Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/a-oy3sk-9dzzCZ1yMKQC3sEX6i4.roa
File: a-oy3sk-9dzzCZ1yMKQC3sEX6i4.roa (raw, json)
Hash identifier: 4/pDjdz/VpgETicbNnYUrH2y4FlZHuQsnJyZ/0OdYP8=
Subject key identifier: 6B:EA:32:DE:C9:3E:F5:DC:F3:09:9D:72:30:A4:02:DE:C1:17:EA:2E
Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Certificate serial: 292AF707
Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/a-oy3sk-9dzzCZ1yMKQC3sEX6i4.roa
Signing time: Sat 01 Jan 2022 12:07:04 +0000
ROA not before: Sat 01 Jan 2022 12:07:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61227
IP address blocks: 176.110.116.0/23 maxlen: 23
2001:67c:1070::/47 maxlen: 47
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 690681607 (0x292af707)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Validity
Not Before: Jan 1 12:07:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bea32dec93ef5dcf3099d7230a402dec117ea2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b5:3f:23:db:26:fa:45:c3:ce:cd:7c:21:9e:
25:04:ee:f1:53:0b:a2:a6:d7:b0:8a:b0:a0:74:78:
0b:e8:11:4e:31:d8:ce:7d:3b:6d:3e:1a:af:f6:2d:
d5:f7:55:23:74:4a:6b:08:21:12:59:bc:4f:52:02:
aa:59:9c:02:92:2d:fd:1f:48:fe:f0:49:05:35:0e:
1f:f3:f9:67:cf:75:ef:ce:63:25:3c:3b:19:99:50:
1f:da:b4:09:84:cc:63:f1:f3:f4:ba:cd:32:d1:be:
f1:95:08:f5:0f:fd:b1:13:3f:3e:68:91:41:d6:64:
08:02:00:05:06:a5:65:27:76:3a:70:65:08:28:c5:
3f:7e:6f:0c:53:6c:fc:45:2b:b3:97:9b:d1:5f:46:
97:5d:38:27:66:f7:09:eb:52:f3:65:01:e8:8c:09:
eb:79:df:a3:7a:c0:ca:4f:ac:84:17:35:74:3f:2a:
94:10:3c:4a:a3:b5:69:f9:55:20:e7:37:7b:fb:2d:
2a:b0:5a:0d:e7:10:f9:b6:e2:37:1d:10:d5:7b:36:
d4:45:86:d5:d1:02:24:10:2a:72:64:81:06:6c:c1:
e1:07:a6:54:52:22:7a:b2:c2:0d:55:ae:7b:5f:db:
32:31:db:74:9c:ab:3a:0e:aa:0c:04:01:21:6b:b2:
9b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EA:32:DE:C9:3E:F5:DC:F3:09:9D:72:30:A4:02:DE:C1:17:EA:2E
X509v3 Authority Key Identifier:
keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/a-oy3sk-9dzzCZ1yMKQC3sEX6i4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.110.116.0/23
IPv6:
2001:67c:1070::/47
Signature Algorithm: sha256WithRSAEncryption
83:23:2b:e4:4a:e9:25:d1:4c:71:6c:71:fd:b3:58:ff:f6:ee:
0a:08:20:28:d7:e0:25:cb:55:f7:09:2b:9c:3a:d0:10:8b:3a:
2b:df:b9:c5:0f:b4:65:06:1e:4f:1b:75:b6:67:b7:70:71:a1:
09:d6:b4:0a:70:33:9b:fe:e3:1b:19:be:9e:73:42:75:a1:16:
d6:d1:0c:f3:ab:03:b9:8f:45:ad:12:56:74:bd:22:eb:22:cc:
da:8d:ed:7c:b1:20:85:c7:5e:fc:a4:ac:00:ce:02:85:3d:8d:
da:17:78:4f:c9:96:b1:43:cd:0c:54:c8:02:98:46:5a:7f:3a:
01:97:c3:40:59:37:d0:2c:1f:26:b3:aa:d9:ae:2d:33:77:32:
6c:4e:19:22:51:e3:3d:9a:39:14:11:c5:23:25:e7:86:f6:ef:
98:20:a4:8a:f4:c2:cc:82:a2:b4:f1:1d:70:85:7a:77:ba:c1:
7a:25:68:de:71:c3:91:2d:ff:4a:14:ff:f1:31:7c:fb:72:a7:
92:21:a2:7b:ab:ec:c3:79:a7:92:3f:0f:af:b1:44:c9:dd:dd:
bc:96:8c:72:7e:9a:62:dd:88:94:0c:36:93:9c:b5:d3:08:3b:
77:b1:10:27:d9:d0:ff:e4:5e:a7:15:66:52:5a:92:cf:3a:29:
21:dc:26:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org