Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/1f96cc-5ea6-49e3-8f5f-30e929ed1063/1/DGtChBmBgNoD5EhQUHUcIy1-Abk.roa
File: DGtChBmBgNoD5EhQUHUcIy1-Abk.roa (raw, json)
Hash identifier: K3iyYtHNZPLA2NMqixyHe75gFxNBWqd5RQhqjIutrjE=
Subject key identifier: 0C:6B:42:84:19:81:80:DA:03:E4:48:50:50:75:1C:23:2D:7E:01:B9
Certificate issuer: /CN=25a553794223e6b4c632779b51371dc4e7d70705
Certificate serial: 0183832E3A7992D658383E1DC1B9A3BF86F4
Authority key identifier: 25:A5:53:79:42:23:E6:B4:C6:32:77:9B:51:37:1D:C4:E7:D7:07:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JaVTeUIj5rTGMnebUTcdxOfXBwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/1f96cc-5ea6-49e3-8f5f-30e929ed1063/1/DGtChBmBgNoD5EhQUHUcIy1-Abk.roa
Signing time: Wed 28 Sep 2022 08:19:48 +0000
ROA not before: Wed 28 Sep 2022 08:19:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201471
IP address blocks: 176.223.250.0/23 maxlen: 23
176.223.248.0/23 maxlen: 24
84.40.0.0/20 maxlen: 24
84.40.32.0/21 maxlen: 24
2001:67c:4dc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:83:2e:3a:79:92:d6:58:38:3e:1d:c1:b9:a3:bf:86:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25a553794223e6b4c632779b51371dc4e7d70705
Validity
Not Before: Sep 28 08:19:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c6b4284198180da03e4485050751c232d7e01b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b3:e5:9a:a6:70:77:2a:21:88:54:ea:17:b4:
62:9f:09:77:cb:67:78:10:dc:b3:49:b3:4c:16:ce:
35:92:f7:c6:6c:8a:ab:30:ed:af:30:ed:4d:0a:01:
e4:a4:1a:ef:5f:18:cf:d3:64:cd:ce:db:c5:c4:ea:
51:ba:c2:b3:4c:c8:3f:38:30:f0:36:5f:ca:a7:2b:
75:ad:9e:2b:23:d0:76:45:30:0b:3b:a6:6a:ef:a1:
5b:bb:0a:c2:6b:0f:7d:68:3c:74:85:83:86:05:d2:
f9:2d:b2:63:4c:46:78:35:7e:1b:4b:38:60:90:1b:
6c:a2:ad:cc:66:82:01:eb:60:e7:eb:17:24:f0:8a:
2a:30:08:64:c4:86:fe:7f:6a:03:71:8b:87:2e:2f:
f4:f4:b5:67:80:0c:44:7a:7c:fb:0b:ab:53:0a:a3:
5b:eb:a8:26:26:b5:56:1b:e0:1d:b5:2f:dc:77:78:
30:f5:d2:fd:65:a3:ec:99:e9:aa:86:28:e0:13:6d:
1e:99:99:2b:24:98:87:51:9d:2d:0f:7b:4d:17:37:
ca:13:ff:45:39:f2:e2:cf:86:27:00:87:cc:a9:82:
e9:f0:74:98:9c:fc:d9:f1:44:dc:78:89:14:bd:02:
8c:35:b0:9a:57:08:ff:eb:b1:f3:57:ce:f2:ee:f0:
09:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6B:42:84:19:81:80:DA:03:E4:48:50:50:75:1C:23:2D:7E:01:B9
X509v3 Authority Key Identifier:
keyid:25:A5:53:79:42:23:E6:B4:C6:32:77:9B:51:37:1D:C4:E7:D7:07:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JaVTeUIj5rTGMnebUTcdxOfXBwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/1f96cc-5ea6-49e3-8f5f-30e929ed1063/1/DGtChBmBgNoD5EhQUHUcIy1-Abk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/1f96cc-5ea6-49e3-8f5f-30e929ed1063/1/JaVTeUIj5rTGMnebUTcdxOfXBwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.40.0.0/20
84.40.32.0/21
176.223.248.0/22
IPv6:
2001:67c:4dc::/48
Signature Algorithm: sha256WithRSAEncryption
0f:98:19:26:e4:f0:38:f9:f7:d2:68:ff:09:f2:c1:5b:3d:4b:
27:49:a8:33:97:04:9c:c5:c5:4b:37:e6:41:d5:17:4f:e5:64:
bd:e7:d7:0d:e8:70:45:12:a6:1c:2d:6d:a8:80:b2:8c:dd:25:
fd:f3:7f:72:b7:93:33:1b:af:e8:0c:6b:b8:2b:62:95:b1:6c:
b6:54:9e:ce:7e:fd:5c:36:d1:20:fa:9c:d0:e0:94:fb:f0:4e:
6a:d4:64:64:8d:e7:31:b4:0d:a1:77:23:44:00:d3:98:4f:e5:
e2:49:2a:af:f2:ce:88:62:fb:c9:be:7d:b0:18:7e:29:7f:84:
5b:ba:4c:88:f2:1a:bc:45:6a:4f:17:b4:31:1b:b5:c2:5f:13:
5d:9b:c4:71:31:63:74:5b:eb:3f:c6:42:4d:9e:cd:28:8f:18:
34:f8:47:14:8e:19:d1:0d:7f:75:6e:4a:75:19:48:b7:72:44:
b7:80:f2:8a:23:7e:ca:22:0c:4f:1a:7e:1a:25:36:b7:57:35:
55:96:8c:db:1d:ea:2c:1c:f1:77:a6:af:f7:cf:cd:15:43:8a:
45:bf:90:e4:6d:f6:c5:b3:1d:f0:2d:3e:29:88:a8:96:c2:a4:
bc:77:2b:37:03:ad:87:62:35:ec:87:fd:f3:bd:2f:ee:e6:f1:
0c:ce:6f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:53 2024 by rpki-client on console-fra.rpki-client.org