Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/50294d-8cc5-49d3-9312-727b1b583eb6/1/8ymwNwz48_IJaWJ30fwMi3x4am0.roa
File: 8ymwNwz48_IJaWJ30fwMi3x4am0.roa (raw, json)
Hash identifier: jAJF1+GdlOT8SMC5yUdccxG9bjHCgH9/bbTPr2vwRBI=
Subject key identifier: F3:29:B0:37:0C:F8:F3:F2:09:69:62:77:D1:FC:0C:8B:7C:78:6A:6D
Certificate issuer: /CN=47741e7c758d480413b5f1b0060611297e44036f
Certificate serial: 076B79BA
Authority key identifier: 47:74:1E:7C:75:8D:48:04:13:B5:F1:B0:06:06:11:29:7E:44:03:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R3QefHWNSAQTtfGwBgYRKX5EA28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/50294d-8cc5-49d3-9312-727b1b583eb6/1/8ymwNwz48_IJaWJ30fwMi3x4am0.roa
Signing time: Sat 01 Jan 2022 15:57:49 +0000
ROA not before: Sat 01 Jan 2022 15:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9017
IP address blocks: 176.117.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124484026 (0x76b79ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47741e7c758d480413b5f1b0060611297e44036f
Validity
Not Before: Jan 1 15:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f329b0370cf8f3f209696277d1fc0c8b7c786a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ed:7a:76:3c:f7:86:29:22:03:c4:7f:bb:e2:
fe:2f:f2:85:83:1f:08:32:87:fa:8e:b5:3d:dd:b5:
cd:af:ea:c6:3b:c4:89:cd:37:95:55:f3:16:b3:56:
13:55:e5:d7:9f:1d:db:ed:05:56:18:4a:35:74:3f:
f2:97:c0:5c:60:c3:b7:33:1d:3b:87:68:72:2f:7a:
22:80:5c:2a:45:c2:b9:9c:39:73:83:2d:34:b1:0e:
db:59:83:9c:c5:31:f3:31:6b:70:77:b8:dc:24:98:
b1:3e:2c:51:c7:c9:8a:dc:c9:8d:4f:69:f6:ec:94:
87:dd:d0:c8:4d:e5:29:7a:1c:48:d4:c4:5d:84:df:
59:b1:d6:a7:ca:03:72:91:17:6c:5a:41:f2:cf:10:
81:02:55:80:e6:df:4d:95:61:0c:4d:82:10:8f:e0:
4a:fe:04:08:19:9f:49:9a:06:74:35:e6:22:3b:eb:
0f:22:3f:a6:39:df:3c:2e:43:36:99:0d:60:c3:32:
37:19:92:24:a1:b2:af:1b:f0:a5:75:fc:fb:79:cc:
6f:b2:2e:5a:9d:d6:b6:a9:3f:d0:77:ab:fc:cc:df:
f3:4b:a1:68:63:5c:f8:42:ec:ce:b9:72:c1:47:79:
e1:df:a7:4d:bc:e4:88:f4:ee:3a:82:e3:9b:31:06:
40:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:29:B0:37:0C:F8:F3:F2:09:69:62:77:D1:FC:0C:8B:7C:78:6A:6D
X509v3 Authority Key Identifier:
keyid:47:74:1E:7C:75:8D:48:04:13:B5:F1:B0:06:06:11:29:7E:44:03:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R3QefHWNSAQTtfGwBgYRKX5EA28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/50294d-8cc5-49d3-9312-727b1b583eb6/1/8ymwNwz48_IJaWJ30fwMi3x4am0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/50294d-8cc5-49d3-9312-727b1b583eb6/1/R3QefHWNSAQTtfGwBgYRKX5EA28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.63.0/24
Signature Algorithm: sha256WithRSAEncryption
40:53:38:e1:45:92:32:a2:31:2d:c2:8b:4b:7e:02:66:ce:3e:
1a:a8:66:8a:a3:c5:36:ba:35:19:c3:6b:44:e8:aa:81:68:e0:
42:fc:63:9c:70:63:c8:c3:9f:79:1a:c9:6f:0e:98:28:49:07:
2e:0a:cc:a8:3c:85:47:36:91:4f:01:5e:9b:46:4d:e6:60:c8:
70:73:1d:e9:0c:46:53:ce:25:6f:49:89:bf:cd:1b:0c:1e:69:
a0:4e:7a:d7:75:75:8b:47:bf:36:87:df:41:7e:a5:91:b5:5a:
54:61:5c:01:0f:39:df:16:47:e6:36:a3:77:28:51:2c:17:a0:
0c:a3:fa:a1:b0:23:e5:32:61:81:af:8b:f3:a9:74:39:a1:20:
d8:c0:2a:43:17:0b:e6:4a:cf:02:ac:68:7c:93:39:1a:3e:24:
5d:6c:b7:5e:c8:60:eb:35:c6:4d:26:66:26:ee:10:83:0a:93:
2c:4d:42:54:87:08:fd:0c:bd:77:9b:5d:f2:74:82:21:ea:2d:
f7:b7:05:ab:6d:6e:10:84:4c:dd:1f:f9:22:6f:bc:0d:c7:7d:
3d:b3:0e:66:05:a4:68:01:4d:ed:2d:2b:c7:e0:95:48:67:74:
7d:ff:c5:cf:3d:7b:cb:3a:27:2a:44:7f:bc:3d:92:1e:0f:0e:
14:1c:52:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:06 2024 by rpki-client on console-ams.rpki-client.org