Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/tQ3f4abGteGHcepwaKNxJAUqS5A.roa
File: tQ3f4abGteGHcepwaKNxJAUqS5A.roa (raw, json)
Hash identifier: zlRZpMpbRP9cqtj0Hn4lKeX3b0WUTAMN48e2DmvVs/I=
Subject key identifier: B5:0D:DF:E1:A6:C6:B5:E1:87:71:EA:70:68:A3:71:24:05:2A:4B:90
Certificate issuer: /CN=6f98d1f99e3833ef401d46348eec8b752088c55d
Certificate serial: 08CACD46
Authority key identifier: 6F:98:D1:F9:9E:38:33:EF:40:1D:46:34:8E:EC:8B:75:20:88:C5:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b5jR-Z44M-9AHUY0juyLdSCIxV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/tQ3f4abGteGHcepwaKNxJAUqS5A.roa
Signing time: Sat 01 Jan 2022 07:01:12 +0000
ROA not before: Sat 01 Jan 2022 07:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56000
IP address blocks: 176.126.135.0/24 maxlen: 24
176.126.134.0/24 maxlen: 24
192.162.152.0/24 maxlen: 24
192.162.153.0/24 maxlen: 24
176.126.129.0/24 maxlen: 24
176.126.128.0/24 maxlen: 24
176.126.132.0/24 maxlen: 24
176.126.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147508550 (0x8cacd46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f98d1f99e3833ef401d46348eec8b752088c55d
Validity
Not Before: Jan 1 07:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b50ddfe1a6c6b5e18771ea7068a37124052a4b90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:27:3b:3b:b0:12:89:cb:fc:85:15:56:71:86:
4a:2a:d4:c7:73:34:99:bd:0b:dd:bb:31:d1:94:13:
e9:cd:71:81:c1:ca:95:34:1d:d0:a0:49:62:ec:0f:
38:33:4c:e1:2f:19:17:e6:d6:5e:01:ab:9d:93:98:
34:f8:50:18:e2:4b:71:e1:73:da:b2:a4:9d:29:3f:
17:91:c6:b7:a5:9c:a4:65:dd:ef:1f:b6:d5:2e:38:
bc:5d:55:4b:15:8b:3f:eb:ca:4d:23:1e:2d:66:0c:
09:a6:33:20:05:26:74:89:dc:9a:75:0e:8b:b4:c5:
4b:cb:23:d3:13:4b:59:5a:de:0b:e2:40:ce:91:75:
15:bd:6b:f2:51:d0:a9:13:1c:07:72:8d:91:05:e5:
be:4e:1a:8b:ac:52:f0:d3:f2:60:21:16:30:a7:e1:
68:21:33:8d:7e:39:0e:09:82:7a:eb:7a:b1:b9:2c:
46:4f:0e:0b:f5:a1:fc:e0:fc:b8:9e:e6:bc:45:db:
b9:bf:57:09:ed:57:e7:bc:df:30:9e:1f:fa:d1:61:
dc:88:fa:4c:bb:97:22:bb:b5:86:0f:a9:61:c6:9c:
50:0f:1b:27:41:79:a5:7b:ec:b6:82:95:89:af:62:
10:76:ce:82:c6:4e:57:8e:5e:92:37:01:3f:ad:8d:
81:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:0D:DF:E1:A6:C6:B5:E1:87:71:EA:70:68:A3:71:24:05:2A:4B:90
X509v3 Authority Key Identifier:
keyid:6F:98:D1:F9:9E:38:33:EF:40:1D:46:34:8E:EC:8B:75:20:88:C5:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5jR-Z44M-9AHUY0juyLdSCIxV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/tQ3f4abGteGHcepwaKNxJAUqS5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/b5jR-Z44M-9AHUY0juyLdSCIxV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.128.0/23
176.126.131.0-176.126.132.255
176.126.134.0/23
192.162.152.0/23
Signature Algorithm: sha256WithRSAEncryption
39:12:74:bf:90:c6:52:20:a8:42:d9:b4:10:fc:a4:1e:44:08:
b9:ef:48:26:ec:84:2e:65:b5:5a:3f:cb:3f:23:1b:d2:1e:7b:
d6:e4:01:3a:98:20:f1:a8:12:54:8c:38:87:ed:57:6a:27:00:
0f:c4:66:50:3d:6c:af:ae:26:bf:40:59:cc:dd:f8:92:29:08:
cb:b1:3f:0f:6c:34:03:50:ca:f2:e8:b6:90:21:aa:ab:70:49:
35:73:58:94:76:a4:48:c5:99:66:e7:d3:30:9e:30:db:82:3c:
da:c5:cc:07:0a:28:da:06:ab:de:06:dd:b2:2c:8d:19:f6:03:
94:d8:4f:e0:51:fd:1c:6f:ff:5f:57:a0:3a:91:74:43:fc:e6:
ac:35:7b:f7:6c:7f:b4:07:90:30:71:3b:de:81:cc:dc:8b:33:
d9:9f:e4:fa:e9:72:03:af:d4:ef:cf:04:16:07:09:dc:fd:01:
ca:9a:15:a3:4e:5e:e7:83:4b:4c:23:c4:6c:0d:33:d2:53:ec:
23:b3:b8:8f:ce:f6:12:f3:bf:b3:d9:e9:d6:22:53:a6:a4:7f:
6a:1c:fb:1f:56:61:bb:ff:24:dc:42:64:dd:a4:24:e1:e5:cb:
3f:9f:27:b1:2c:d7:fd:10:12:0c:fb:67:80:57:83:a3:b3:fe:
66:33:52:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org