Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/CongMW6bnNa6kyCGUYSx28HI_qk.roa
File: CongMW6bnNa6kyCGUYSx28HI_qk.roa (raw, json)
Hash identifier: FdTH5Kb/QkJxmd+lPOH/XWQCz0XyL3XmkGWe0JBCth8=
Subject key identifier: 0A:89:E0:31:6E:9B:9C:D6:BA:93:20:86:51:84:B1:DB:C1:C8:FE:A9
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01826D34A6F6B7A1C31ABF8A43BD01AE6477
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/CongMW6bnNa6kyCGUYSx28HI_qk.roa
Signing time: Fri 05 Aug 2022 08:52:23 +0000
ROA not before: Fri 05 Aug 2022 08:52:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205361
IP address blocks: 176.57.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6d:34:a6:f6:b7:a1:c3:1a:bf:8a:43:bd:01:ae:64:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 5 08:52:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a89e0316e9b9cd6ba9320865184b1dbc1c8fea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:78:30:03:91:36:10:4b:d1:b0:8b:9f:e7:5b:
f3:74:24:bc:54:d0:a1:ae:65:aa:df:3d:30:f9:26:
80:a0:03:ef:4d:c2:d2:de:59:8c:19:21:da:30:a6:
d2:d6:37:0f:7f:07:d1:04:06:93:27:a7:46:0a:b3:
21:e6:15:f3:4d:72:67:00:f8:bb:bf:e0:dd:b0:1a:
99:6c:92:be:40:45:35:92:c9:f2:b6:ac:66:f8:6c:
58:95:6d:e9:26:e6:fc:29:ac:db:8f:1c:78:de:c2:
a8:13:1c:b3:e9:ce:95:62:1e:02:0c:d7:01:ee:7f:
ae:61:d0:34:d5:ec:9d:74:f7:b9:39:57:f2:83:41:
68:a2:5b:17:92:9a:69:32:21:8a:1e:ad:80:cb:29:
14:f3:f5:00:21:48:cf:1d:16:46:ff:ca:37:1d:ce:
94:3a:15:01:bd:68:9e:24:06:e3:79:26:b4:4b:ef:
7f:58:ab:86:7a:c7:cd:cb:fb:c1:08:ab:57:c5:b7:
b6:fb:4e:c7:15:4c:68:74:16:19:ea:ed:e2:3f:75:
cb:a3:56:fc:89:0e:c6:cc:c2:34:4e:c1:cb:17:33:
e0:e2:3f:ca:5c:89:f8:b5:d0:a8:eb:e5:67:7f:be:
21:06:ad:aa:60:c5:7a:81:4f:98:49:6e:b4:fb:b3:
4c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:89:E0:31:6E:9B:9C:D6:BA:93:20:86:51:84:B1:DB:C1:C8:FE:A9
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/CongMW6bnNa6kyCGUYSx28HI_qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.50.0/24
Signature Algorithm: sha256WithRSAEncryption
63:85:13:92:d9:ec:cb:9e:c2:a8:52:95:86:fa:c9:89:cc:64:
98:7a:4c:96:ff:1e:bd:d5:1a:73:35:31:18:dc:f2:28:cc:5d:
67:78:d3:d5:6d:78:57:ea:8b:dd:c7:fa:24:53:5b:72:35:fb:
da:ff:bf:55:6e:be:66:8b:a5:c3:b3:38:48:a4:73:bf:36:a0:
eb:e6:da:bb:48:9a:93:9a:2d:90:2e:4f:7e:27:0d:86:f6:a6:
de:3d:b6:4d:d3:10:af:a6:a5:bb:02:e8:25:61:e5:a0:d9:09:
8a:e5:e3:93:2a:f5:8a:0d:97:0d:3a:ea:8d:43:30:27:99:f3:
04:a9:52:6e:49:c9:15:94:7a:1b:b0:86:fe:4c:19:a1:23:18:
a5:71:6b:ba:f3:6d:18:f5:61:22:3f:b9:d5:22:ca:b6:6d:be:
0b:a5:e8:ff:2e:f7:01:35:73:e4:aa:ea:fd:0f:c3:2d:96:f2:
a2:cb:33:ab:f4:af:e2:4f:25:d3:59:be:7e:9d:4d:2a:64:cb:
61:bf:79:64:5f:62:ed:a5:c4:fd:6b:2c:24:f5:d7:01:e1:4f:
5f:5b:10:cf:05:8a:5c:8d:1e:e5:62:f5:de:8e:6f:52:3d:22:
16:c6:d8:b9:c9:51:cc:cc:f4:21:02:d8:2a:19:c8:49:02:8b:
48:05:0a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org