Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/abb8fc-a82b-4157-b28e-e139fbc279b9/1/I-7_kSx3gmYUDKcX0NClGYqaJWc.roa
File: I-7_kSx3gmYUDKcX0NClGYqaJWc.roa (raw, json)
Hash identifier: NjmALrk4yFd5sGny3l26VEtKUPyItYzN5jHCC9oxyQY=
Subject key identifier: 23:EE:FF:91:2C:77:82:66:14:0C:A7:17:D0:D0:A5:19:8A:9A:25:67
Certificate issuer: /CN=6f138f2e033f942bb94e731ff452448c6802ae82
Certificate serial: 064AC6EB
Authority key identifier: 6F:13:8F:2E:03:3F:94:2B:B9:4E:73:1F:F4:52:44:8C:68:02:AE:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxOPLgM_lCu5TnMf9FJEjGgCroI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/abb8fc-a82b-4157-b28e-e139fbc279b9/1/I-7_kSx3gmYUDKcX0NClGYqaJWc.roa
Signing time: Sat 01 Jan 2022 10:54:45 +0000
ROA not before: Sat 01 Jan 2022 10:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59632
IP address blocks: 176.124.104.0/21 maxlen: 21
2001:67c:744::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105563883 (0x64ac6eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f138f2e033f942bb94e731ff452448c6802ae82
Validity
Not Before: Jan 1 10:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23eeff912c778266140ca717d0d0a5198a9a2567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1c:e9:91:8d:8f:5e:35:7d:71:7e:c8:94:27:
b8:cb:04:91:2a:87:c5:f6:73:68:b2:12:41:58:10:
37:c2:7b:19:19:f3:95:e3:ed:70:0c:e7:0c:34:29:
38:12:9a:10:9e:a8:1f:8c:87:42:09:4e:c2:b8:47:
94:0c:a4:d4:1a:cb:29:3b:41:06:69:44:f3:2f:ac:
c5:9e:25:55:89:a4:d2:78:29:e8:1e:c7:04:03:d3:
ac:d7:7b:eb:36:c2:5d:b2:97:0e:41:74:87:e5:9f:
d0:ed:fc:b0:90:cc:2d:5e:7d:df:c3:3f:b2:27:d1:
e6:74:90:d1:34:f9:c8:3c:cf:4a:c9:a6:f4:db:69:
a4:ea:81:13:e3:b9:32:21:30:eb:12:09:3c:88:6c:
ab:5e:ce:4c:f6:22:37:ca:51:6c:6d:54:3f:8c:12:
7a:a3:85:a0:cc:0f:98:0a:54:8a:03:d4:96:7e:02:
1d:86:a7:e2:8e:49:3e:2d:c2:91:28:fa:e0:72:2b:
d8:58:e9:69:53:28:7c:2a:59:c2:96:d4:19:7a:3c:
57:11:0c:2a:d7:7f:c9:10:b6:50:66:0f:80:1a:99:
03:59:91:8d:63:98:96:a6:02:ba:29:69:33:ac:79:
7b:a6:c9:b6:1c:1d:a8:cc:40:f7:73:ba:bb:6a:8c:
3a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:EE:FF:91:2C:77:82:66:14:0C:A7:17:D0:D0:A5:19:8A:9A:25:67
X509v3 Authority Key Identifier:
keyid:6F:13:8F:2E:03:3F:94:2B:B9:4E:73:1F:F4:52:44:8C:68:02:AE:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxOPLgM_lCu5TnMf9FJEjGgCroI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/abb8fc-a82b-4157-b28e-e139fbc279b9/1/I-7_kSx3gmYUDKcX0NClGYqaJWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/abb8fc-a82b-4157-b28e-e139fbc279b9/1/bxOPLgM_lCu5TnMf9FJEjGgCroI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.104.0/21
