Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/SOlJcvmdrFJ7ady12lJMWdEtuMA.roa
File: SOlJcvmdrFJ7ady12lJMWdEtuMA.roa (raw, json)
Hash identifier: WssgtyH5JmfktTZN3JCd/A5BgdS/bAadIqCXafg4SK4=
Subject key identifier: 48:E9:49:72:F9:9D:AC:52:7B:69:DC:B5:DA:52:4C:59:D1:2D:B8:C0
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AA8CC03
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/SOlJcvmdrFJ7ady12lJMWdEtuMA.roa
Signing time: Sat 01 Jan 2022 16:03:00 +0000
ROA not before: Sat 01 Jan 2022 16:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24667
IP address blocks: 176.235.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447269891 (0x1aa8cc03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48e94972f99dac527b69dcb5da524c59d12db8c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a3:15:b3:f5:a6:ad:19:16:c5:bd:b3:2f:16:
ff:a8:aa:5d:6f:2b:bb:dd:d6:69:5f:ec:b4:89:99:
9f:13:fa:49:72:9a:4a:a9:db:6d:d7:47:48:92:09:
fc:6a:44:41:0a:96:9a:7b:92:54:c1:8a:bb:ad:8a:
33:42:99:ec:c4:22:33:91:3f:47:1b:12:7d:85:13:
a8:6e:0b:31:33:d0:cd:91:05:01:91:ac:b0:36:db:
46:3e:0d:db:b8:18:e9:f6:b2:84:93:33:63:76:2c:
f1:3b:62:37:2a:58:e3:09:bb:2b:30:34:6d:d0:62:
3b:59:1f:a3:40:f5:68:bb:be:4a:8c:ca:0e:2a:98:
72:2c:f5:ea:a1:ff:6c:ce:89:fc:d8:5a:52:43:d5:
3a:32:40:38:46:8c:72:b1:c4:39:c3:62:64:b7:16:
ac:d6:cd:ea:ca:e6:e5:cb:06:6f:93:0c:5d:b6:68:
24:83:97:53:73:bf:ed:01:fe:c5:41:59:c3:78:7c:
17:0e:63:01:df:23:2e:85:d7:e1:58:83:fe:7e:24:
67:21:bf:c0:c2:21:a9:a0:90:be:84:48:1c:68:37:
61:64:66:d2:6f:11:89:bb:bb:5f:1c:3f:e9:53:6e:
c7:1c:97:bc:cd:6d:50:da:f7:c9:6c:f5:0c:35:89:
7a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E9:49:72:F9:9D:AC:52:7B:69:DC:B5:DA:52:4C:59:D1:2D:B8:C0
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/SOlJcvmdrFJ7ady12lJMWdEtuMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.235.122.0/24
Signature Algorithm: sha256WithRSAEncryption
49:88:c7:15:87:e6:14:ef:b0:da:75:69:ff:f7:96:32:2c:2a:
cd:2e:4a:90:a1:ef:bb:f2:ee:3e:16:47:25:92:27:83:4f:f3:
03:3a:26:ce:94:cb:2f:d0:4e:bd:5a:47:46:ef:c0:4d:28:07:
da:a8:8f:50:8c:a5:5d:2c:1c:a7:3d:0c:b0:84:05:91:b7:3f:
8c:3c:10:f0:02:a1:b1:17:39:6b:c2:d8:00:92:e3:80:c3:4b:
cf:c5:a4:e3:20:0b:9e:80:5a:37:ea:f2:4b:50:0a:27:ee:bf:
da:4e:39:d8:3f:f7:d6:e1:64:46:ad:7c:f1:24:34:e2:4a:ac:
0d:cc:73:9b:76:4e:47:3f:08:16:29:a8:c8:32:76:3f:fe:76:
2b:fb:03:34:7b:8b:5a:a7:45:2a:7f:6a:a5:7f:6b:13:18:f0:
fe:b4:40:df:ed:05:3d:5f:66:0a:83:38:b2:0f:09:6c:eb:e0:
8d:13:89:de:cf:da:d9:1f:e8:e6:53:5b:96:9d:b9:b1:a0:ee:
16:ea:05:55:99:a2:63:2f:36:86:58:ba:82:24:2f:45:b9:34:
82:11:1e:56:0a:f2:8f:9e:7d:b1:93:46:4f:25:17:77:48:d1:
28:09:a9:aa:7e:98:f3:d4:de:7a:00:a0:22:03:dd:8e:59:45:
11:df:4a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org