Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/Kaumx7V8Eqzyq1Hy9RrpMtUisjg.roa
File: Kaumx7V8Eqzyq1Hy9RrpMtUisjg.roa (raw, json)
Hash identifier: +fQP34ZyCTOrhsHk8B/qL+wxNiTsMBiOdKt1a5veD/k=
Subject key identifier: 29:AB:A6:C7:B5:7C:12:AC:F2:AB:51:F2:F5:1A:E9:32:D5:22:B2:38
Certificate issuer: /CN=f6eea10afacf3a9c26ea1b1ec488e955e4dfa06a
Certificate serial: 07F3D4D3
Authority key identifier: F6:EE:A1:0A:FA:CF:3A:9C:26:EA:1B:1E:C4:88:E9:55:E4:DF:A0:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9u6hCvrPOpwm6hsexIjpVeTfoGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/Kaumx7V8Eqzyq1Hy9RrpMtUisjg.roa
Signing time: Sat 01 Jan 2022 14:01:21 +0000
ROA not before: Sat 01 Jan 2022 14:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47902
IP address blocks: 84.247.192.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133420243 (0x7f3d4d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6eea10afacf3a9c26ea1b1ec488e955e4dfa06a
Validity
Not Before: Jan 1 14:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29aba6c7b57c12acf2ab51f2f51ae932d522b238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3f:bc:4e:7f:8f:57:7e:ef:52:b0:4d:84:29:
f0:80:d4:d0:94:18:a5:83:d5:46:5e:66:09:fd:e5:
08:a8:02:82:b6:74:c9:08:eb:30:6b:e0:21:2f:aa:
79:19:99:72:42:3d:32:eb:29:1e:77:51:2b:af:47:
98:2a:82:ec:2c:d3:7f:85:86:34:40:f2:f4:f4:d9:
c0:ec:a0:e8:10:1d:89:08:40:4c:2b:33:da:b4:5c:
13:76:05:05:48:46:19:73:09:9e:74:e5:f3:00:82:
c2:70:56:a5:b6:bc:43:4d:1b:eb:5b:f9:47:82:ac:
4c:db:da:64:d4:e8:79:d5:2c:03:6f:00:1a:99:54:
55:75:d1:3f:44:74:ee:35:9a:c6:80:b4:b6:96:24:
d9:04:5e:b7:d4:8a:e6:87:c4:d6:34:7d:5c:bd:e9:
48:ac:28:66:fd:e4:e9:33:77:01:97:8c:11:c3:78:
a3:3e:8a:02:0c:9a:48:d2:e6:1f:ac:75:a5:27:be:
f0:e6:9a:9d:99:19:5a:55:14:36:db:94:97:0a:c6:
2e:bf:c6:06:20:83:b1:e6:fa:b8:0a:ce:33:49:0f:
61:b9:54:39:66:f9:e9:f4:48:d3:83:e3:7d:86:d7:
9a:60:13:4a:f2:bf:cd:29:3c:01:1c:c8:65:17:35:
b4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AB:A6:C7:B5:7C:12:AC:F2:AB:51:F2:F5:1A:E9:32:D5:22:B2:38
X509v3 Authority Key Identifier:
keyid:F6:EE:A1:0A:FA:CF:3A:9C:26:EA:1B:1E:C4:88:E9:55:E4:DF:A0:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9u6hCvrPOpwm6hsexIjpVeTfoGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/Kaumx7V8Eqzyq1Hy9RrpMtUisjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6f5746-b406-4c05-9741-54d8f6b06b83/1/9u6hCvrPOpwm6hsexIjpVeTfoGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.192.0/20
Signature Algorithm: sha256WithRSAEncryption
