Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/jfMuj2FcKQfByiudWbtIhZ-7pCA.roa
File: jfMuj2FcKQfByiudWbtIhZ-7pCA.roa (raw, json)
Hash identifier: mXqYx8G7y767fQ+7x9QYS6XLc7u7OpFRNaLLjhx12tw=
Subject key identifier: 8D:F3:2E:8F:61:5C:29:07:C1:CA:2B:9D:59:BB:48:85:9F:BB:A4:20
Certificate issuer: /CN=c3ab8f44fc356096b8e656fc8739871ec00d1f12
Certificate serial: 0E87773C
Authority key identifier: C3:AB:8F:44:FC:35:60:96:B8:E6:56:FC:87:39:87:1E:C0:0D:1F:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6uPRPw1YJa45lb8hzmHHsANHxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/jfMuj2FcKQfByiudWbtIhZ-7pCA.roa
Signing time: Sat 01 Jan 2022 08:55:40 +0000
ROA not before: Sat 01 Jan 2022 08:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210097
IP address blocks: 176.98.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243758908 (0xe87773c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3ab8f44fc356096b8e656fc8739871ec00d1f12
Validity
Not Before: Jan 1 08:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8df32e8f615c2907c1ca2b9d59bb48859fbba420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:82:ea:2d:1f:d5:38:9c:6a:07:a7:c1:dc:c6:
26:75:e4:c5:7f:f7:de:7d:50:3c:44:ac:26:78:a7:
8b:68:23:40:fb:71:8a:e6:ac:f4:54:ec:94:6c:e3:
8a:17:4f:c9:13:32:b6:01:bf:ec:71:0e:5d:e7:40:
7a:39:20:0d:cc:d3:b7:d8:00:cf:6a:fe:19:df:f6:
98:df:ff:3a:8d:9f:bd:a1:d3:cf:a2:c1:dd:c9:fc:
bb:70:ce:a1:1c:3d:25:0d:05:44:7e:be:c7:28:0d:
f3:25:58:8d:9a:3e:75:ed:b7:92:b5:85:ef:7f:69:
32:ae:a6:b8:99:d0:f4:26:a9:81:64:66:d7:5d:b8:
c0:6d:ad:47:b6:08:05:de:ae:da:b1:6b:c6:69:c1:
81:2d:5a:85:95:b6:89:a0:6b:0e:24:8d:a5:83:e0:
c0:2f:75:b7:ed:98:d8:e3:31:6b:36:6f:bd:5d:a8:
9d:91:54:b0:33:78:02:e0:2f:26:03:3d:70:96:fd:
d7:25:86:92:02:d4:75:eb:cd:5b:c8:87:69:37:3f:
c0:cf:cd:69:fb:b1:7e:76:26:38:c9:4a:63:f6:4f:
80:14:e4:a6:b5:f3:af:ea:cc:81:ab:49:be:08:b2:
9d:f5:3f:d0:71:7c:69:d1:6e:e1:09:d0:ad:47:fb:
f6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F3:2E:8F:61:5C:29:07:C1:CA:2B:9D:59:BB:48:85:9F:BB:A4:20
X509v3 Authority Key Identifier:
keyid:C3:AB:8F:44:FC:35:60:96:B8:E6:56:FC:87:39:87:1E:C0:0D:1F:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6uPRPw1YJa45lb8hzmHHsANHxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/jfMuj2FcKQfByiudWbtIhZ-7pCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6e74e6-2603-4711-ace1-75ae1e6d9c31/1/w6uPRPw1YJa45lb8hzmHHsANHxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.221.0/24
Signature Algorithm: sha256WithRSAEncryption
08:d0:cc:9b:0d:16:da:10:c0:75:fc:9e:c1:63:ad:93:90:d2:
06:c0:38:5f:84:53:01:35:c2:11:5c:15:ba:95:ce:36:eb:a3:
62:64:df:4b:3c:93:c6:20:62:3e:3d:7c:24:d5:ad:cc:bf:00:
f6:67:94:c3:57:2f:c3:ef:18:d8:51:82:62:94:7f:63:26:4e:
c3:23:74:ac:8f:a4:c3:e2:c7:c8:38:dc:c6:d7:7c:a4:ae:34:
ba:e5:13:f0:28:23:a4:1e:fa:cd:5c:f0:cb:e4:10:c6:b4:e6:
06:dc:35:7b:49:a8:d4:44:db:5b:fa:a1:9f:e7:06:17:49:19:
8b:91:08:e4:3a:34:bd:91:2d:3e:5d:b7:8f:a4:af:c7:32:61:
cb:f4:fc:70:2d:44:0d:21:fd:25:ba:02:c1:af:ee:85:11:2f:
60:cb:b9:0f:73:23:aa:b7:9a:6d:cd:20:5a:ba:ba:d1:9b:8f:
29:63:e9:93:a3:ca:c4:62:2a:91:f1:da:d0:43:81:7e:42:b2:
dd:9e:d3:a1:a7:58:ac:27:09:a6:ed:0d:53:80:d2:20:5d:9b:
17:62:57:f5:a5:84:69:43:be:c8:b1:d3:0a:f8:b3:0a:9d:13:
44:42:7c:78:1e:ef:54:e3:9a:6e:67:ae:d8:05:24:f4:1a:dc:
d9:5e:0f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:10 2023 by rpki-client on console-fra.rpki-client.org