Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/NLbqTi5i-RHUvpr1JYLdVxOI9Es.roa
File: NLbqTi5i-RHUvpr1JYLdVxOI9Es.roa (raw, json)
Hash identifier: Gydctb0bWPpocF3RHXPitTek6E0DWLqd2ZMdvazRuCk=
Subject key identifier: 34:B6:EA:4E:2E:62:F9:11:D4:BE:9A:F5:25:82:DD:57:13:88:F4:4B
Certificate issuer: /CN=0277acd112f1c6c833bec22f8b53cc70d2390876
Certificate serial: 34E17DD0
Authority key identifier: 02:77:AC:D1:12:F1:C6:C8:33:BE:C2:2F:8B:53:CC:70:D2:39:08:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Anes0RLxxsgzvsIvi1PMcNI5CHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/NLbqTi5i-RHUvpr1JYLdVxOI9Es.roa
Signing time: Thu 02 Jun 2022 11:57:20 +0000
ROA not before: Thu 02 Jun 2022 11:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59973
IP address blocks: 176.58.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 887193040 (0x34e17dd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0277acd112f1c6c833bec22f8b53cc70d2390876
Validity
Not Before: Jun 2 11:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34b6ea4e2e62f911d4be9af52582dd571388f44b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:30:33:d2:7f:ab:80:ba:bf:b8:9a:db:16:c4:
ed:40:74:37:2e:cf:11:7f:f4:e0:14:fd:31:ec:a6:
0f:93:db:6b:39:a8:d9:90:d0:26:55:75:d8:ac:37:
05:f1:94:a4:e2:91:0c:dc:65:ed:20:f9:e9:ca:02:
8d:94:46:23:95:98:83:8e:df:0b:ae:16:62:9a:f1:
b3:75:cb:df:b7:a5:cb:6f:0c:b4:56:13:7d:04:6e:
a2:1d:28:33:94:9b:2b:f7:69:7c:f4:df:42:4b:fd:
8e:0d:4a:cb:ec:71:6d:61:48:a1:e7:91:fc:d0:0d:
1d:83:5d:ca:28:98:e0:74:02:1a:3c:04:bc:ed:fb:
5a:32:ed:9e:85:a5:11:a0:40:02:00:a5:02:c9:eb:
23:6c:c4:dc:ea:80:83:5b:a9:aa:4a:9e:bb:5c:88:
7e:c3:4a:91:28:96:1f:60:63:b4:7b:d4:54:80:9e:
be:9b:7a:a6:58:d8:88:6e:27:63:85:a1:f7:c2:f9:
ef:62:c7:8e:01:bc:cf:c2:62:15:76:e7:66:d4:36:
cb:3e:bb:5f:ec:86:61:f8:c6:a2:95:a9:28:d9:dd:
fb:32:cc:4e:c9:38:3d:dc:a0:b0:28:7c:63:9e:c5:
46:a0:05:fb:7c:1f:da:64:78:85:1e:a4:86:c3:99:
2d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B6:EA:4E:2E:62:F9:11:D4:BE:9A:F5:25:82:DD:57:13:88:F4:4B
X509v3 Authority Key Identifier:
keyid:02:77:AC:D1:12:F1:C6:C8:33:BE:C2:2F:8B:53:CC:70:D2:39:08:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Anes0RLxxsgzvsIvi1PMcNI5CHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/NLbqTi5i-RHUvpr1JYLdVxOI9Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/Anes0RLxxsgzvsIvi1PMcNI5CHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.58.66.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:8a:29:19:c6:83:86:6c:6e:57:78:23:fa:68:52:8c:f7:a4:
bd:42:84:0b:6d:bc:2a:02:e9:25:40:3e:81:6f:aa:19:9d:65:
93:e5:19:4a:be:84:5f:2b:9a:3b:ba:75:da:e8:ec:31:db:46:
a0:fe:4c:26:22:96:dd:a2:34:a0:be:c6:e1:7d:66:b6:bb:9f:
ba:06:fe:79:7e:97:2b:d2:21:94:6a:a2:e3:8b:11:6e:8f:a4:
b0:64:3b:ef:bb:30:ce:dd:06:ce:9e:ee:58:a5:20:3a:97:83:
75:d5:f6:e3:ad:ed:3e:95:50:3c:04:02:1b:70:e0:c5:8d:e0:
9d:ec:cd:37:f5:66:5c:f7:82:e2:17:b7:96:3d:35:59:e3:6f:
8b:42:9d:b1:ba:a2:f5:e4:68:3e:89:b6:b7:19:5a:d2:01:5e:
a5:1d:c8:58:9d:0b:0c:f9:90:8c:bb:11:d0:f6:5c:df:87:cb:
be:8e:4c:d8:8a:eb:3a:27:1c:a1:08:0f:a9:2d:d2:df:d6:7c:
d3:6b:93:2f:f2:1f:35:43:1b:ae:b6:31:96:11:63:0c:26:2f:
cf:12:2e:fa:3b:95:1d:b3:5c:b3:ac:7b:b0:b2:ba:eb:45:c1:
42:31:41:25:24:2b:c1:36:bc:fe:3b:8a:af:35:e1:3f:9e:98:
78:ef:79:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:02 2024 by rpki-client on console-fra.rpki-client.org