Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/7d2f34-affd-4d1c-b416-aac2ebcbf5d4/1/UwFQgkW1_PobN2BXqmNFxg9ap_s.roa
File: UwFQgkW1_PobN2BXqmNFxg9ap_s.roa (raw, json)
Hash identifier: 8Gz0q1UC2Cu5ALVQ/No6IJDcovM9oXkAUmnJd4uPTzo=
Subject key identifier: 53:01:50:82:45:B5:FC:FA:1B:37:60:57:AA:63:45:C6:0F:5A:A7:FB
Certificate issuer: /CN=3616ab18e6bcede0850bcaaebd959993e84086eb
Certificate serial: 0AACF19F
Authority key identifier: 36:16:AB:18:E6:BC:ED:E0:85:0B:CA:AE:BD:95:99:93:E8:40:86:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NharGOa87eCFC8quvZWZk-hAhus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/7d2f34-affd-4d1c-b416-aac2ebcbf5d4/1/UwFQgkW1_PobN2BXqmNFxg9ap_s.roa
Signing time: Sat 01 Jan 2022 05:57:23 +0000
ROA not before: Sat 01 Jan 2022 05:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 158.196.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179106207 (0xaacf19f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3616ab18e6bcede0850bcaaebd959993e84086eb
Validity
Not Before: Jan 1 05:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5301508245b5fcfa1b376057aa6345c60f5aa7fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4f:04:d8:7f:60:7d:fe:14:b3:30:be:1d:7d:
a7:a5:48:65:22:94:ea:9d:bb:f2:73:f1:f8:5b:d0:
cd:51:38:30:3e:17:4d:6b:63:8a:9e:3b:0f:34:4f:
4a:b5:65:a3:d1:83:b3:b6:a5:76:02:8d:18:d2:27:
f9:6c:f6:77:b0:ed:c6:fb:d3:e8:a2:47:13:fc:40:
c9:76:c1:69:7a:a8:57:d4:7d:f3:f5:c4:48:75:e5:
1f:e9:13:5d:af:3f:99:3e:c2:93:92:2b:50:50:38:
04:49:df:e3:15:18:74:b2:a1:2e:26:1f:fe:47:52:
15:01:e7:20:73:95:b2:21:96:56:62:89:6c:30:9e:
75:f2:3e:ce:bc:4a:45:c2:93:ac:f6:1d:8b:c0:74:
f4:cb:60:41:76:5d:c6:b4:b0:0b:8a:e5:0d:d5:d7:
a3:f2:15:bf:75:50:3b:af:b7:f4:19:a1:50:15:41:
2b:6b:6d:c8:00:c3:91:c3:16:1b:04:30:db:2c:59:
6e:59:bd:18:19:4d:3a:e7:53:31:48:4d:6b:c9:61:
0c:4a:c2:a6:06:1e:b3:4a:e4:44:96:95:62:cf:a4:
ca:cb:64:8b:fd:28:3e:00:d1:33:15:dc:43:e5:15:
82:6b:98:82:13:0a:ff:23:0a:16:9f:91:55:a5:11:
09:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:01:50:82:45:B5:FC:FA:1B:37:60:57:AA:63:45:C6:0F:5A:A7:FB
X509v3 Authority Key Identifier:
keyid:36:16:AB:18:E6:BC:ED:E0:85:0B:CA:AE:BD:95:99:93:E8:40:86:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NharGOa87eCFC8quvZWZk-hAhus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7d2f34-affd-4d1c-b416-aac2ebcbf5d4/1/UwFQgkW1_PobN2BXqmNFxg9ap_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7d2f34-affd-4d1c-b416-aac2ebcbf5d4/1/NharGOa87eCFC8quvZWZk-hAhus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.196.0.0/16
Signature Algorithm: sha256WithRSAEncryption
01:57:c1:a8:7a:f0:51:08:2c:03:f2:c8:1f:4e:dd:61:db:63:
f9:51:16:ea:79:91:11:37:7a:6d:4c:ff:c3:c9:f2:1d:3c:a0:
1b:31:d5:ae:f1:b7:57:07:24:e1:3c:48:89:74:6e:58:be:b9:
d3:fd:b2:5f:60:5b:9e:75:84:d1:3d:49:04:e3:6d:11:a3:55:
7e:43:0a:b7:5b:5e:11:27:d8:cc:81:63:e2:66:28:89:44:70:
0c:f6:13:6a:17:16:fd:7d:74:88:44:e2:35:30:ca:1d:10:1b:
41:11:40:a3:e4:c6:50:c6:84:fd:01:a1:6d:5d:e1:5b:e2:fd:
c6:38:46:21:ac:f2:c6:fc:a7:0c:c0:d7:54:37:ba:2b:17:38:
c0:7f:4d:a5:52:46:b6:a7:f2:ca:f4:0d:c3:5f:96:ef:7c:18:
ed:55:ac:af:24:4c:93:f2:4d:f4:2b:89:5d:67:e5:a1:22:84:
14:41:6b:46:8e:e1:90:0c:14:1d:e4:a4:9d:0d:6e:6e:e8:0e:
66:66:5e:54:23:90:12:4d:67:ab:3e:aa:1d:24:72:52:39:48:
60:58:cf:1e:ae:9a:20:9a:96:2d:a2:5f:4a:a7:9c:49:96:a5:
f6:31:ca:00:b3:d7:be:66:bb:5a:2b:d9:b2:85:85:78:10:a3:
b7:78:af:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:19 2024 by rpki-client on console-fra.rpki-client.org