Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/kqfiBcfnOBfGIp5F2-GO-A9XwUs.roa
File: kqfiBcfnOBfGIp5F2-GO-A9XwUs.roa (raw, json)
Hash identifier: caaqk9ao3ubU33C0jWtpYYbmZkZjN/D5axtAlo6PLmg=
Subject key identifier: 92:A7:E2:05:C7:E7:38:17:C6:22:9E:45:DB:E1:8E:F8:0F:57:C1:4B
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 018437EA44C4E20B9DEA6E050FAA77C57465
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/kqfiBcfnOBfGIp5F2-GO-A9XwUs.roa
Signing time: Wed 02 Nov 2022 10:36:50 +0000
ROA not before: Wed 02 Nov 2022 10:36:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211090
IP address blocks: 176.222.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:37:ea:44:c4:e2:0b:9d:ea:6e:05:0f:aa:77:c5:74:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Nov 2 10:36:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92a7e205c7e73817c6229e45dbe18ef80f57c14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:bd:4c:72:8b:4a:48:fb:98:b8:10:37:6a:09:
4c:3f:ba:4a:86:a1:75:4f:4e:99:b0:10:f2:2d:4d:
54:59:d0:8b:16:c1:f1:b9:b3:c9:5b:34:d5:08:63:
b7:37:0e:28:69:5c:db:39:cf:ea:71:cb:a3:5c:5d:
78:9c:f4:2a:a3:64:4f:a6:88:29:7e:72:37:f3:50:
d4:67:e0:a4:e5:09:16:90:d5:ed:42:df:51:0e:eb:
54:5c:60:7e:7d:a4:df:5c:d6:1c:e1:29:61:95:9b:
bc:a8:41:9a:4f:5e:f3:9c:84:1c:3a:a5:bd:22:66:
ec:24:3b:b8:10:54:43:26:68:aa:ac:4b:ca:b5:8a:
1d:28:d2:f9:3b:b5:e9:e8:88:41:49:ff:22:b9:9f:
c9:20:a0:08:c8:8f:6b:31:a5:16:ba:8a:80:75:c8:
2e:7b:3d:bf:a6:a3:e5:cc:1e:41:2e:fa:41:e2:f9:
cc:5c:27:63:9a:5d:04:f8:15:73:4c:39:66:99:60:
78:6b:13:4e:3c:1b:c0:8e:94:c7:ca:20:59:a8:23:
ad:4e:8b:ad:05:aa:1a:1e:79:a9:d3:5d:9f:85:e0:
1d:c7:16:9a:43:2c:45:2a:30:1b:c0:26:5c:c6:a3:
3b:75:0d:ed:8c:f0:e6:32:b5:9f:9f:e9:91:31:3e:
9e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A7:E2:05:C7:E7:38:17:C6:22:9E:45:DB:E1:8E:F8:0F:57:C1:4B
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/kqfiBcfnOBfGIp5F2-GO-A9XwUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.222.62.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:4d:e6:f5:b1:ea:76:28:aa:8a:51:b8:88:98:7b:72:ee:df:
c0:9a:a0:66:59:5f:73:eb:e8:41:ce:88:f5:0c:99:4d:91:5f:
c5:28:49:e8:42:b8:46:c6:fe:7f:44:44:57:3b:d9:a4:87:4d:
a5:4d:ad:f4:4f:37:88:dc:7d:32:2d:8e:1c:65:66:f9:b6:d9:
82:ca:0a:2b:c6:7e:12:64:bb:22:c7:e2:e8:da:6b:72:84:53:
00:1f:27:e8:11:90:1b:b0:7f:4b:af:7e:6a:37:d1:06:80:30:
84:1d:bc:3d:72:3d:d5:c6:b7:9e:ae:a3:35:9d:76:37:ac:39:
92:64:b1:5c:08:fb:be:63:df:c8:78:45:bb:c9:7b:ad:89:b5:
78:f5:36:b4:c6:02:9c:dc:15:08:50:b2:98:10:25:c7:2d:1a:
a0:6c:21:fd:29:e6:f0:2d:c3:7b:03:94:fa:cb:71:ed:d6:17:
e1:46:b7:ae:36:fd:96:67:bc:72:1d:5a:b0:8f:3e:0e:c0:00:
b9:57:b7:3e:8f:d7:e7:64:84:4a:90:e0:bd:64:05:72:eb:eb:
7a:df:11:27:ca:6f:23:0e:a2:cd:cb:a3:84:8b:27:fc:d1:8e:
01:29:c7:a2:aa:c8:35:04:75:63:c7:b1:df:7e:dc:63:ac:20:
24:73:27:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:00 2024 by rpki-client on console-fra.rpki-client.org