Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/J9djZtJOSvHwjkGta94sO93nudY.roa
File: J9djZtJOSvHwjkGta94sO93nudY.roa (raw, json)
Hash identifier: nHWJZWv5Avezr84JEM6RpXBUuWqq+IgICl1c6lWsCz8=
Subject key identifier: 27:D7:63:66:D2:4E:4A:F1:F0:8E:41:AD:6B:DE:2C:3B:DD:E7:B9:D6
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01848F3B426243F6B72A8D8982B13556C5EC
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/J9djZtJOSvHwjkGta94sO93nudY.roa
Signing time: Sat 19 Nov 2022 09:32:16 +0000
ROA not before: Sat 19 Nov 2022 09:32:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212886
IP address blocks: 176.57.52.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8f:3b:42:62:43:f6:b7:2a:8d:89:82:b1:35:56:c5:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 19 09:32:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27d76366d24e4af1f08e41ad6bde2c3bdde7b9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d1:9b:b4:c4:0e:65:79:fa:ef:8c:ec:ca:c4:
18:e9:2c:82:d1:22:e0:55:23:17:da:7c:34:06:ff:
7e:73:58:32:c6:de:8d:5f:0b:3b:95:8b:50:5d:27:
8d:0a:65:db:3f:5b:55:11:80:7d:3b:5a:b4:c2:73:
97:5a:f7:8c:6a:f4:80:f2:50:80:6e:2b:6f:e6:5b:
9f:b0:40:c6:ee:c1:4f:09:bf:c2:84:23:9e:b8:d8:
02:1b:4f:5a:a6:0b:79:6b:6d:e5:64:d3:bc:eb:b6:
32:6f:42:c7:00:7c:62:47:d1:46:a4:04:39:5b:5c:
5e:14:e7:5f:81:e6:eb:d1:37:db:0a:65:2e:97:1b:
97:6a:e8:d6:a4:0c:a4:e2:75:49:f2:9f:03:5e:23:
83:a5:28:bb:ef:45:6a:25:fb:85:79:9e:26:dc:2c:
88:a1:53:bb:d8:9f:e0:cc:7e:65:3a:95:07:6c:a9:
97:ff:57:6d:0c:b7:87:3a:4e:fa:1f:d2:1b:1f:f5:
44:14:e8:3f:23:44:44:a5:cc:81:5a:bd:be:73:75:
95:6c:e0:a2:e5:b3:0f:87:b7:ce:a2:d1:7c:84:bb:
92:b2:91:36:fe:3e:71:67:e0:96:74:82:1c:55:d6:
4c:c0:3b:3a:ca:b4:9d:29:67:98:67:f7:07:2f:50:
1a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D7:63:66:D2:4E:4A:F1:F0:8E:41:AD:6B:DE:2C:3B:DD:E7:B9:D6
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/J9djZtJOSvHwjkGta94sO93nudY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.52.0/23
Signature Algorithm: sha256WithRSAEncryption
49:87:78:94:c9:91:dc:37:d5:83:af:d8:1c:bb:92:53:12:7b:
a1:a0:da:2c:15:54:2f:dc:9e:b3:e1:df:bf:52:cc:08:b0:65:
c4:66:9e:1a:76:4e:cf:6d:d9:78:83:b5:2c:01:eb:10:bd:49:
80:c0:ee:a1:df:e7:de:ec:92:a2:68:10:1d:03:3f:ca:1b:a5:
b2:e1:a1:77:33:52:53:fb:63:8b:4d:dc:5f:53:70:40:dc:ad:
26:65:4d:ae:26:2f:b5:a0:05:24:b4:00:b0:01:85:c1:59:76:
96:26:be:fe:22:44:0d:a7:2b:2a:e1:eb:6b:9a:74:c1:0d:f4:
44:88:16:91:98:af:48:d8:a8:21:3a:ec:3a:1b:4b:57:86:ff:
ea:8e:cf:9b:98:ac:89:f6:58:63:b0:38:d1:65:f0:e5:42:93:
28:37:e7:25:89:6a:80:19:12:91:72:62:1f:97:64:81:a4:ce:
e3:10:12:ec:ae:d3:18:75:c5:a8:94:1b:a0:12:0c:b0:b8:89:
0a:2e:24:91:a7:0f:d5:d8:1c:03:62:8e:3b:ec:40:fb:7e:1d:
5e:bc:2c:f0:53:04:d3:e1:43:52:47:f9:aa:b4:ef:7e:5c:a5:
bb:95:cf:66:c2:c2:bc:ef:bc:1d:e0:d9:7d:28:20:77:e2:29:
eb:76:05:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org