Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/kaZPlwDjOELJLj2uPno7u42g-os.roa
File: kaZPlwDjOELJLj2uPno7u42g-os.roa (raw, json)
Hash identifier: jTTtxmIxQAtjXz+xMjjlwWoQ6yd/RVZxtuHt2jGkydM=
Subject key identifier: 91:A6:4F:97:00:E3:38:42:C9:2E:3D:AE:3E:7A:3B:BB:8D:A0:FA:8B
Certificate issuer: /CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Certificate serial: 017926
Authority key identifier: 40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/kaZPlwDjOELJLj2uPno7u42g-os.roa
Signing time: Mon 04 Jul 2022 11:02:25 +0000
ROA not before: Mon 04 Jul 2022 11:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 176.119.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96550 (0x17926)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Validity
Not Before: Jul 4 11:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91a64f9700e33842c92e3dae3e7a3bbb8da0fa8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ec:ca:7e:48:ec:87:c8:e9:21:33:b6:8a:63:
9b:d4:ed:f3:bc:59:fe:68:dd:44:cb:41:b1:69:d7:
8d:d5:d0:5d:45:fb:eb:45:5b:bf:af:dd:42:2a:53:
9c:19:5b:fc:84:bc:31:06:ed:7a:55:78:2c:db:cb:
47:03:58:fe:77:2f:36:47:8a:c3:48:20:2d:7c:a8:
dc:d3:6e:8c:f7:eb:f2:0a:bc:ad:c6:b7:06:ad:78:
87:83:8b:e7:9e:09:3b:84:1c:89:ca:2d:3c:bb:3e:
d2:7e:22:03:8f:f8:e0:1a:fd:36:85:3a:73:34:ce:
cf:dd:20:3a:37:cd:95:2b:8c:11:0e:3b:70:8b:18:
21:cc:40:12:dd:66:d2:66:34:29:b2:e7:83:ae:12:
11:af:2d:48:05:af:71:80:cb:67:88:03:d3:62:d7:
e6:07:e1:d4:9d:ff:0d:5f:7c:45:09:3a:ee:72:7a:
d4:78:02:a8:dd:c2:ec:b7:dd:e8:0d:16:c0:51:dd:
4c:d5:0e:21:c4:c8:12:27:71:86:23:b0:c2:ec:aa:
da:aa:3a:db:42:18:6b:ee:e4:61:11:34:e7:ec:9d:
39:5b:5d:cb:37:b9:fb:ef:aa:41:14:34:b5:18:21:
fe:f5:1d:60:7d:56:61:5c:93:59:c5:98:27:ad:59:
5d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A6:4F:97:00:E3:38:42:C9:2E:3D:AE:3E:7A:3B:BB:8D:A0:FA:8B
X509v3 Authority Key Identifier:
keyid:40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/kaZPlwDjOELJLj2uPno7u42g-os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.201.0/24
Signature Algorithm: sha256WithRSAEncryption
74:b7:cf:0a:05:89:c9:e5:2a:3f:85:8e:31:9c:4a:ea:a5:f4:
7a:d9:ea:34:41:f3:cf:3e:75:8e:96:72:46:da:d0:1b:71:73:
0e:f3:7d:de:ad:aa:bd:72:fc:e2:bd:1c:ac:f6:f9:06:24:e6:
5d:a1:9f:6f:d6:a7:de:9a:38:cd:5f:a1:e2:5b:e5:6e:07:ec:
cf:bc:79:e5:23:e9:ef:6d:00:69:85:1e:a5:a9:be:e9:cb:db:
2d:65:c8:d2:9a:c9:21:43:e2:bd:e1:12:59:ac:e2:b2:e7:0c:
02:08:8b:36:fb:67:99:47:36:2e:58:43:a5:29:42:5b:5d:90:
eb:49:3f:e0:2f:f8:5c:c7:2c:be:ba:33:c3:60:3c:ba:b5:25:
e4:39:39:6e:0b:84:a6:e0:9f:c4:e6:2e:22:61:28:5c:92:98:
b2:10:b4:c3:6c:a5:61:58:cd:3b:1f:c7:97:ee:b1:7d:33:3f:
a5:d7:4e:ba:f5:88:2b:3e:5d:2d:de:27:26:a8:19:7d:6e:51:
b5:c3:42:ad:a5:e6:44:49:dd:00:bf:4a:ca:07:a9:de:8a:80:
ab:2e:b1:af:f7:e2:6c:40:4e:44:05:26:dc:88:41:5e:74:51:
18:f8:74:67:1a:00:c8:dd:01:c9:6c:cd:9a:4a:9d:b6:92:31:
98:83:df:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:47 2024 by rpki-client on console-fra.rpki-client.org