Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/7wIuSaDA2IL8p93fv7wUUx6tLdY.roa
File: 7wIuSaDA2IL8p93fv7wUUx6tLdY.roa (raw, json)
Hash identifier: FdtQWRh6TjalGcEmAGN7QAVsJgoVgPSsyvMVDTjlBE4=
Subject key identifier: EF:02:2E:49:A0:C0:D8:82:FC:A7:DD:DF:BF:BC:14:53:1E:AD:2D:D6
Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Certificate serial: 0181D7C65650C9FE2DDF4334EE0A762B98EC
Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/7wIuSaDA2IL8p93fv7wUUx6tLdY.roa
Signing time: Thu 07 Jul 2022 08:28:28 +0000
ROA not before: Thu 07 Jul 2022 08:28:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 176.103.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:c6:56:50:c9:fe:2d:df:43:34:ee:0a:76:2b:98:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Validity
Not Before: Jul 7 08:28:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef022e49a0c0d882fca7dddfbfbc14531ead2dd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5c:6d:8f:8a:8e:da:7f:fd:20:97:ec:1b:78:
ed:09:d4:f8:56:ad:79:23:88:84:b7:8b:ed:53:90:
92:ee:11:0f:1d:7f:34:df:e1:a9:fb:10:a8:dc:ce:
04:17:33:08:21:77:11:fb:4c:47:8b:10:ea:ad:5d:
79:e0:cc:f4:b8:f2:0d:7b:8f:76:f2:69:6e:0e:b1:
e6:e1:19:aa:43:41:5b:21:5c:69:a3:2f:79:fe:99:
52:54:83:72:03:cd:89:a4:5e:10:d6:b2:b1:2f:61:
55:1d:3f:0c:f5:7d:46:db:e0:2a:44:87:34:85:3c:
dc:2b:b5:3d:24:ca:f7:ef:52:21:01:da:03:37:04:
1f:74:70:ca:a0:dc:4e:3d:ad:01:e9:75:50:85:44:
c0:af:a9:03:d1:98:69:b8:0c:b1:db:4e:bd:21:bc:
cc:a7:ea:6c:15:5b:87:af:97:8f:7a:ab:c3:6f:6e:
19:f8:e1:dc:d7:78:c9:44:88:5a:c7:b4:22:7f:2e:
d4:d8:f2:88:e8:da:36:9a:71:16:4d:64:a9:26:bb:
53:a5:02:4d:e0:fd:ac:31:63:86:b2:37:f3:b5:30:
87:f3:20:af:19:a1:29:b6:a1:9a:32:ac:79:b8:5a:
3e:ac:91:00:07:dc:46:47:01:6f:41:2f:3c:33:51:
29:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:02:2E:49:A0:C0:D8:82:FC:A7:DD:DF:BF:BC:14:53:1E:AD:2D:D6
X509v3 Authority Key Identifier:
keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/7wIuSaDA2IL8p93fv7wUUx6tLdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.103.224.0/22
Signature Algorithm: sha256WithRSAEncryption
37:26:05:3d:93:57:00:e1:e2:5c:31:e9:9a:de:fc:e1:85:71:
7b:25:a3:2a:a7:ec:6c:be:12:28:12:ea:d6:61:54:4a:22:4c:
57:2b:2c:0b:7a:36:14:bf:7a:3a:56:30:07:b3:74:08:8c:0f:
ff:58:9d:b8:84:90:a7:ba:19:17:e9:c8:19:ad:b6:0e:ed:7d:
3d:b1:61:50:54:1e:c5:cf:0a:09:af:f0:7a:cd:7d:60:f7:53:
dc:2c:16:f0:61:c7:8c:38:6d:27:2e:a4:fe:08:d5:22:21:5e:
ff:50:27:ac:f8:70:89:6e:70:1b:1d:31:15:b6:4a:a6:eb:9d:
6f:04:9a:9b:aa:64:ad:46:b4:8b:29:f6:20:2e:3a:0c:64:3d:
7a:0e:8f:80:c9:6e:d8:4b:a4:71:6c:87:07:a6:f7:d9:c0:78:
28:b2:85:af:5e:93:70:f6:92:70:15:8b:b5:67:35:10:7f:d7:
05:01:0a:cc:1d:d1:60:6d:2c:25:52:36:cb:4c:6b:9f:14:d0:
58:b6:07:c4:3d:55:4c:fe:68:45:c6:11:bb:28:9a:dd:90:f7:
fd:7a:03:1f:b5:ba:40:4a:1e:a6:98:4a:76:45:ac:b8:89:4f:
91:22:16:20:ea:6d:88:53:b5:f4:37:3a:7a:2f:3e:6a:28:4e:
2a:4d:57:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org