Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/wRD6aw4qxh2nRyWAIetJe8cvWK4.roa
File: wRD6aw4qxh2nRyWAIetJe8cvWK4.roa (raw, json)
Hash identifier: zdU5FP45DWhlaM2nuMGS3Nzb/zPMqP9UMiOXg9t1ho8=
Subject key identifier: C1:10:FA:6B:0E:2A:C6:1D:A7:47:25:80:21:EB:49:7B:C7:2F:58:AE
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 02913EFE
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/wRD6aw4qxh2nRyWAIetJe8cvWK4.roa
Signing time: Sat 01 Jan 2022 13:03:04 +0000
ROA not before: Sat 01 Jan 2022 13:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400040
IP address blocks: 86.104.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43073278 (0x2913efe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 1 13:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c110fa6b0e2ac61da747258021eb497bc72f58ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d1:e0:04:71:d1:67:dc:18:5d:45:0f:19:77:
f6:2a:c1:ee:5c:ca:73:fc:41:7a:f8:32:30:0a:fe:
ec:a9:77:54:d3:27:72:fb:0d:c3:05:a5:bd:6d:e9:
77:d0:aa:a8:df:e1:c9:6f:0d:38:b5:16:ed:03:49:
4b:32:e4:c2:d2:dd:cb:f4:35:b1:ad:2d:d5:c5:ab:
38:fc:0e:96:8f:05:20:32:eb:68:be:05:18:a1:a7:
ff:57:09:65:0f:9d:9b:d0:3c:2a:44:d1:dd:09:fc:
a5:e0:01:1b:7d:60:1f:07:78:0a:b4:65:7f:08:c6:
04:08:fa:95:31:89:1a:3d:0b:7a:56:62:a4:c3:b7:
63:bf:d3:62:5b:a6:29:5a:cf:cf:cc:a0:0f:f8:81:
91:85:35:f8:6d:9b:d8:c4:20:20:77:b5:fd:f4:63:
ac:0e:17:91:30:36:1c:ca:cc:6a:bc:1a:1a:65:ca:
75:08:99:41:91:b6:f1:7f:05:ee:f2:e1:9d:b9:20:
2e:85:ff:0d:f7:8c:5a:c1:c7:54:7e:a0:68:a3:e0:
aa:01:70:f3:f2:3e:07:34:68:87:db:00:8b:71:1f:
f4:51:71:91:40:80:1e:f3:ab:2a:a4:2b:95:d1:cf:
bd:4c:98:b4:a4:e8:54:d9:ff:80:fb:d2:50:ed:d0:
e0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:10:FA:6B:0E:2A:C6:1D:A7:47:25:80:21:EB:49:7B:C7:2F:58:AE
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/wRD6aw4qxh2nRyWAIetJe8cvWK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.209.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:67:cf:3a:bf:8e:83:95:a8:0e:0a:25:bb:5c:b1:15:35:60:
6b:36:13:7e:81:c9:91:4a:08:15:3e:2b:8b:ad:0a:19:84:2b:
50:0c:c1:8e:67:f7:5f:d5:4f:a8:76:72:c4:30:3e:fd:72:f9:
b1:26:a2:4f:24:16:82:09:d3:fa:e4:d4:5e:34:b6:43:b7:1f:
96:b4:1e:03:5a:a6:97:6d:33:38:d7:d9:ab:a5:54:8b:21:22:
07:2b:cc:4f:11:32:41:86:fc:12:61:c2:56:46:fe:c6:db:e9:
bd:b8:5a:2d:dc:c1:92:c7:65:f7:81:71:eb:4d:32:47:dc:f9:
a4:cd:64:e1:b8:46:cd:71:0a:eb:a6:5d:80:4c:27:25:c8:48:
ad:bf:00:f4:c6:62:84:6c:c1:77:2d:aa:76:87:91:25:55:64:
01:09:f9:db:35:97:9a:8a:66:e4:d7:71:8d:e8:43:fb:a5:e1:
24:08:f3:57:44:f9:6a:ec:ec:b8:a9:58:45:84:49:32:b8:1c:
1f:c6:a4:1c:62:41:9f:85:48:6a:90:16:83:24:02:03:dc:3d:
c2:7a:68:61:86:bf:33:1f:bc:7e:3d:d4:1a:40:41:2a:54:1d:
41:37:15:2d:84:dd:b2:73:64:1f:25:a6:c1:47:70:21:1e:f2:
3c:e9:84:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:05 2023 by rpki-client on console-fra.rpki-client.org