Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/h37xhCK_QFBZamaJuRM5ZAtp5hs.roa
File: h37xhCK_QFBZamaJuRM5ZAtp5hs.roa (raw, json)
Hash identifier: waemwoOYmm+L2tdjrwEY7neZK3naZOk1kKeywurDxt4=
Subject key identifier: 87:7E:F1:84:22:BF:40:50:59:6A:66:89:B9:13:39:64:0B:69:E6:1B
Certificate issuer: /CN=b9df156ee18b6958d4306b6311b4a086763eff62
Certificate serial: 03A18B2E
Authority key identifier: B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/h37xhCK_QFBZamaJuRM5ZAtp5hs.roa
Signing time: Fri 11 Mar 2022 15:51:41 +0000
ROA not before: Fri 11 Mar 2022 15:51:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12779
IP address blocks: 86.105.14.0/24 maxlen: 24
2a0c:79c0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60918574 (0x3a18b2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9df156ee18b6958d4306b6311b4a086763eff62
Validity
Not Before: Mar 11 15:51:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=877ef18422bf4050596a6689b91339640b69e61b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f8:be:8b:be:ce:e8:60:5a:3c:2c:11:c1:e4:
21:f8:a2:0d:d0:95:06:a7:84:84:7b:15:17:3d:09:
75:bc:ca:e5:cb:e1:4d:ff:a4:34:ab:c6:5b:6a:84:
96:79:ea:dc:0f:d5:3d:3e:66:dd:d4:f2:74:e2:45:
c1:64:5f:27:f6:83:ea:4d:a8:58:b3:ff:76:c3:25:
53:a4:24:e9:bc:90:23:3d:e1:99:b5:9d:3f:64:5f:
c5:f8:aa:e0:e6:5a:c3:5a:cd:dc:bb:a1:c3:1f:38:
e9:a0:90:b0:b4:6d:de:c8:10:ea:3e:bc:62:7d:ee:
39:7b:e1:09:51:63:9e:04:5e:66:f6:c4:90:45:08:
39:f2:dd:e2:57:57:1c:f2:89:dd:74:89:67:ae:e7:
32:a4:b2:37:18:f9:68:2f:2e:dd:b8:a9:05:1b:eb:
40:ed:0d:8e:60:06:28:b3:4d:0d:f3:8b:99:1f:45:
af:89:5f:8d:72:40:5e:bc:ea:6a:14:01:c0:b4:a6:
1a:22:da:ad:33:f3:58:84:ea:af:f0:6a:ca:ec:b2:
ce:53:a5:ac:f7:c6:55:ad:54:9b:c6:0e:97:8f:4f:
d3:9a:19:16:cf:d3:0e:e6:58:99:d4:c8:ef:34:73:
b3:1f:a0:43:39:e3:fa:97:ac:67:1b:59:d6:51:1a:
27:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:7E:F1:84:22:BF:40:50:59:6A:66:89:B9:13:39:64:0B:69:E6:1B
X509v3 Authority Key Identifier:
keyid:B9:DF:15:6E:E1:8B:69:58:D4:30:6B:63:11:B4:A0:86:76:3E:FF:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ud8VbuGLaVjUMGtjEbSghnY-_2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/h37xhCK_QFBZamaJuRM5ZAtp5hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d6461f-17e3-4986-a5f6-72a4b3a9bb44/1/ud8VbuGLaVjUMGtjEbSghnY-_2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.14.0/24
IPv6:
2a0c:79c0:2::/48
Signature Algorithm: sha256WithRSAEncryption
c8:00:b9:e1:ca:17:12:66:74:ea:12:c9:c5:91:3b:e3:ad:b9:
a1:89:4b:0f:ee:15:1f:fe:19:53:1f:d7:99:61:55:48:f5:f2:
fa:af:52:83:77:93:a1:84:ab:56:e8:a6:8b:c4:1a:13:a4:52:
c5:69:c5:93:65:4c:09:17:74:76:a6:8d:ee:5d:d4:da:08:37:
47:f9:3c:73:7b:d6:f8:df:fe:33:79:21:05:3d:f4:1e:d9:90:
90:d4:6c:09:e7:d0:97:0e:b6:fd:7f:5e:cc:0d:00:0f:9d:de:
53:46:8b:f8:d1:87:49:e2:e8:94:f9:2c:c3:24:8c:b4:eb:a8:
fa:a2:45:d4:71:e5:49:c6:e4:d5:ae:a3:a2:68:14:c7:05:6e:
b6:69:77:1b:4e:c9:2d:24:c9:e4:8a:e1:4d:69:b4:c0:92:89:
83:9f:67:bf:3d:c8:a6:3f:ed:ae:26:63:ab:75:65:dd:c7:4f:
c5:94:d6:69:8c:e3:03:4d:aa:45:60:28:87:43:42:db:7f:97:
f5:85:28:06:11:43:06:f7:7e:17:e6:9c:d5:c5:1b:13:91:a6:
96:b0:50:15:2b:d0:6d:35:cd:ac:4c:46:5b:84:6b:c8:fa:fc:
4f:c3:b9:81:1a:04:35:7a:58:a3:bd:a0:c8:cf:b3:c8:fe:a4:
d6:41:2e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:01 2023 by rpki-client on console.sobornost.net