Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/OQx1bzjadNwFGpIZpSDbbb2Qjy8.roa
File: OQx1bzjadNwFGpIZpSDbbb2Qjy8.roa (raw, json)
Hash identifier: UFzTEh5WoVQt8rxSTiDCgy11JpuOoHLpnsGPZ2dvgoU=
Subject key identifier: 39:0C:75:6F:38:DA:74:DC:05:1A:92:19:A5:20:DB:6D:BD:90:8F:2F
Certificate issuer: /CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Certificate serial: 04E6C9CE
Authority key identifier: A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/OQx1bzjadNwFGpIZpSDbbb2Qjy8.roa
Signing time: Sat 01 Jan 2022 05:00:53 +0000
ROA not before: Sat 01 Jan 2022 05:00:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25236
IP address blocks: 176.111.50.0/24 maxlen: 24
147.78.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82233806 (0x4e6c9ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Validity
Not Before: Jan 1 05:00:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=390c756f38da74dc051a9219a520db6dbd908f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:27:bd:ec:a2:ee:12:15:ca:ec:fd:8a:c1:fa:
a9:ed:8e:47:c2:fb:e3:b2:50:7e:53:be:60:03:e1:
8b:47:b3:3a:c3:d9:12:8a:38:1b:05:1f:6c:b0:bb:
ba:b7:bf:d5:a6:92:ef:32:8e:54:10:71:a0:a3:ea:
f7:dd:84:d9:d5:b5:53:9f:dc:51:bf:6b:44:04:28:
78:5e:d3:fb:a6:98:81:21:16:98:de:5b:b9:b0:ee:
05:9a:81:ac:d6:d9:8f:7f:88:ed:d5:77:4c:5d:18:
c6:24:28:1b:b8:39:ef:f2:82:b4:22:93:6a:ec:56:
92:23:de:f0:7a:13:3a:c8:b1:34:7a:69:e8:48:16:
df:5d:96:fe:19:3b:3d:4e:5f:0a:c9:c4:1a:48:5b:
dd:58:a5:0b:85:4b:b3:e2:7c:9e:8b:d0:57:fd:33:
1d:d1:8a:3c:65:e7:b4:ec:6a:4c:ea:35:20:01:9d:
e4:b2:c2:07:7f:80:0d:6b:40:14:29:ab:77:f9:f3:
dd:7c:42:2b:14:ed:0d:65:7f:45:91:4d:67:99:ae:
7e:f5:2c:50:06:d7:21:55:61:4e:b6:eb:1e:62:de:
56:5f:8b:0c:b7:07:1e:4a:5e:0d:d6:40:2c:00:f5:
3d:7f:e4:eb:1b:d7:33:17:f0:c0:e3:bc:79:d0:a7:
a1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:0C:75:6F:38:DA:74:DC:05:1A:92:19:A5:20:DB:6D:BD:90:8F:2F
X509v3 Authority Key Identifier:
keyid:A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/OQx1bzjadNwFGpIZpSDbbb2Qjy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/preJsy4W6d0vcFExGdx36mH_Hgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.117.0/24
176.111.50.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:3e:0f:e5:b8:df:bc:48:3b:02:0f:07:9e:c1:51:b8:69:29:
7a:16:db:62:e6:d2:82:51:3a:60:c2:98:57:88:20:00:45:df:
46:7f:e1:16:b3:48:cb:2e:e1:c4:c0:d9:5f:bf:bc:6e:56:c5:
82:e0:a4:22:f9:96:b7:fd:3f:42:3a:e0:08:d8:8f:3e:bf:7a:
12:5e:03:f4:3d:65:2e:75:b0:93:4e:c4:61:cf:9b:47:eb:23:
b5:0f:f9:5c:f9:0f:e6:a4:3f:13:38:16:33:58:b5:41:3c:de:
68:eb:f0:c7:8e:f7:06:d2:4c:f9:ae:db:e9:b7:ab:d9:f6:dc:
b7:0c:aa:10:06:1d:c2:ad:6b:23:4d:45:b5:8a:29:c1:c5:22:
c4:f0:18:1b:15:e3:50:7f:14:be:14:d7:14:d6:73:0c:18:c5:
03:7f:85:19:9f:a8:b1:23:9c:01:98:56:5e:e2:bb:96:fe:56:
25:e6:e3:77:ea:1b:d5:34:ad:db:8c:2c:80:d2:c2:dc:a2:41:
23:22:dc:6c:c8:26:f3:96:31:8e:2a:a7:56:4e:7a:76:1a:0b:
10:35:79:ea:7d:d8:07:9d:7b:d4:18:00:90:3a:43:49:9c:f5:
b0:bf:46:e7:e7:72:7d:59:9b:b2:48:00:96:04:cc:e4:d8:ab:
fb:c4:99:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:30 2024 by rpki-client on console-ams.rpki-client.org