Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/1-Q68Qy3RnBLqQoPJqIwPcrDa7Yw.roa
File: 1-Q68Qy3RnBLqQoPJqIwPcrDa7Yw.roa (raw, json)
Hash identifier: g0a85FbBiAGcoca9YUsxNU9UTDqNKFEy0NVWTgSOo+Q=
Subject key identifier: F9:0E:BC:43:2D:D1:9C:12:EA:42:83:C9:A8:8C:0F:72:B0:DA:ED:8C
Certificate issuer: /CN=8c7f325f9aaeb93a83c39e78145c41937d586b77
Certificate serial: 08024906
Authority key identifier: 8C:7F:32:5F:9A:AE:B9:3A:83:C3:9E:78:14:5C:41:93:7D:58:6B:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jH8yX5quuTqDw554FFxBk31Ya3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/1-Q68Qy3RnBLqQoPJqIwPcrDa7Yw.roa
Signing time: Sat 01 Jan 2022 01:00:53 +0000
ROA not before: Sat 01 Jan 2022 01:00:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209287
IP address blocks: 82.199.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134367494 (0x8024906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7f325f9aaeb93a83c39e78145c41937d586b77
Validity
Not Before: Jan 1 01:00:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f90ebc432dd19c12ea4283c9a88c0f72b0daed8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e2:f8:41:73:74:91:b6:68:17:9a:14:e0:70:
06:8e:de:47:4f:e6:3a:cf:e1:99:db:6b:23:f5:32:
87:5f:36:77:ab:b0:33:f0:fc:3e:bc:a7:88:c5:90:
6c:fe:b3:04:42:08:93:fa:d5:2c:e1:1b:f8:3b:e5:
f9:3f:3e:4a:8d:91:43:ae:3c:cb:71:3d:b4:53:e7:
21:5c:bc:16:08:b9:f9:72:02:17:49:1a:2a:0e:ca:
84:0a:4a:49:27:34:6c:3e:9a:cf:d0:b2:7f:b0:1b:
ec:af:18:2a:5d:8e:75:b7:5b:89:e7:42:df:92:fb:
5f:31:bc:a1:e4:5e:a7:5f:1e:2a:5a:4c:e2:76:80:
91:6f:9c:55:19:ed:e4:56:00:4b:68:d6:3f:63:49:
09:18:b0:6b:af:a6:61:87:11:e7:ea:4e:a2:02:20:
d3:6c:c6:95:2e:5d:90:a9:8f:ff:38:51:0c:4e:de:
e3:b8:d2:77:41:06:e2:f3:01:ab:04:e0:74:13:99:
00:aa:04:5d:12:b6:de:a4:59:6c:9e:28:af:24:d6:
5e:69:5b:f1:7e:19:bd:a0:ed:43:0d:41:66:ae:89:
f8:a8:6b:6f:90:0d:0a:3e:4e:fe:d8:ac:5b:95:1b:
90:b5:aa:51:d7:a2:4b:2e:37:d1:f2:09:59:09:95:
05:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:0E:BC:43:2D:D1:9C:12:EA:42:83:C9:A8:8C:0F:72:B0:DA:ED:8C
X509v3 Authority Key Identifier:
keyid:8C:7F:32:5F:9A:AE:B9:3A:83:C3:9E:78:14:5C:41:93:7D:58:6B:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jH8yX5quuTqDw554FFxBk31Ya3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/1-Q68Qy3RnBLqQoPJqIwPcrDa7Yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/a4c294-6b52-484e-8265-fc2f5fa77555/1/jH8yX5quuTqDw554FFxBk31Ya3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.199.62.0/24
Signature Algorithm: sha256WithRSAEncryption
87:d3:cb:66:32:e5:8b:e5:57:f4:23:9f:ee:98:37:7a:39:ff:
c7:7f:e2:85:ee:cc:1f:76:33:7a:b7:65:14:41:4c:93:94:5b:
49:04:6d:f4:d3:8a:b6:12:db:72:9f:62:fe:ae:ec:b8:42:7c:
df:42:c6:fc:63:e3:25:38:e3:f8:9b:b8:5c:8b:eb:32:2f:61:
8c:ec:d1:a7:74:1e:c4:b9:2f:86:30:59:87:cc:ac:01:02:92:
38:69:ef:a4:3a:25:d6:ac:ab:01:7c:b1:1f:15:20:a3:5f:3e:
d9:3e:f4:a8:8b:63:2f:16:b0:23:30:0e:05:99:19:5d:9e:d0:
ba:23:fa:f5:81:97:b7:c8:99:cb:71:4a:03:7b:31:a3:bc:e1:
f7:e8:3f:7a:42:aa:69:5a:e8:75:2e:48:a3:8b:a9:c3:37:cd:
2c:cf:1e:9f:d7:c1:62:e0:8a:79:0e:74:c6:20:90:40:a2:88:
3b:4a:03:a2:20:4a:e4:9e:51:a3:9a:01:39:b8:71:94:44:a6:
17:fe:08:4e:d4:c0:3d:50:7b:0f:46:61:7d:bc:a7:fa:5d:da:
36:1e:c1:fd:5f:09:16:e5:cd:80:50:c7:4a:81:d1:84:c8:86:
44:6b:fd:f2:93:d5:ff:5b:f4:f4:10:85:38:86:c1:ac:b5:2b:
9c:6a:5a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:57 2024 by rpki-client on console-fra.rpki-client.org