Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/dOijaN_qKZbhTeYSTKHrcuEBX38.roa
File: dOijaN_qKZbhTeYSTKHrcuEBX38.roa (raw, json)
Hash identifier: FK2m4mPjrZufmc6jzpDpegaAeMo3CxoFYmD8lxNu/cM=
Subject key identifier: 74:E8:A3:68:DF:EA:29:96:E1:4D:E6:12:4C:A1:EB:72:E1:01:5F:7F
Certificate issuer: /CN=340bea3fcc3cbcedc82919cf57c74108baea369e
Certificate serial: 0753DCC6
Authority key identifier: 34:0B:EA:3F:CC:3C:BC:ED:C8:29:19:CF:57:C7:41:08:BA:EA:36:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAvqP8w8vO3IKRnPV8dBCLrqNp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/dOijaN_qKZbhTeYSTKHrcuEBX38.roa
Signing time: Sat 01 Jan 2022 11:04:41 +0000
ROA not before: Sat 01 Jan 2022 11:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64266
IP address blocks: 176.115.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122936518 (0x753dcc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=340bea3fcc3cbcedc82919cf57c74108baea369e
Validity
Not Before: Jan 1 11:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74e8a368dfea2996e14de6124ca1eb72e1015f7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f1:04:dd:32:b5:19:a3:39:80:a5:3c:50:53:
ae:a1:24:20:87:d5:f3:e6:8c:e7:7b:c1:1b:45:ed:
95:96:93:ad:fc:d3:c3:60:c9:71:58:26:54:b8:f6:
d3:9e:8d:b6:8d:a6:54:e6:7f:b9:2c:f5:ba:e5:d2:
7e:16:dc:31:96:52:11:f0:5c:57:59:16:e1:35:15:
be:a5:58:0d:8c:69:94:24:c5:cc:ce:1a:d5:f9:33:
cf:2e:3f:4e:fe:e1:10:bb:cd:9d:3d:6d:1e:cf:16:
de:26:0f:a2:b7:1c:b7:57:fa:0c:e6:cc:de:04:89:
88:29:a9:7b:85:92:f5:33:11:aa:97:0a:cd:ae:2c:
d9:9d:10:e5:6e:16:7c:fc:a6:ab:66:7b:05:4e:6e:
fc:c0:54:a2:03:40:12:f2:12:2e:60:6d:e7:8c:7d:
37:c0:82:f5:03:18:b6:11:04:00:b5:dd:44:7e:fe:
98:ed:bf:6d:d7:b7:85:63:f1:87:98:59:8a:ba:62:
d0:d3:03:5f:12:81:eb:d4:b1:2b:42:88:96:f2:f3:
a2:76:06:5b:b6:99:d1:ae:3f:6d:46:9c:48:f4:d3:
91:c7:91:47:76:23:97:0f:d4:82:46:ab:13:29:67:
90:ab:ef:dc:1d:2e:ac:b5:03:db:c8:e8:2d:a3:0c:
8d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E8:A3:68:DF:EA:29:96:E1:4D:E6:12:4C:A1:EB:72:E1:01:5F:7F
X509v3 Authority Key Identifier:
keyid:34:0B:EA:3F:CC:3C:BC:ED:C8:29:19:CF:57:C7:41:08:BA:EA:36:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAvqP8w8vO3IKRnPV8dBCLrqNp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/dOijaN_qKZbhTeYSTKHrcuEBX38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ecda3d-a2db-4908-862f-111056369a23/1/NAvqP8w8vO3IKRnPV8dBCLrqNp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.115.188.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:de:e1:f4:22:a9:9f:52:91:0b:c0:b3:c9:0c:12:f4:f0:c4:
8a:da:b6:a4:ee:0b:f7:46:15:ee:cc:a6:55:b1:e3:9c:ab:b6:
b8:c9:fc:f1:ef:bd:7c:58:03:e7:33:b5:43:2a:17:9c:85:f1:
ba:4f:ee:3e:09:a9:72:7d:ef:d9:35:db:cb:35:f2:ee:02:e4:
54:84:30:53:ae:3a:13:26:ff:50:25:a9:27:32:9f:02:b1:f8:
b5:f2:2a:8f:c7:61:4d:af:76:ef:56:0d:f6:53:7e:bf:31:3b:
d6:0b:51:6f:ee:ff:2e:11:7c:43:83:23:d0:1f:92:eb:98:43:
ac:e3:8f:04:51:c4:05:8d:ea:46:39:3f:fb:57:94:83:5f:ed:
7f:c3:e5:63:2a:02:03:99:f0:d7:3c:f1:a9:86:c2:b3:3e:6d:
3c:13:b0:56:65:99:f9:c7:83:da:72:7c:3a:dd:72:6e:b9:51:
5b:97:28:00:51:be:42:66:91:d1:4f:a3:04:12:2c:4e:22:ef:
4a:a5:34:a5:ee:44:d3:d2:f1:9c:1f:0f:fe:dc:a6:a6:51:56:
93:92:ba:be:02:f1:66:38:55:11:e7:9f:2f:bd:28:7a:53:15:
20:78:3c:48:8d:e5:a1:da:14:77:fd:4a:c4:68:65:d7:8d:d4:
1d:fa:aa:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:53 2024 by rpki-client on console-fra.rpki-client.org