Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/5S2ibZcd5HtKrW7EcWh8NaTA2_k.roa
File: 5S2ibZcd5HtKrW7EcWh8NaTA2_k.roa (raw, json)
Hash identifier: ln/uKDjJIJ+1AWApHkTLsjKq/lRa2cAWy14xOyHvtlc=
Subject key identifier: E5:2D:A2:6D:97:1D:E4:7B:4A:AD:6E:C4:71:68:7C:35:A4:C0:DB:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 01E682
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/5S2ibZcd5HtKrW7EcWh8NaTA2_k.roa
Signing time: Tue 25 Jan 2022 15:36:01 +0000
ROA not before: Tue 25 Jan 2022 15:36:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42473
IP address blocks: 176.119.152.0/24 maxlen: 24
176.119.155.0/24 maxlen: 24
176.119.153.0/24 maxlen: 24
176.119.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124546 (0x1e682)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Jan 25 15:36:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e52da26d971de47b4aad6ec471687c35a4c0dbf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:74:de:7a:e1:57:07:89:09:b9:5b:a9:ab:17:
06:ad:32:91:66:ad:0f:29:6f:12:15:31:11:6a:84:
70:33:ae:db:32:66:31:7d:79:f7:9c:5a:24:34:f6:
0a:bf:27:33:d9:e7:72:f9:7c:be:27:e9:53:da:43:
94:2a:bd:d0:5b:c7:8c:aa:b7:04:1a:3b:2f:3a:1e:
68:4a:1f:21:66:b9:94:64:10:30:36:60:e2:35:a3:
d7:89:80:20:ba:1e:28:05:76:9a:d4:41:9e:81:96:
06:e0:86:f4:bc:4c:ac:4d:1a:a4:ff:5d:7e:85:2d:
26:35:ba:22:88:82:f7:b9:16:2b:f0:fe:39:08:ea:
a3:b7:9f:29:05:e7:11:ca:b9:b1:36:b2:46:55:40:
44:e1:2c:18:b1:6c:3c:38:12:78:7a:aa:81:12:1e:
7a:1e:e9:c1:1a:9f:7a:91:ac:69:4d:cf:6b:2a:0d:
ad:a3:50:44:2e:40:8a:86:eb:cd:d2:24:da:2a:45:
59:1f:18:39:f2:4a:05:b5:76:7d:bc:87:3f:29:e4:
f2:57:ac:25:b9:bc:5f:ce:2b:84:18:7e:7b:52:95:
c6:8d:9b:53:1f:d6:4c:8f:6b:4a:b8:ac:46:e4:c0:
aa:3c:aa:cc:fd:b4:87:d1:da:8e:c3:76:db:69:67:
16:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2D:A2:6D:97:1D:E4:7B:4A:AD:6E:C4:71:68:7C:35:A4:C0:DB:F9
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/5S2ibZcd5HtKrW7EcWh8NaTA2_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.152.0/22
Signature Algorithm: sha256WithRSAEncryption
68:e7:6a:bb:49:30:57:91:a1:e3:1f:32:eb:0d:35:68:47:7f:
60:cb:95:1b:d9:d6:d6:a3:7f:0b:3b:5a:90:85:6c:81:b6:0b:
96:62:75:c8:be:3d:94:90:cf:32:a0:7a:b9:6b:7c:db:56:45:
01:a4:a0:d8:d1:f8:d3:79:c1:f5:2f:f3:19:df:57:f4:a5:2f:
f2:ea:95:6c:7a:b9:3e:f1:c8:b3:6d:a9:bc:0a:16:6e:36:38:
6e:6e:a2:0f:48:73:93:ee:79:e1:f6:9c:de:c0:20:aa:25:2a:
4a:60:bd:74:b0:29:d2:22:cf:d1:e8:d2:7c:c5:8d:17:85:be:
67:31:46:fe:f9:7a:79:18:ef:66:7c:59:2d:2c:62:ea:73:b1:
a4:e2:87:79:e9:c5:a3:92:69:e2:f2:a1:98:e3:70:f8:b3:b2:
57:84:ca:5b:2b:6f:62:08:b8:64:df:de:4e:78:24:a8:3a:a1:
67:8f:1b:ca:77:a6:21:0f:63:6d:6a:23:6e:61:c3:bf:3b:35:
b9:91:dd:bd:c7:44:a7:16:a1:29:ed:69:e5:4e:1c:97:58:41:
f1:4f:ab:34:9d:32:54:70:42:2d:b9:d9:9e:ed:5f:c3:70:4c:
d1:b0:e6:11:45:34:55:aa:62:8d:1b:00:4f:bb:a9:f9:87:0e:
3f:75:82:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:23 2024 by rpki-client on console-fra.rpki-client.org