Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/f3qZhLl_GPq7JoVYrNCvcChq3d8.roa
File: f3qZhLl_GPq7JoVYrNCvcChq3d8.roa (raw, json)
Hash identifier: ig1XCyFt8Z3t5jQOCeh+KxU9i4DjVaSwdeaTHM200fo=
Subject key identifier: 7F:7A:99:84:B9:7F:18:FA:BB:26:85:58:AC:D0:AF:70:28:6A:DD:DF
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AC345A5
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/f3qZhLl_GPq7JoVYrNCvcChq3d8.roa
Signing time: Sat 01 Jan 2022 16:03:15 +0000
ROA not before: Sat 01 Jan 2022 16:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208880
IP address blocks: 176.236.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449004965 (0x1ac345a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f7a9984b97f18fabb268558acd0af70286adddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:cd:71:6f:ad:8a:09:11:51:84:5b:47:dd:f4:
01:c0:00:d2:e9:fe:9d:49:fd:6e:75:c4:c8:e8:fb:
14:a0:6e:3a:1d:46:75:90:10:ac:7b:6b:ac:92:6d:
5c:a6:3d:8c:50:3f:7c:b1:d4:99:11:ce:40:31:8f:
67:94:8a:de:da:be:cf:67:88:ed:b9:5b:2e:db:d1:
32:d2:92:e4:ea:85:5d:0a:73:00:07:7a:92:0d:dc:
17:6c:29:c9:f0:04:d5:e3:92:b0:f2:a9:6d:37:b3:
96:20:82:f9:46:33:ca:2b:ac:ad:d5:6e:d5:ae:0c:
5e:1f:df:53:8f:73:66:1a:70:40:76:89:da:cd:9b:
2d:f8:68:f4:1d:77:47:6a:6b:28:da:84:9b:83:7f:
8b:5b:21:7c:db:3c:4c:30:72:41:9e:9f:84:b9:8c:
34:c7:37:c7:65:e5:ea:b6:8a:71:33:15:7f:19:d3:
a9:53:8f:aa:31:09:a2:ca:0c:b9:a4:b4:a6:54:2c:
87:ec:b9:89:1c:52:f3:8c:8c:35:9e:1f:e5:c6:4b:
75:20:c6:1c:b7:a7:0f:d7:79:44:a0:b2:2b:9e:63:
3a:6a:d2:cf:94:dc:c8:4e:59:48:6e:4d:7c:b0:04:
c5:fc:2d:54:08:28:df:fd:bb:90:37:ba:df:6e:aa:
f7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:7A:99:84:B9:7F:18:FA:BB:26:85:58:AC:D0:AF:70:28:6A:DD:DF
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/f3qZhLl_GPq7JoVYrNCvcChq3d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.236.245.0/24
Signature Algorithm: sha256WithRSAEncryption
79:4c:02:81:c8:33:d1:1f:33:9b:ad:00:f0:aa:6b:ef:75:5a:
98:85:1c:da:80:88:ce:3c:d3:27:a2:af:a7:57:d0:01:16:18:
2f:9b:86:4d:5d:f2:fc:7a:60:33:f2:dc:dc:ed:b7:b9:24:67:
da:f9:a4:c8:60:df:69:5f:ac:a1:0c:40:42:dd:2c:55:75:86:
da:4f:c9:74:eb:9f:19:f9:30:f6:fd:f6:f5:15:47:87:37:4e:
9f:c6:65:9f:5e:67:31:e4:65:78:a4:1e:d3:5c:69:93:ad:d3:
be:aa:66:73:bb:b1:0c:ca:b0:09:c4:dc:94:2a:09:b4:f5:22:
55:1c:9d:24:aa:71:0e:4f:a2:16:5f:93:90:f1:c4:4a:33:36:
ce:39:17:23:da:a8:2f:f1:bb:91:ef:df:b8:fb:f7:84:c8:9d:
ec:44:d8:9a:34:d4:c9:57:89:32:c0:c4:19:ef:2b:16:8d:a9:
49:72:c7:1e:35:74:76:3e:69:f6:c7:9d:57:ed:80:4a:5c:e9:
89:f0:26:97:b5:97:b0:b5:69:46:63:e9:3b:26:88:cd:46:e5:
e1:ef:cc:2b:c8:e2:74:09:c9:09:27:64:0d:e9:89:3f:4b:e0:
78:b5:49:4b:17:7f:f8:ef:e6:c9:3e:92:b7:0d:8a:36:9a:ca:
ed:1d:57:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org