IPv6:
2001:67c:744::/48
Signature Algorithm: sha256WithRSAEncryption
b9:2c:81:2e:2f:1e:2f:b9:ca:6d:a3:b8:0b:dd:68:d5:13:68:
f9:0d:12:78:c2:44:36:6b:0b:25:ee:7d:c9:13:6e:b8:75:86:
61:1a:b5:bd:b7:c4:ee:23:dc:c3:d6:8e:7c:6c:fb:27:cb:06:
72:cf:9d:55:80:45:73:f9:04:08:15:44:af:5c:e5:6a:b0:a0:
21:66:23:ea:75:ef:ba:00:79:8b:78:bc:7d:36:4a:aa:b8:17:
1e:c7:fc:78:05:0c:64:a6:81:61:ba:c1:35:87:45:e2:82:cc:
0f:39:c5:53:39:8d:e2:5e:51:78:04:af:1f:29:91:be:99:79:
d5:97:6f:67:89:d3:af:d0:43:a4:73:c4:7a:ed:76:9f:b7:be:
3d:57:bd:bb:b2:cc:ba:73:17:97:40:1d:91:b4:e8:9b:c4:1e:
97:5c:92:f6:41:ae:bf:4b:40:a5:21:6d:2b:f3:3d:b1:04:13:
5b:e7:84:e9:19:59:e8:0c:e3:69:17:65:8c:8f:14:bc:49:1a:
73:36:d7:91:29:d2:c2:57:2a:78:42:06:9e:25:29:1d:fa:d4:
ad:7e:1f:c0:b7:3f:76:ac:44:f2:65:3f:74:74:96:3d:8f:f2:
a9:53:5a:d9:08:51:f7:13:96:34:84:28:c4:77:97:6c:12:f7:
06:3a:6e:81
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBkrG6zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZjEzOGYyZTAzM2Y5NDJiYjk0ZTczMWZmNDUyNDQ4YzY4MDJhZTgyMB4XDTIyMDEw
MTEwNTQ0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjNlZWZmOTEyYzc3
ODI2NjE0MGNhNzE3ZDBkMGE1MTk4YTlhMjU2NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI0c6ZGNj141fXF+yJQnuMsEkSqHxfZzaLISQVgQN8J7GRnz
lePtcAznDDQpOBKaEJ6oH4yHQglOwrhHlAyk1BrLKTtBBmlE8y+sxZ4lVYmk0ngp
6B7HBAPTrNd76zbCXbKXDkF0h+Wf0O38sJDMLV5938M/sifR5nSQ0TT5yDzPSsmm
9NtppOqBE+O5MiEw6xIJPIhsq17OTPYiN8pRbG1UP4wSeqOFoMwPmApUigPUln4C
HYan4o5JPi3CkSj64HIr2FjpaVMofCpZwpbUGXo8VxEMKtd/yRC2UGYPgBqZA1mR
jWOYlqYCuilpM6x5e6bJthwdqMxA93O6u2qMOusCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQj7v+RLHeCZhQMpxfQ0KUZipolZzAfBgNVHSMEGDAWgBRvE48uAz+UK7lO
cx/0UkSMaAKugjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2J4T1BMZ01fbEN1NVRuTWY5RkpFakdnQ3JvSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWUvYWJiOGZjLWE4MmItNDE1Ny1iMjhlLWUxMzlmYmMyNzliOS8x
L0ktN19rU3gzZ21ZVURLY1gwTkNsR1lxYUpXYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWUv
YWJiOGZjLWE4MmItNDE1Ny1iMjhlLWUxMzlmYmMyNzliOS8xL2J4T1BMZ01fbEN1
NVRuTWY5RkpFakdnQ3JvSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEA7B8aDAPBAIAAjAJAwcAIAEGfAdE
MA0GCSqGSIb3DQEBCwUAA4IBAQC5LIEuLx4vucpto7gL3WjVE2j5DRJ4wkQ2awsl
7n3JE264dYZhGrW9t8TuI9zD1o58bPsnywZyz51VgEVz+QQIFUSvXOVqsKAhZiPq
de+6AHmLeLx9NkqquBcex/x4BQxkpoFhusE1h0XigswPOcVTOY3iXlF4BK8fKZG+
mXnVl29nidOv0EOkc8R67Xaft749V727ssy6cxeXQB2RtOibxB6XXJL2Qa6/S0Cl
IW0r8z2xBBNb54TpGVnoDONpF2WMjxS8SRpzNteRKdLCVyp4QgaeJSkd+tStfh/A
tz92rETyZT90dJY9j/KpU1rZCFH3E5Y0hCjEd5dsEvcGOm6B
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:27 2024 by rpki-client on console-ams.rpki-client.org