39:b4:db:a4:5d:10:d5:3c:ca:f9:b6:b7:f1:c9:b4:22:47:e6:
92:74:b5:ce:f9:00:72:63:07:3c:3e:bb:7f:7f:9d:18:f8:44:
53:9a:e4:4f:31:52:8e:d2:62:54:8d:33:82:70:ba:04:de:ee:
ee:71:92:f4:6e:e0:5a:d0:5b:da:e3:d4:db:18:e8:60:6b:e6:
0d:32:04:f1:24:ca:89:7d:5e:5f:f4:0c:42:55:e9:db:0e:10:
22:e0:2e:d2:0e:a3:d2:af:f7:7a:9e:42:3f:f0:02:35:f4:54:
a1:15:76:79:5b:a3:3a:49:99:4c:56:b9:ad:13:ca:4e:c8:b8:
8e:47:10:bc:0a:23:73:7e:3f:28:ff:6a:0a:23:39:19:bd:6d:
6f:6d:71:8d:7c:5d:b8:43:97:a3:d6:30:76:20:8a:30:99:7c:
57:e7:38:b8:90:bd:6f:6c:b1:33:48:ed:fc:c7:ed:28:71:47:
b4:d1:14:e5:f0:19:82:5f:0c:b2:5b:e3:eb:89:93:52:ae:1c:
3d:6c:99:a2:af:95:68:cb:66:52:83:85:13:2d:ac:3a:8f:f7:
6a:c6:71:86:cb:5e:91:49:6f:f8:4d:59:a1:9a:61:97:e7:93:
e1:a7:f6:de:10:88:a9:b6:9b:74:51:9f:31:c1:f4:19:0d:e2:
2e:0c:79:9a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB/PU0zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NmVlYTEwYWZhY2YzYTljMjZlYTFiMWVjNDg4ZTk1NWU0ZGZhMDZhMB4XDTIyMDEw
MTE0MDEyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjlhYmE2YzdiNTdj
MTJhY2YyYWI1MWYyZjUxYWU5MzJkNTIyYjIzODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALc/vE5/j1d+71KwTYQp8IDU0JQYpYPVRl5mCf3lCKgCgrZ0
yQjrMGvgIS+qeRmZckI9MuspHndRK69HmCqC7CzTf4WGNEDy9PTZwOyg6BAdiQhA
TCsz2rRcE3YFBUhGGXMJnnTl8wCCwnBWpba8Q00b61v5R4KsTNvaZNToedUsA28A
GplUVXXRP0R07jWaxoC0tpYk2QRet9SK5ofE1jR9XL3pSKwoZv3k6TN3AZeMEcN4
oz6KAgyaSNLmH6x1pSe+8OaanZkZWlUUNtuUlwrGLr/GBiCDseb6uArOM0kPYblU
OWb56fRI04PjfYbXmmATSvK/zSk8ARzIZRc1tIUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQpq6bHtXwSrPKrUfL1Guky1SKyODAfBgNVHSMEGDAWgBT27qEK+s86nCbq
Gx7EiOlV5N+gajAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzl1NmhDdnJQT3B3bTZoc2V4SWpwVmVUZm9Hby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWUvNmY1NzQ2LWI0MDYtNGMwNS05NzQxLTU0ZDhmNmIwNmI4My8x
L0thdW14N1Y4RXF6eXExSHk5UnJwTXRVaXNqZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUv
NmY1NzQ2LWI0MDYtNGMwNS05NzQxLTU0ZDhmNmIwNmI4My8xLzl1NmhDdnJQT3B3
bTZoc2V4SWpwVmVUZm9Hby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBFT3wDANBgkqhkiG9w0BAQsFAAOC
AQEAObTbpF0Q1TzK+ba38cm0IkfmknS1zvkAcmMHPD67f3+dGPhEU5rkTzFSjtJi
VI0zgnC6BN7u7nGS9G7gWtBb2uPU2xjoYGvmDTIE8STKiX1eX/QMQlXp2w4QIuAu
0g6j0q/3ep5CP/ACNfRUoRV2eVujOkmZTFa5rRPKTsi4jkcQvAojc34/KP9qCiM5
Gb1tb21xjXxduEOXo9YwdiCKMJl8V+c4uJC9b2yxM0jt/MftKHFHtNEU5fAZgl8M
slvj64mTUq4cPWyZoq+VaMtmUoOFEy2sOo/3asZxhstekUlv+E1ZoZphl+eT4af2
3hCIqbabdFGfMcH0GQ3iLgx5mg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:52 2024 by rpki-client on console-fra.rpki-client.org