93:61:36:8a:31:5d:0e:
a7:61:a7:b6:ec:b5:05:b3:17:c5:31:69:c7:4f:22:54:30:36:
88:57:68:0a:84:ea:d4:d2:82:07:12:23:34:b7:dd:55:f1:a3:
57:a1:8b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:12 2024 by rpki-client on console-fra.rpki-client.org