Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/dBfdE7DuCtKABKgpeCmQFKabCfQ.roa
File: dBfdE7DuCtKABKgpeCmQFKabCfQ.roa (raw, json)
Hash identifier: Ijw5CBXOX+Eb501IdEP9+GQ6DuuyjOIs7SFxR2tu1gA=
Subject key identifier: 74:17:DD:13:B0:EE:0A:D2:80:04:A8:29:78:29:90:14:A6:9B:09:F4
Certificate issuer: /CN=3fbf0d4f25ec119728f14a9c51aee8034fff3ff6
Certificate serial: 0183925CA500CF39D10088915B2F906D3223
Authority key identifier: 3F:BF:0D:4F:25:EC:11:97:28:F1:4A:9C:51:AE:E8:03:4F:FF:3F:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P78NTyXsEZco8UqcUa7oA0__P_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/dBfdE7DuCtKABKgpeCmQFKabCfQ.roa
Signing time: Sat 01 Oct 2022 07:04:48 +0000
ROA not before: Sat 01 Oct 2022 07:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 176.118.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:92:5c:a5:00:cf:39:d1:00:88:91:5b:2f:90:6d:32:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fbf0d4f25ec119728f14a9c51aee8034fff3ff6
Validity
Not Before: Oct 1 07:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7417dd13b0ee0ad28004a82978299014a69b09f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:38:4c:ae:c1:85:c7:5d:98:d5:25:6f:eb:fd:
ef:d3:f4:8c:8a:16:6d:8b:97:0a:66:69:56:1c:4a:
c2:38:90:64:27:08:cb:86:7e:75:47:8c:aa:df:46:
ac:f8:8d:ce:03:aa:aa:33:36:a6:37:02:b3:2f:e7:
15:b2:4b:08:18:c5:21:bb:98:6c:62:c8:ed:6c:75:
86:68:83:da:0e:f9:63:1e:ce:cf:fc:2e:ab:45:93:
d5:dc:d5:90:05:97:5e:ac:8a:64:6c:d8:48:e2:73:
86:dc:83:bd:01:30:fc:97:bc:19:2c:e0:d5:05:7b:
87:fc:5d:e3:b9:bd:c3:f6:a2:26:0b:e1:5d:31:89:
2f:8f:87:a8:d3:5a:79:2e:80:b0:d5:a6:70:37:eb:
26:77:b1:53:09:c8:57:8a:b4:87:27:10:25:63:47:
e2:13:f3:c2:c1:11:30:b1:9f:ec:85:bb:10:8b:f8:
8b:11:0a:10:6e:08:74:0a:f8:9a:42:5c:ac:3c:d9:
52:a5:b0:41:fd:f1:c0:b9:6a:78:84:cc:1f:b1:80:
bc:26:aa:6f:ea:9e:6b:25:ce:b6:4d:8e:1f:86:c4:
39:61:5e:f6:49:70:fd:4e:fb:4d:b2:e3:f9:3d:56:
17:8a:4a:ec:c6:cf:9c:8c:11:3c:43:48:42:94:40:
59:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:17:DD:13:B0:EE:0A:D2:80:04:A8:29:78:29:90:14:A6:9B:09:F4
X509v3 Authority Key Identifier:
keyid:3F:BF:0D:4F:25:EC:11:97:28:F1:4A:9C:51:AE:E8:03:4F:FF:3F:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P78NTyXsEZco8UqcUa7oA0__P_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/dBfdE7DuCtKABKgpeCmQFKabCfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/P78NTyXsEZco8UqcUa7oA0__P_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.33.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:a6:5f:5e:95:fb:6c:84:3e:52:33:d0:5a:4f:7b:57:00:16:
33:a6:57:96:91:e5:51:f1:11:82:88:00:54:2d:43:d2:9d:98:
e7:b7:9f:8f:48:a7:dd:b1:4c:35:cc:ef:f4:6b:cd:ba:c3:f9:
6e:6c:8d:64:31:ec:3d:f6:6b:14:02:a7:73:cb:06:6a:96:15:
3c:71:ad:e0:0e:03:20:1e:76:6f:e4:83:df:84:48:4e:de:13:
7d:35:80:4a:e9:64:f2:b4:2b:8a:7f:ad:08:b2:75:e8:f0:d1:
d4:b9:fd:79:75:c2:35:73:18:7a:40:31:40:ca:2f:33:46:dd:
2f:ab:8b:9e:46:01:87:01:21:24:b0:c4:b0:6e:f6:28:9a:d5:
f6:38:48:81:b8:be:4f:d9:6e:c0:41:0a:a6:1c:da:c1:af:03:
a6:af:c1:ea:53:07:ee:e0:5b:93:8b:4d:b2:11:84:f4:50:d0:
ab:af:ac:38:77:31:17:f3:89:53:a3:1f:20:e5:67:40:77:ae:
15:09:b6:09:35:b9:f8:25:19:a4:66:6f:f0:c5:81:47:05:69:
ba:b5:dd:9e:36:77:4e:bb:d7:07:88:4e:48:30:87:3d:e2:f4:
d3:6f:73:14:51:e4:79:d8:ac:5a:12:03:35:b4:7c:aa:61:f5:
60:fd:ce:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:23 2023 by rpki-client on console-ams.rpki-client.org