Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/xu2AeOtWUoO--zp19n3f9I7AwWs.roa
File: xu2AeOtWUoO--zp19n3f9I7AwWs.roa (raw, json)
Hash identifier: MxhSxhwoQnK3eqqTBeSy7UGMxZ2KSHshMwhzyzI6cvQ=
Subject key identifier: C6:ED:80:78:EB:56:52:83:BE:FB:3A:75:F6:7D:DF:F4:8E:C0:C1:6B
Certificate issuer: /CN=afa929be73491acd99d590372a52b815fa1f23f5
Certificate serial: 0260467D
Authority key identifier: AF:A9:29:BE:73:49:1A:CD:99:D5:90:37:2A:52:B8:15:FA:1F:23:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/xu2AeOtWUoO--zp19n3f9I7AwWs.roa
Signing time: Sat 01 Jan 2022 02:53:53 +0000
ROA not before: Sat 01 Jan 2022 02:53:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57774
IP address blocks: 176.107.192.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39863933 (0x260467d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afa929be73491acd99d590372a52b815fa1f23f5
Validity
Not Before: Jan 1 02:53:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6ed8078eb565283befb3a75f67ddff48ec0c16b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d7:c6:86:1c:ed:38:63:8a:68:df:87:99:63:
7d:2b:60:2a:69:a3:1e:58:83:77:ea:b2:4f:f4:e0:
c1:67:e1:04:44:6d:7b:ca:d1:b3:da:5f:9c:d8:31:
80:03:7a:8c:54:58:80:9a:19:01:f2:f2:47:30:47:
43:9b:e3:47:c6:10:21:3d:12:3f:a8:be:3e:0a:c4:
11:5e:96:86:fe:6f:f7:f8:5f:69:28:fc:64:78:a8:
cb:5e:01:46:81:80:86:d3:d7:d0:85:f5:c6:0a:1a:
09:fe:2c:18:23:02:29:70:14:55:1b:60:3a:1d:1c:
94:76:cf:bd:5d:16:9a:17:21:1d:c0:e0:4a:e6:10:
f3:93:32:e0:26:8a:d3:79:c4:19:e2:71:f0:da:b5:
e0:d7:b7:e8:c2:dd:ae:84:54:a1:c5:8b:f4:bb:f7:
d9:99:58:7f:85:5b:fc:fb:ee:a0:f1:18:d3:b9:a4:
73:f2:5c:6a:de:e1:52:2e:05:86:5e:a6:ee:72:8a:
ee:bd:14:25:65:8c:54:11:45:98:a2:a2:47:bc:e9:
72:e3:49:be:78:e6:2f:42:ab:86:e2:d8:67:a1:11:
11:d6:31:0d:6c:76:43:56:26:7e:34:8c:56:6c:c3:
1e:06:97:69:ae:04:af:20:b2:4e:20:43:d4:65:fd:
23:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:ED:80:78:EB:56:52:83:BE:FB:3A:75:F6:7D:DF:F4:8E:C0:C1:6B
X509v3 Authority Key Identifier:
keyid:AF:A9:29:BE:73:49:1A:CD:99:D5:90:37:2A:52:B8:15:FA:1F:23:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/xu2AeOtWUoO--zp19n3f9I7AwWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2694f8-fa1f-4c81-8312-3b6f1bdf412a/1/r6kpvnNJGs2Z1ZA3KlK4FfofI_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.107.192.0/21
Signature Algorithm: sha256WithRSAEncryption
34:81:9f:53:bc:09:7d:41:e3:3c:38:1b:46:b7:7a:4b:4c:a1:
29:5c:6e:48:27:83:a3:7c:1f:a3:ab:6d:92:b6:c9:7c:62:f2:
73:4a:03:38:1b:bc:56:9a:5c:d0:2f:66:47:94:06:e6:4c:3b:
9c:fe:0f:3b:07:7c:98:2a:75:85:13:21:79:9b:9e:d4:84:fa:
74:9b:50:01:f4:55:8d:33:b9:b1:f6:64:7c:41:4a:34:36:4e:
05:72:b2:60:51:05:17:33:8d:27:c1:e2:bf:8a:44:ac:bb:e9:
fb:3f:36:6d:35:88:c4:ac:05:65:39:67:13:98:6a:89:c1:77:
0b:49:7c:1b:94:75:05:ea:de:59:90:bc:fb:b1:bd:e0:23:0e:
84:6b:cf:a3:d4:c4:62:bb:05:ae:27:f5:21:47:d7:75:6a:a1:
04:f0:49:36:ab:73:62:d9:49:10:22:40:8e:d5:b1:e1:d7:c9:
fb:e2:2b:4b:d4:96:ca:7d:6c:30:6b:ff:b1:cf:a8:06:ac:a1:
ab:52:5b:a9:18:b3:02:b0:a9:83:5e:06:81:7d:24:25:c3:05:
da:94:a3:05:eb:a3:b9:cc:d0:d1:89:3d:3a:7c:61:dd:ff:c4:
96:94:3c:c6:eb:ba:42:aa:c7:e1:22:9b:ee:df:ac:05:10:95:
1b:65:eb:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:44 2024 by rpki-client on console-fra.rpki-client.org