Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/DtIF34Tf2dLuu1c43JnQfBAB46o.roa
File: DtIF34Tf2dLuu1c43JnQfBAB46o.roa (raw, json)
Hash identifier: ThMYCNHWogFm6mkrWWZfkFtmRpEZuclKrmAsSHcYBz0=
Subject key identifier: 0E:D2:05:DF:84:DF:D9:D2:EE:BB:57:38:DC:99:D0:7C:10:01:E3:AA
Certificate issuer: /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Certificate serial: 1858BDE8
Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/DtIF34Tf2dLuu1c43JnQfBAB46o.roa
Signing time: Sat 01 Jan 2022 09:57:46 +0000
ROA not before: Sat 01 Jan 2022 09:57:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21219
IP address blocks: 176.105.168.0/21 maxlen: 21
176.105.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408468968 (0x1858bde8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Validity
Not Before: Jan 1 09:57:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ed205df84dfd9d2eebb5738dc99d07c1001e3aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c9:de:1d:a4:78:80:69:d0:99:19:b9:14:e0:
db:0b:24:eb:01:6d:90:5b:7b:09:54:29:d3:c3:18:
71:2e:85:d7:24:ff:5a:42:68:25:42:ba:1f:b5:1d:
bd:71:ad:7e:d3:6b:69:85:16:cb:f0:33:35:bc:0c:
b2:4e:7b:ea:5f:7f:44:b5:46:5f:32:78:7b:2b:4d:
02:e2:86:a5:e5:46:9c:ef:a6:36:0d:50:c8:1b:0f:
c9:a6:eb:23:0b:82:9c:bd:2b:98:39:13:6e:8f:8e:
20:5b:76:15:ca:dd:a6:12:48:0e:6b:69:0f:ac:c3:
6b:72:97:b5:78:03:de:d5:69:be:27:f6:26:1f:94:
5e:26:b6:14:99:20:c6:e8:1d:ca:fd:12:51:91:6c:
36:6b:88:3a:9a:33:e0:6b:c1:56:6f:f3:ca:29:dc:
f9:d2:b4:5e:1d:1b:a7:f2:c7:cd:62:6e:ad:60:9d:
67:b9:e9:a8:1a:30:cc:d7:e1:29:c7:fc:91:00:c0:
a5:d7:9a:7e:af:74:e0:9f:21:3d:db:e0:1f:9f:56:
31:50:05:a5:be:2a:e0:ce:18:6a:e2:61:40:c5:6e:
7a:49:f3:24:fb:5b:18:a5:e1:74:fe:d3:68:ea:19:
8c:0f:ac:ae:c5:ca:85:69:fb:7a:ec:73:c6:47:3b:
ae:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:D2:05:DF:84:DF:D9:D2:EE:BB:57:38:DC:99:D0:7C:10:01:E3:AA
X509v3 Authority Key Identifier:
keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/DtIF34Tf2dLuu1c43JnQfBAB46o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.168.0-176.105.183.255
Signature Algorithm: sha256WithRSAEncryption
5f:2f:5e:84:de:82:b3:d9:68:d4:b9:91:68:2f:15:fc:21:0e:
46:3c:6a:be:bd:33:f5:29:97:8d:70:bd:b1:00:8a:78:9d:00:
d9:dd:bc:ee:0e:7c:49:8c:49:73:1a:6b:33:e4:a4:42:86:a5:
73:52:62:27:07:d5:76:7b:13:a0:22:3c:fd:78:85:72:fc:21:
d6:e8:0d:b7:de:c1:6c:60:d3:d3:bd:71:f5:33:2a:d5:42:40:
be:02:01:89:af:bd:fb:53:2d:ab:c7:af:ff:e4:bb:4d:9b:2a:
a3:f7:33:73:53:f8:e6:78:fc:ac:03:04:e9:8b:1e:33:08:89:
4c:cd:69:e4:36:12:de:bc:1c:62:93:9c:60:08:1e:6b:8f:8d:
c7:72:66:8c:d3:ca:f4:d2:5a:f5:7a:42:9d:29:33:1e:ea:c0:
0b:0e:0f:d1:30:87:0f:ef:d3:4a:2b:2b:fa:de:f9:14:d6:20:
82:e2:04:75:d4:b5:4f:0a:c4:13:7f:b7:d0:8e:0e:ae:f6:1f:
f5:bd:08:e1:1e:73:33:6d:aa:0b:d5:71:6b:67:67:aa:14:1f:
e5:0b:2a:96:f3:1f:ad:66:4b:7f:84:6b:28:9f:09:9d:e3:25:
f3:aa:fd:ac:1c:07:95:14:12:62:ee:2a:fe:51:8d:0c:f7:58:
07:0c:07:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:28 2024 by rpki-client on console-ams.rpki-client.org