Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/xOI8KSXeWsdtH0PwT8Zq21Y1DKY.roa
File: xOI8KSXeWsdtH0PwT8Zq21Y1DKY.roa (raw, json)
Hash identifier: pf3/JQpGlGepZPksqRiFYmT8jrSnOD9UVF0EuMTZ5wk=
Subject key identifier: C4:E2:3C:29:25:DE:5A:C7:6D:1F:43:F0:4F:C6:6A:DB:56:35:0C:A6
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 02EF2283
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/xOI8KSXeWsdtH0PwT8Zq21Y1DKY.roa
Signing time: Wed 11 May 2022 12:57:03 +0000
ROA not before: Wed 11 May 2022 12:57:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 176.57.48.0/24 maxlen: 24
176.57.48.0/20 maxlen: 24
176.57.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49226371 (0x2ef2283)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: May 11 12:57:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4e23c2925de5ac76d1f43f04fc66adb56350ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:56:21:1c:8f:64:93:23:c0:22:b0:30:be:7a:
54:5e:3c:b0:31:23:60:06:63:aa:24:6d:ee:08:fe:
9f:33:d5:d3:92:eb:b7:05:6b:62:9f:52:ea:e1:19:
a7:b7:2e:af:d1:46:94:dc:66:0c:ac:e9:72:49:f2:
f4:8b:36:37:c7:05:ad:13:a4:0a:7f:ba:6c:03:a8:
6c:1c:8c:bb:83:65:00:65:a4:25:8d:31:65:2a:fa:
f9:d7:9c:41:ca:40:c1:50:b0:51:77:62:ea:be:05:
60:34:64:78:7a:f3:fe:da:22:db:1e:b7:d8:e6:64:
8b:31:59:85:00:5a:f3:88:88:b8:cf:60:69:44:70:
2d:3c:c9:d8:cf:d0:83:21:d7:c3:f0:fa:c6:22:20:
00:88:98:53:35:d0:58:40:fc:0c:13:6a:1e:4e:ea:
19:5d:14:75:cc:47:dd:2b:e3:39:46:81:29:bf:d1:
fb:87:a2:91:1d:55:72:c5:33:13:a7:b8:23:c0:8e:
12:e5:b7:df:cb:96:4a:6c:91:35:ff:73:aa:1a:79:
72:b8:27:79:29:2d:db:6a:da:7d:74:ab:03:a6:c8:
d4:27:62:07:de:96:ac:0b:99:ad:12:9f:15:5b:a8:
78:40:42:19:87:dc:14:eb:6e:94:11:52:c0:5d:d5:
30:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E2:3C:29:25:DE:5A:C7:6D:1F:43:F0:4F:C6:6A:DB:56:35:0C:A6
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/xOI8KSXeWsdtH0PwT8Zq21Y1DKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.48.0/20
Signature Algorithm: sha256WithRSAEncryption
71:f1:e6:ad:f8:b3:ca:47:d8:a4:23:46:50:3c:d2:55:cb:33:
5f:00:23:c2:91:d3:e9:5d:e6:b9:26:03:a3:8b:e7:ae:97:35:
dc:04:d8:6a:77:54:4b:af:eb:e7:ac:1e:58:64:c5:da:fa:63:
7f:e5:6d:ad:28:c9:35:7c:81:f7:19:54:c0:7f:b2:63:63:53:
ea:36:98:f2:44:82:9d:5a:60:d7:2d:be:be:1b:a9:06:c1:85:
06:44:fc:9d:81:a7:ac:cc:3c:2f:fb:43:35:11:eb:f9:43:1a:
88:54:d9:78:4e:a4:21:b0:03:6c:3c:06:bd:b3:19:80:2c:8a:
78:35:43:d0:fa:30:a4:fc:12:e2:64:cc:c4:e6:48:f3:66:f0:
c3:70:99:83:2e:3c:2e:90:c7:90:85:24:fe:5b:4c:0e:8d:37:
b4:ee:0b:48:7b:d8:fd:4b:17:e2:e2:64:cd:67:fb:90:01:eb:
51:4d:f6:d0:2d:79:89:dd:da:6e:ba:16:46:46:eb:a4:97:6c:
ef:e6:64:2c:a7:d4:fc:ca:c6:91:a4:62:4c:3f:7e:70:cf:b1:
fe:38:8a:78:7b:1b:eb:1a:ac:6e:8f:09:16:11:ba:4c:06:72:
d0:0b:ad:c3:3c:55:29:79:b1:50:29:9f:f9:b9:ea:cd:a7:2c:
c9:54:1d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org