Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/IzuC6dANUQVfUUEZf1KxiL0HMZg.roa
File: IzuC6dANUQVfUUEZf1KxiL0HMZg.roa (raw, json)
Hash identifier: +gZGOOwJv1Fn8YLZic98RXO8FDx/YG4/vv985JOlcZo=
Subject key identifier: 23:3B:82:E9:D0:0D:51:05:5F:51:41:19:7F:52:B1:88:BD:07:31:98
Certificate issuer: /CN=0277acd112f1c6c833bec22f8b53cc70d2390876
Certificate serial: 01847A5A3958DAB9393D2212505D46C0E9AA
Authority key identifier: 02:77:AC:D1:12:F1:C6:C8:33:BE:C2:2F:8B:53:CC:70:D2:39:08:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Anes0RLxxsgzvsIvi1PMcNI5CHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/IzuC6dANUQVfUUEZf1KxiL0HMZg.roa
Signing time: Tue 15 Nov 2022 08:14:03 +0000
ROA not before: Tue 15 Nov 2022 08:14:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56995
IP address blocks: 176.58.64.0/20 maxlen: 20
176.58.64.0/24 maxlen: 24
176.58.66.0/23 maxlen: 23
185.6.16.0/22 maxlen: 24
176.58.68.0/22 maxlen: 22
176.58.76.0/22 maxlen: 22
176.58.77.0/24 maxlen: 24
176.58.72.0/22 maxlen: 22
2a03:c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:5a:39:58:da:b9:39:3d:22:12:50:5d:46:c0:e9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0277acd112f1c6c833bec22f8b53cc70d2390876
Validity
Not Before: Nov 15 08:14:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=233b82e9d00d51055f5141197f52b188bd073198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:74:ea:59:ed:15:f5:72:7f:95:d8:7c:a7:8a:
9d:9d:e2:c4:73:db:c2:85:81:86:9f:dc:54:f3:5b:
a0:92:dc:02:2b:32:23:61:39:11:b8:52:de:7d:3f:
8e:7d:74:7f:d9:83:08:84:06:16:c7:ea:09:b2:04:
42:d7:2c:82:af:8c:a7:f8:60:13:5c:d0:aa:b8:a4:
5d:82:d4:47:b7:cc:bf:1d:4a:64:6a:b0:15:d3:11:
8f:9e:44:c2:7a:f8:e8:1d:ba:45:10:1c:53:9d:a0:
39:d8:6e:f2:74:f4:89:34:36:a1:0e:ad:f3:f3:90:
ce:69:ac:a0:da:b1:2a:ce:47:6a:a7:1a:40:13:ae:
19:b4:98:d5:0d:0d:9e:f6:38:55:77:52:99:60:b6:
67:18:b6:55:84:b6:80:2c:b7:89:f1:21:8c:5f:90:
ed:21:cc:c5:b8:d8:39:2d:d0:0e:d5:76:bd:de:51:
cf:6f:03:d8:bd:ab:c5:a3:ba:e6:10:64:39:de:c3:
56:09:eb:1f:b3:fd:07:a7:33:e3:f0:25:2d:ab:6a:
14:fb:91:98:4e:a8:25:3f:47:b6:e9:99:e8:35:fb:
78:8d:ca:bb:63:9c:dc:22:a4:7b:e3:b9:25:29:a6:
92:54:8f:2d:e9:48:27:c4:a5:d8:0a:4e:cb:64:f3:
9c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3B:82:E9:D0:0D:51:05:5F:51:41:19:7F:52:B1:88:BD:07:31:98
X509v3 Authority Key Identifier:
keyid:02:77:AC:D1:12:F1:C6:C8:33:BE:C2:2F:8B:53:CC:70:D2:39:08:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Anes0RLxxsgzvsIvi1PMcNI5CHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/IzuC6dANUQVfUUEZf1KxiL0HMZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/Anes0RLxxsgzvsIvi1PMcNI5CHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.58.64.0/20
185.6.16.0/22
IPv6:
2a03:c40::/32
Signature Algorithm: sha256WithRSAEncryption
81:be:a0:f3:75:75:af:e4:95:49:04:c9:2c:05:d4:43:e8:49:
9c:fc:d2:a0:21:f0:66:12:ab:6d:0a:43:20:9c:22:45:7d:ae:
3b:16:92:7a:30:fa:2c:11:c3:a0:53:4d:ce:5f:91:c7:99:c5:
d1:61:97:43:61:d7:20:53:8d:06:fc:b3:ac:b5:13:23:a9:a5:
83:22:9c:15:10:03:0b:64:8f:3d:6d:75:2f:4e:39:88:0b:ab:
7a:e7:10:9a:f6:01:36:8a:e1:0c:9d:e4:52:9c:80:e8:53:1a:
7b:0a:fa:4a:d1:98:a5:32:19:81:7d:a0:4d:8f:33:a9:08:48:
82:80:42:ac:3c:95:d0:1a:2e:08:3f:d9:55:21:ae:c5:8b:47:
8f:d6:6a:6a:89:2f:6b:21:75:44:e1:54:f8:ed:ff:70:0c:4d:
61:27:7d:62:59:31:e4:84:10:30:10:1c:4e:e5:fd:a4:3d:9c:
2b:3e:6e:be:84:52:0c:de:68:bd:c6:ea:6d:36:f3:3c:0e:72:
70:46:99:b3:0a:f6:b7:0b:f3:c9:f5:be:8c:74:ad:80:a0:7f:
82:1b:7f:1b:36:3e:66:4a:76:f3:27:b0:9d:0e:17:28:ab:38:
2d:44:46:30:12:7a:8b:0c:a7:55:51:98:53:f5:fb:11:fe:d0:
65:25:32:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:34 2024 by rpki-client on console-ams.rpki-client.org