Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/I7nBz35UUKvvFaSHF6USKfOkUhg.roa
File: I7nBz35UUKvvFaSHF6USKfOkUhg.roa (raw, json)
Hash identifier: sleHP3+HuxjSUV8Kp4CvTbGMgjpnMqOkPCuOj0I6lz0=
Subject key identifier: 23:B9:C1:CF:7E:54:50:AB:EF:15:A4:87:17:A5:12:29:F3:A4:52:18
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 14D3C284
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/I7nBz35UUKvvFaSHF6USKfOkUhg.roa
Signing time: Sat 01 Jan 2022 05:51:58 +0000
ROA not before: Sat 01 Jan 2022 05:51:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211885
IP address blocks: 176.103.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349422212 (0x14d3c284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 1 05:51:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23b9c1cf7e5450abef15a48717a51229f3a45218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b1:f0:b8:19:6e:85:98:8f:ba:df:93:06:bd:
57:76:c1:c0:26:18:e7:db:b9:2f:5f:1d:3e:d6:61:
3b:d5:1f:2e:e6:43:cc:6a:51:b9:cf:6c:68:2f:fb:
c5:59:d6:50:6e:a1:36:4a:db:c1:b9:86:e0:85:4f:
53:cb:38:d3:a2:a6:a6:9a:0b:d2:0b:b2:35:26:0a:
02:2e:d3:02:1e:38:c2:42:4d:e3:fd:1d:fe:c9:eb:
b5:d5:8f:5c:4f:f5:83:73:86:93:66:c5:0c:01:95:
92:a7:5c:5a:18:c6:20:a5:de:8e:0d:fd:54:1a:02:
ea:9f:c2:45:33:9c:92:c2:b6:c3:d8:0e:a7:e0:cd:
31:0b:10:19:2b:0e:c9:7f:06:01:db:f3:86:3b:4c:
72:86:7d:fc:fc:4c:89:8f:62:58:41:b1:38:ce:d4:
52:6f:33:a2:56:a4:ce:17:49:02:96:7e:ab:08:3f:
03:d5:17:1c:eb:00:f9:a5:59:e5:6a:e0:94:c2:7e:
99:b8:c6:39:fa:58:95:f1:e7:af:00:6b:b7:98:f2:
e7:3e:3b:33:35:1e:e1:24:9a:16:7c:07:d3:06:1b:
92:df:70:1b:41:eb:fe:9a:35:29:a9:60:90:63:b5:
9f:7b:99:30:6d:02:d8:06:29:db:57:91:d5:3d:f7:
fd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B9:C1:CF:7E:54:50:AB:EF:15:A4:87:17:A5:12:29:F3:A4:52:18
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/I7nBz35UUKvvFaSHF6USKfOkUhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.103.184.0/24
Signature Algorithm: sha256WithRSAEncryption
68:5f:47:7a:94:cc:e2:d8:73:be:c8:14:b6:79:e0:95:c3:7d:
83:ea:eb:1c:82:33:67:d1:5a:f8:45:d2:a0:62:f2:0c:50:ae:
9d:86:80:2c:ea:79:e4:27:ee:77:bb:93:55:f2:57:67:58:b0:
23:37:17:68:77:94:89:cd:42:7d:73:2a:7e:e1:e3:4d:1f:03:
73:9f:ee:a4:71:1e:6f:e3:1a:89:65:f0:12:06:df:33:98:a3:
d6:32:7b:6a:a4:42:fc:64:5e:ca:88:f9:3f:58:03:a6:c7:04:
74:bc:36:df:8d:7d:87:0f:1e:09:f7:b8:d9:3f:54:78:30:39:
a6:f4:fb:10:0b:84:4d:29:7f:61:4b:85:01:c5:97:82:c4:16:
8f:a8:28:5f:e9:8d:06:9a:8c:92:0d:2c:8d:16:89:55:c8:8e:
58:4e:7c:29:8b:8b:50:f4:c5:06:17:76:f1:bb:81:fe:d2:4d:
1d:05:a2:64:ce:b2:65:c8:2f:f6:ab:28:ac:f6:4d:2e:fe:90:
a1:aa:a4:27:30:ce:59:28:a5:f4:c0:48:34:58:1c:a3:23:e6:
07:85:f6:ad:57:e0:83:26:10:af:d9:ba:57:6c:df:12:e1:e8:
0f:7e:bc:d3:38:69:69:5d:7e:f6:48:df:82:31:89:aa:1d:c5:
82:81:ff:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:06 2024 by rpki-client on console-ams.rpki-client.org