Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/SpFbiUATTyZUzwK46fWfcel2GaY.roa
File: SpFbiUATTyZUzwK46fWfcel2GaY.roa (raw, json)
Hash identifier: UcCQIlYgNI/GB6ingVLssdkxgZC2CHFCih0BEq6Ox/s=
Subject key identifier: 4A:91:5B:89:40:13:4F:26:54:CF:02:B8:E9:F5:9F:71:E9:76:19:A6
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0184614CB3442D3C8BF9CBFAE4228FE1A523
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/SpFbiUATTyZUzwK46fWfcel2GaY.roa
Signing time: Thu 10 Nov 2022 11:28:47 +0000
ROA not before: Thu 10 Nov 2022 11:28:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 176.57.49.0/24 maxlen: 24
176.57.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:61:4c:b3:44:2d:3c:8b:f9:cb:fa:e4:22:8f:e1:a5:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 10 11:28:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a915b8940134f2654cf02b8e9f59f71e97619a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6f:f5:f6:45:45:5d:d7:da:7d:ac:4f:c2:95:
60:da:7c:b9:e1:0b:5a:c3:31:29:03:51:44:d4:6f:
56:f6:78:75:28:b7:1b:d9:1b:ea:58:e8:60:4e:9d:
bd:96:f6:4d:60:d6:80:87:48:df:ed:b2:e2:37:b7:
82:75:1c:00:ae:d3:29:00:01:34:e6:2a:45:3e:7f:
ac:f3:c1:48:59:cb:15:01:4f:5f:83:f6:30:c7:df:
e3:c8:45:c5:a3:26:ed:cf:0e:52:aa:52:05:be:39:
53:91:5c:c7:2a:24:ee:b9:90:9d:0c:b9:84:eb:e9:
71:6c:ba:07:b5:7b:4d:f2:f4:49:82:a2:16:72:94:
9a:1d:c4:9b:33:e8:57:2c:0d:0f:df:dd:1c:51:11:
b3:50:7e:cf:50:03:81:61:7e:d3:43:9e:a9:d3:30:
28:da:1e:4c:01:5b:7a:0a:fb:df:cf:33:9c:77:94:
21:f2:9b:17:65:3e:0f:c4:54:d3:9c:47:ec:d9:ba:
72:92:b3:1c:ee:d1:65:53:6a:23:8d:1a:82:f0:f8:
5f:de:40:e0:3e:df:f3:c6:04:8e:c4:41:e7:96:a1:
b9:9d:3a:ea:47:70:1c:72:75:90:f8:96:94:c8:e3:
b8:9b:fc:06:12:fa:d9:6b:b0:cf:db:7e:01:92:2b:
db:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:91:5B:89:40:13:4F:26:54:CF:02:B8:E9:F5:9F:71:E9:76:19:A6
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/SpFbiUATTyZUzwK46fWfcel2GaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.48.0/23
Signature Algorithm: sha256WithRSAEncryption
14:86:02:e9:e0:c4:da:69:60:39:82:b1:90:42:32:27:f6:66:
50:48:47:2a:99:cf:42:f6:f4:20:05:6e:4c:4f:07:af:01:e5:
5d:ad:07:0c:fa:e7:ae:e8:fa:3d:55:48:2e:18:8c:46:45:18:
04:5c:b4:6f:49:cd:a1:44:7c:98:48:c7:8a:91:a8:ca:e5:be:
65:31:78:15:eb:ca:a7:56:d1:49:f7:e5:3d:d8:37:74:ff:d2:
b2:36:28:3a:f1:6f:52:ea:44:f3:29:6f:d6:59:56:54:0d:c6:
54:5c:47:59:41:ff:4b:18:6e:3b:43:a6:a2:ea:a7:47:ac:4a:
6e:d3:94:53:43:d7:1f:b0:15:84:88:55:8c:d1:49:83:c6:da:
ca:49:97:67:f3:37:e4:01:67:b7:36:16:f5:16:3a:15:0b:c9:
09:fd:66:57:4e:da:c2:bf:2a:d0:70:e0:21:51:c4:22:10:c9:
1b:8b:7b:a1:59:2c:1f:a8:5c:97:12:bb:cc:b8:dd:a3:2b:23:
4d:dc:b4:d5:91:a6:cd:7a:60:8e:e0:96:50:6b:56:df:e6:0f:
c4:d7:33:57:7c:68:9e:fb:38:04:9e:d6:bd:40:15:d6:e4:96:
0f:54:d8:80:45:c9:47:ff:91:3d:d1:14:0c:b9:24:b8:38:b5:
fd:f9:70:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org