Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/k3XY_Z6-uu-NgcFOSpLxhCtnf3E.roa
File: k3XY_Z6-uu-NgcFOSpLxhCtnf3E.roa (raw, json)
Hash identifier: DBKKHYEbcx7TmZ2mC6OfCRZwy733+uEqKNcy8gbd4Dc=
Subject key identifier: 93:75:D8:FD:9E:BE:BA:EF:8D:81:C1:4E:4A:92:F1:84:2B:67:7F:71
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 052098D5
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/k3XY_Z6-uu-NgcFOSpLxhCtnf3E.roa
Signing time: Sat 01 Jan 2022 05:01:49 +0000
ROA not before: Sat 01 Jan 2022 05:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203653
IP address blocks: 176.222.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86022357 (0x52098d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Jan 1 05:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9375d8fd9ebebaef8d81c14e4a92f1842b677f71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c0:e9:fa:2c:7a:d2:16:28:aa:43:a4:9c:26:
c2:e3:66:78:73:e3:bd:89:29:79:39:13:9b:fa:54:
03:4c:9f:18:2f:67:f4:e1:15:af:c9:cd:07:65:5f:
67:85:b5:6d:f4:63:bf:4a:b4:7c:6d:36:f9:4a:c0:
c6:da:c6:84:ef:6f:2d:39:34:7a:9b:b2:46:c3:70:
a2:ca:c4:b9:b2:db:b5:3a:c8:0c:ea:27:77:6d:90:
9e:ea:c9:f6:83:14:72:9a:ce:4c:29:eb:27:64:e7:
f7:a6:84:54:9d:3e:1e:e8:89:03:dd:93:90:f9:ee:
28:3d:0f:47:cc:b9:1d:be:99:9c:c7:e3:8b:66:d0:
0c:5a:95:16:a5:ac:43:19:4d:aa:96:cb:db:79:42:
67:a4:12:55:bc:a7:24:c5:b8:aa:a9:46:a6:37:18:
47:aa:6c:80:d8:cf:6d:d8:29:3a:79:e3:49:c1:6e:
30:02:e2:7a:08:6b:cd:82:93:21:3e:5e:36:74:36:
42:e7:f2:71:21:54:bd:d8:ae:68:78:ac:bd:ce:e5:
75:27:03:c0:8d:63:60:ed:8e:4a:0d:fa:c5:df:de:
60:e1:b1:3f:44:0f:5f:52:e4:6a:66:3f:1f:93:b5:
9c:d6:71:9c:6c:a5:73:cd:12:f6:ba:3a:b5:b0:24:
f0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:75:D8:FD:9E:BE:BA:EF:8D:81:C1:4E:4A:92:F1:84:2B:67:7F:71
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/k3XY_Z6-uu-NgcFOSpLxhCtnf3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.222.61.0/24
Signature Algorithm: sha256WithRSAEncryption
24:f9:dc:da:3a:68:32:c1:2a:21:54:cd:e2:10:2f:23:69:56:
bd:32:b1:83:29:68:36:bc:09:eb:f5:dd:78:a4:72:60:af:46:
4e:a4:75:a7:19:ac:b6:24:5d:61:17:3b:00:da:98:f7:25:5d:
c3:c7:53:8b:26:ca:71:40:ee:49:60:36:2e:69:53:da:b3:f7:
54:30:a1:7b:d1:5c:6e:af:d7:1d:08:a2:c4:63:b8:c0:0f:2a:
33:92:49:46:b7:7c:35:65:08:59:af:d4:4f:5b:5c:36:c3:37:
bd:e5:99:2c:72:be:1d:60:f9:f5:14:0b:db:9e:d0:62:45:f1:
25:0c:87:aa:24:bb:85:9c:98:9b:3c:3e:47:b5:60:2e:52:25:
12:09:5c:5b:84:8c:47:a0:de:7c:b9:15:05:6e:09:2b:09:b7:
88:ab:77:87:7d:ce:c9:ee:cd:76:f5:b9:8c:0d:85:d5:bd:76:
6c:1b:6d:38:78:20:dc:f8:e3:bc:a4:6f:92:3d:e6:e7:02:18:
a1:55:36:8c:cf:99:70:d2:89:04:1d:2a:78:73:a4:d3:07:7b:
a9:d3:ea:3d:5c:ec:11:8a:2d:34:f0:c4:ea:09:83:b2:cd:3c:
1f:7f:1e:09:c9:33:a5:cd:f5:70:d3:8b:7e:dd:8e:46:19:1b:
3a:3f:ec:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:55 2023 by rpki-client on console-fra.rpki-client.org