Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/IcPfQrxrcaflUnnO8SxSdxMgfm0.roa
File: IcPfQrxrcaflUnnO8SxSdxMgfm0.roa (raw, json)
Hash identifier: Di7poB59fAuabwQKPiXxH5BI22Fin/XKyeNkEPrenTg=
Subject key identifier: 21:C3:DF:42:BC:6B:71:A7:E5:52:79:CE:F1:2C:52:77:13:20:7E:6D
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 154D7D52
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/IcPfQrxrcaflUnnO8SxSdxMgfm0.roa
Signing time: Sat 01 Jan 2022 13:56:57 +0000
ROA not before: Sat 01 Jan 2022 13:56:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34000
IP address blocks: 92.103.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357399890 (0x154d7d52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Jan 1 13:56:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21c3df42bc6b71a7e55279cef12c527713207e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:14:6a:05:f6:11:77:14:b1:e6:85:ea:d5:40:
39:66:40:c0:5f:e7:d5:c7:0e:6a:b2:b7:c9:51:a3:
d7:47:e8:b0:0b:a2:6d:ba:d1:ab:28:e6:17:24:d9:
9f:53:ac:63:c4:97:4c:05:f7:9e:4d:45:bf:3b:9c:
99:81:b6:5a:5e:e6:2c:a3:d5:a5:ff:2b:94:ac:26:
22:4f:f3:79:ea:a1:46:8e:e7:90:35:3a:36:40:b4:
ac:98:ea:ee:56:fb:38:15:24:2d:04:84:ee:05:bd:
8f:a3:81:92:1a:92:3a:de:63:d2:78:1d:5c:27:33:
4e:a8:76:04:61:03:dd:b6:66:72:6f:8b:8f:2b:d5:
41:ec:f4:46:20:a5:27:84:ef:94:6f:4f:9e:ba:17:
f2:44:43:bc:1c:46:d0:d3:4d:d4:23:a8:7d:71:6c:
55:3f:05:28:64:d1:f3:cb:30:5b:3d:f9:62:63:98:
09:29:32:5c:97:f8:62:95:f3:5e:e6:42:7d:c0:bd:
7e:c6:1e:07:a2:5d:d6:48:5f:fe:1a:61:65:a8:8b:
a0:7e:02:6c:31:cc:95:27:7f:ed:73:97:26:2e:ae:
e1:a6:11:94:2a:d9:4b:1d:b5:ec:7a:0e:ab:8e:85:
5e:92:32:fb:7e:b8:84:5a:8e:c4:fd:7e:bd:4d:db:
0b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C3:DF:42:BC:6B:71:A7:E5:52:79:CE:F1:2C:52:77:13:20:7E:6D
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/IcPfQrxrcaflUnnO8SxSdxMgfm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.103.224.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:b0:b4:ef:fc:5a:94:41:02:22:16:ac:45:cd:b5:01:2a:ca:
82:a7:43:96:7d:76:4b:ec:52:c5:51:8c:d2:f5:0d:0e:60:e8:
fa:9e:11:3f:5d:19:55:b0:6b:41:ed:59:9d:bb:c9:43:69:c0:
5a:59:83:21:ac:fc:cf:29:c9:6b:87:6f:8b:29:14:d3:a4:4b:
da:7e:1d:63:0b:af:1c:58:b0:ea:bd:3a:d6:65:aa:fc:73:3d:
7d:b5:6e:ad:ee:c4:6a:3f:b7:5f:65:48:fa:06:97:22:ad:b4:
2c:2b:5d:36:1d:9a:34:47:d0:df:10:de:27:f6:47:d9:af:f1:
df:8b:1b:bc:d3:f4:1a:16:61:0c:a1:48:a3:1d:b2:a7:81:c6:
70:3b:e4:2f:ee:a0:b6:0d:99:f3:e2:02:b5:b7:9f:ea:a6:02:
29:f7:c1:33:c5:6b:8b:7e:4c:92:64:54:9b:84:58:96:bf:90:
47:c9:f0:b9:6f:33:33:0a:3d:e4:74:29:bc:08:1b:75:e0:2f:
86:0c:c5:7e:b7:6e:be:66:3b:72:ab:cc:c9:bd:76:35:42:4e:
08:df:f4:b1:38:5c:06:0c:a6:8e:1e:07:6a:9d:5d:24:1d:ab:
63:61:75:85:8c:2c:de:b0:86:e2:5e:6a:1b:e0:db:ae:25:b5:
f0:fe:4c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:59 2024 by rpki-client on console-ams.rpki-client.org