Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/SMgClJ5qif0stP2fG8d-ndgRYnA.roa
File: SMgClJ5qif0stP2fG8d-ndgRYnA.roa (raw, json)
Hash identifier: gMuZlugXxSUKScB/99gboKAGgv9nvu62kclcZxdh8TI=
Subject key identifier: 48:C8:02:94:9E:6A:89:FD:2C:B4:FD:9F:1B:C7:7E:9D:D8:11:62:70
Certificate issuer: /CN=427ce5719caa681adbd493a8d9a38a675d6bd639
Certificate serial: 1982276F
Authority key identifier: 42:7C:E5:71:9C:AA:68:1A:DB:D4:93:A8:D9:A3:8A:67:5D:6B:D6:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QnzlcZyqaBrb1JOo2aOKZ11r1jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/SMgClJ5qif0stP2fG8d-ndgRYnA.roa
Signing time: Sat 01 Jan 2022 03:54:45 +0000
ROA not before: Sat 01 Jan 2022 03:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 176.52.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 427960175 (0x1982276f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427ce5719caa681adbd493a8d9a38a675d6bd639
Validity
Not Before: Jan 1 03:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48c802949e6a89fd2cb4fd9f1bc77e9dd8116270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cf:44:d2:9d:c9:e7:fa:ee:11:70:84:2a:18:
57:54:59:fc:4a:42:a5:f3:f9:bb:56:e0:e6:ae:b6:
c5:8c:28:b7:03:f2:4e:3d:e4:ae:48:d4:81:31:97:
c2:c0:dc:09:de:01:db:25:b3:8c:f0:a8:6c:a2:f4:
0c:b8:fa:c9:ca:8b:8c:e8:53:6b:c4:31:0a:ac:11:
7b:15:e5:68:d4:26:5e:b3:76:b6:a5:01:ba:44:84:
2d:5c:65:27:a6:58:0c:ef:55:70:0b:60:32:13:52:
ba:bb:3a:20:2a:28:36:4c:29:24:a0:6c:fe:a1:84:
6e:1c:38:c0:10:7c:14:e2:3b:5e:4d:85:84:88:53:
48:e4:ab:7f:bb:5d:7c:38:aa:3e:5d:7c:6e:ae:f3:
92:a6:3f:f4:af:d5:35:fb:76:fd:1f:bd:07:cf:53:
10:be:e0:a5:d9:0b:bb:bb:55:73:e2:6a:43:19:e8:
3f:38:dd:93:a5:74:a7:53:8f:63:ce:b9:33:15:2a:
64:7b:75:a8:48:51:bd:9d:e2:9e:ba:63:1e:c8:5d:
d7:68:7f:98:b8:bf:8a:37:ab:9d:ef:8d:2f:f3:50:
7f:ef:aa:87:dc:fd:36:e8:66:7d:b7:4b:af:89:09:
2c:72:4e:79:a9:67:90:24:f5:b9:be:90:98:49:ff:
b8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C8:02:94:9E:6A:89:FD:2C:B4:FD:9F:1B:C7:7E:9D:D8:11:62:70
X509v3 Authority Key Identifier:
keyid:42:7C:E5:71:9C:AA:68:1A:DB:D4:93:A8:D9:A3:8A:67:5D:6B:D6:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QnzlcZyqaBrb1JOo2aOKZ11r1jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/SMgClJ5qif0stP2fG8d-ndgRYnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/QnzlcZyqaBrb1JOo2aOKZ11r1jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.52.187.0/24
Signature Algorithm: sha256WithRSAEncryption
80:c6:13:77:e9:2b:0d:0d:3c:f2:e3:7a:10:8e:be:2f:37:67:
73:8a:47:f3:4e:19:34:01:c3:46:1d:a3:03:0a:e1:1c:a2:75:
7f:80:3f:b8:58:62:e3:77:07:1b:a0:92:62:80:06:d3:7c:3e:
34:0a:cc:33:b0:e6:8c:fb:00:a3:6e:60:05:13:b2:29:03:d3:
9f:44:b4:44:f8:91:68:42:d2:6f:26:56:df:74:d1:a0:68:7d:
3c:a9:c6:b9:f2:0a:12:3c:ea:41:4a:d3:96:14:e9:c6:82:66:
4a:f8:b5:30:67:05:ed:31:96:64:4b:5b:7b:93:df:54:41:05:
cd:6e:20:2f:cf:cb:b9:ed:80:2a:18:c2:a7:e3:22:aa:b2:1d:
72:c2:3b:52:b9:7f:e0:8b:98:7d:23:e7:0f:ec:bb:4d:70:c3:
c6:7b:2c:7d:49:f9:87:8c:61:85:fe:82:be:59:82:0b:bc:61:
ea:ed:82:f7:1a:9d:e6:13:b6:96:38:68:ba:6e:37:0b:72:59:
da:12:08:10:a8:d8:46:a7:8f:ec:d2:4c:95:7c:5e:95:59:99:
db:59:ee:50:0e:ea:e3:8f:f3:3e:c5:e1:f4:96:73:12:80:b1:
e9:97:59:2a:78:c6:2f:97:f6:02:11:0e:13:ee:39:dc:72:b3:
fb:d7:7b:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:43 2024 by rpki-client on console-fra.rpki-client.org