Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/9NbnYpwW91lJY0JQhxkbSHdyeKA.roa
File: 9NbnYpwW91lJY0JQhxkbSHdyeKA.roa (raw, json)
Hash identifier: 5Yhm94x27z/Jc/4bpCWoEf9aF1db6Q0XkMM7VfIvAOk=
Subject key identifier: F4:D6:E7:62:9C:16:F7:59:49:63:42:50:87:19:1B:48:77:72:78:A0
Certificate issuer: /CN=5588153f3ec6b36a3fc6850d05337236f3ced112
Certificate serial: 84FA48
Authority key identifier: 55:88:15:3F:3E:C6:B3:6A:3F:C6:85:0D:05:33:72:36:F3:CE:D1:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/9NbnYpwW91lJY0JQhxkbSHdyeKA.roa
Signing time: Sat 01 Jan 2022 02:57:04 +0000
ROA not before: Sat 01 Jan 2022 02:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 176.97.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8714824 (0x84fa48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588153f3ec6b36a3fc6850d05337236f3ced112
Validity
Not Before: Jan 1 02:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4d6e7629c16f7594963425087191b48777278a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0b:96:d2:10:b5:c6:27:f2:8d:42:a1:88:4e:
ae:68:8d:d7:7f:a8:7f:c1:63:8c:81:aa:6e:9f:de:
aa:34:2a:f9:54:55:77:4e:58:24:d2:a6:f2:52:5e:
de:60:b6:79:41:5e:3a:42:2f:44:e8:e9:c5:1a:99:
aa:e3:69:6a:2f:d3:d0:f2:0c:fa:0a:c7:00:bf:84:
6e:12:f4:da:e4:09:e9:57:0c:67:7e:3c:a6:7d:41:
46:82:82:a3:ba:19:d2:b8:e9:8e:80:6c:0c:9a:49:
d6:9e:1d:ba:72:71:e1:ff:38:8e:44:b5:a2:ce:09:
c2:b0:ca:e5:dd:82:60:ec:24:d2:a0:bc:4f:d2:17:
43:4b:e5:90:a4:43:32:5c:e8:87:70:df:90:fb:54:
5f:a3:17:b9:ad:e4:b5:ef:e5:af:c9:13:2b:63:5f:
01:11:40:9a:5f:61:12:cc:23:f6:f5:b5:1c:5f:dc:
12:8f:68:73:0e:b7:4b:53:aa:a9:c8:ad:68:13:87:
a9:cc:0f:90:07:04:36:61:64:b2:37:2b:1c:82:d9:
f9:3b:11:61:b9:fb:86:91:14:be:2b:45:af:f3:83:
59:f6:ce:a6:83:ff:1c:4e:3d:5c:a4:a4:15:de:35:
3a:5b:cf:a1:a6:a7:ca:47:af:46:28:96:10:a6:4b:
ab:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D6:E7:62:9C:16:F7:59:49:63:42:50:87:19:1B:48:77:72:78:A0
X509v3 Authority Key Identifier:
keyid:55:88:15:3F:3E:C6:B3:6A:3F:C6:85:0D:05:33:72:36:F3:CE:D1:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/9NbnYpwW91lJY0JQhxkbSHdyeKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.213.0/24
Signature Algorithm: sha256WithRSAEncryption
04:0e:6f:93:e3:99:31:05:90:af:e5:e1:8d:49:0b:21:c7:df:
c1:00:a1:97:7c:ea:52:cd:7f:e5:d2:be:8f:dc:9b:69:d8:69:
dc:67:fb:8a:39:57:2e:88:88:90:de:99:29:e3:e7:53:92:72:
8c:40:87:88:bc:6e:8c:6e:19:b8:58:0e:7d:82:47:e4:b8:14:
f9:c7:6d:02:b5:8e:18:68:95:b9:b2:1d:fb:77:21:6b:79:e4:
25:ec:50:fe:b4:41:ef:e4:2e:2a:09:2c:1b:fb:ae:44:42:5b:
63:b3:5d:97:5f:99:ea:4e:18:0a:0e:7f:6b:ba:00:7a:10:52:
b5:70:88:1a:78:4b:8c:f1:5f:de:0b:fa:46:79:f4:1a:9b:b3:
95:7b:a0:d2:27:da:d1:e7:3b:a7:81:ba:76:b0:9e:c4:c8:c3:
c3:29:98:12:3c:97:43:f1:61:20:1d:f8:d9:e2:dd:48:ec:0e:
c0:b6:0d:85:00:89:1d:a2:82:89:ab:24:73:9f:a9:4c:3b:51:
5a:a5:f7:d2:d1:12:6a:12:26:f3:e8:8f:65:c2:f5:05:87:ea:
58:e4:78:f5:c6:7d:be:3a:eb:13:f0:6b:1d:85:22:1d:e4:01:
6b:26:0b:41:1a:4b:d5:ec:86:da:b6:9e:a6:98:e8:16:51:a7:
8f:2b:65:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:48 2023 by rpki-client on console-ams.rpki-client.org