Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/6e6167-649b-4f39-b39a-e6767ad5f5e7/1/iHPRNVsAcqrkTpJQEuGVu_z6psA.roa
File: iHPRNVsAcqrkTpJQEuGVu_z6psA.roa (raw, json)
Hash identifier: fXVhSbJ79Wel5NYxojvEF3sl6S8Q2DeGghxDKmzTdus=
Subject key identifier: 88:73:D1:35:5B:00:72:AA:E4:4E:92:50:12:E1:95:BB:FC:FA:A6:C0
Certificate issuer: /CN=b9eb4c2dee082dea3b80d8efb25a46865708cbb4
Certificate serial: 32F95E
Authority key identifier: B9:EB:4C:2D:EE:08:2D:EA:3B:80:D8:EF:B2:5A:46:86:57:08:CB:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uetMLe4ILeo7gNjvslpGhlcIy7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/6e6167-649b-4f39-b39a-e6767ad5f5e7/1/iHPRNVsAcqrkTpJQEuGVu_z6psA.roa
Signing time: Sat 01 Jan 2022 03:51:47 +0000
ROA not before: Sat 01 Jan 2022 03:51:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20900
IP address blocks: 176.111.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3340638 (0x32f95e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9eb4c2dee082dea3b80d8efb25a46865708cbb4
Validity
Not Before: Jan 1 03:51:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8873d1355b0072aae44e925012e195bbfcfaa6c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ca:91:6b:7e:69:15:e9:58:05:40:65:5c:e5:
39:61:0a:9d:cd:69:e3:28:59:59:5b:13:e1:ec:e8:
fc:3b:dd:c9:3a:48:37:7f:07:06:6d:71:a9:a6:ee:
c3:08:2f:69:56:2c:a6:dd:95:5a:92:bd:6f:c0:05:
36:73:72:b4:d5:81:59:35:1a:1c:77:6e:0f:c5:98:
a5:02:2d:6f:a9:45:e8:82:38:d6:b5:70:a8:49:fa:
7a:94:22:3c:10:49:26:c4:5b:d3:c0:c9:fa:c4:5b:
e7:20:1f:b3:aa:66:6c:b9:e8:c8:62:8f:dd:dc:f1:
ca:fe:56:a0:a7:32:18:82:69:b4:05:c0:ea:97:c1:
3c:5f:c4:5a:10:ae:99:0b:67:18:7e:85:c6:75:50:
a5:51:3b:50:fc:9a:e7:07:2f:e5:ef:1c:a6:eb:43:
5c:8d:66:2c:81:fe:68:90:5b:ce:83:a8:b1:91:9a:
5c:b6:83:1c:5a:06:98:e3:20:aa:6e:a8:c1:78:f5:
0c:ac:81:0d:a0:ae:d2:3f:31:20:cf:69:cb:c9:5a:
a7:16:40:0a:67:d9:4e:b7:c6:53:48:a4:90:9a:4e:
87:e9:09:97:a8:bd:f4:2e:8d:c7:d0:4a:16:ad:44:
b2:ab:b7:35:27:34:ad:48:16:5d:fb:8d:81:ed:8a:
d8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:73:D1:35:5B:00:72:AA:E4:4E:92:50:12:E1:95:BB:FC:FA:A6:C0
X509v3 Authority Key Identifier:
keyid:B9:EB:4C:2D:EE:08:2D:EA:3B:80:D8:EF:B2:5A:46:86:57:08:CB:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uetMLe4ILeo7gNjvslpGhlcIy7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6e6167-649b-4f39-b39a-e6767ad5f5e7/1/iHPRNVsAcqrkTpJQEuGVu_z6psA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6e6167-649b-4f39-b39a-e6767ad5f5e7/1/uetMLe4ILeo7gNjvslpGhlcIy7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.246.0/24
Signature Algorithm: sha256WithRSAEncryption
24:eb:c3:03:1e:3d:77:0a:25:20:a2:6e:30:d8:dd:4c:d1:fe:
b1:4a:f9:34:ba:a3:f3:db:31:ca:cb:7a:3b:c5:b3:c0:20:d3:
76:e6:b8:fd:75:34:dd:b8:58:f6:9b:8e:a8:0a:01:ac:24:3a:
3f:18:32:30:ac:92:dd:a0:91:a4:12:b0:0d:16:b0:1f:14:bb:
03:f4:6f:8c:10:1c:a0:b5:cd:a4:66:44:6f:dc:c4:83:03:bb:
c6:ed:2a:77:70:c2:6b:c2:8a:d3:3b:ec:ff:b6:c5:5c:61:d1:
10:14:5d:9a:b3:5b:91:3d:7b:bd:de:cd:ec:f4:5c:a9:a3:29:
ea:87:90:09:c6:f0:2a:e7:f5:72:f5:41:ae:b2:c5:df:9b:5f:
30:c1:45:5e:5a:35:8a:16:f3:b3:c6:2c:9d:2a:a7:ab:6a:c8:
5d:c7:84:e5:27:97:6c:c8:6c:b9:d3:a9:77:27:9b:3d:49:36:
00:4f:b8:cb:e9:6e:02:a4:2b:1d:5e:a8:ed:ca:42:81:71:7a:
6e:67:26:b7:85:f6:93:8b:37:fa:69:59:4c:8b:e9:b8:7f:93:
88:5d:55:7f:2a:1c:ba:2f:0b:ea:36:87:30:3f:b1:7d:d5:f9:
f2:24:9f:09:bb:87:66:55:e7:85:6e:2d:21:84:5d:7a:98:9f:
58:38:c9:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:40 2024 by rpki-client on console-ams.rpki-client.org