Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/6b4023-adef-4e4d-8cf6-32669737c517/1/v38i4dNBST2eCSKB8bly7i0w4Jo.roa
File: v38i4dNBST2eCSKB8bly7i0w4Jo.roa (raw, json)
Hash identifier: ZLgHwlN6p1ngHRW++0uumdNuHUmFUtw52B+hMSCrp8c=
Subject key identifier: BF:7F:22:E1:D3:41:49:3D:9E:09:22:81:F1:B9:72:EE:2D:30:E0:9A
Certificate issuer: /CN=1b534d47ad8db5894a5fc9342e4558f94e4f17f1
Certificate serial: 056FDA79
Authority key identifier: 1B:53:4D:47:AD:8D:B5:89:4A:5F:C9:34:2E:45:58:F9:4E:4F:17:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G1NNR62NtYlKX8k0LkVY-U5PF_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/6b4023-adef-4e4d-8cf6-32669737c517/1/v38i4dNBST2eCSKB8bly7i0w4Jo.roa
Signing time: Sat 01 Jan 2022 15:03:17 +0000
ROA not before: Sat 01 Jan 2022 15:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 194.176.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91216505 (0x56fda79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b534d47ad8db5894a5fc9342e4558f94e4f17f1
Validity
Not Before: Jan 1 15:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf7f22e1d341493d9e092281f1b972ee2d30e09a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:15:d1:ba:7f:8a:1a:f3:53:24:bc:0d:8d:d8:
e7:7a:1a:d8:b0:3f:bc:1c:bc:35:da:ad:8f:5a:ea:
2d:f6:70:0f:b0:d7:9d:0a:9c:f2:f2:4b:52:a9:ec:
16:f5:cb:0f:61:6f:d5:d1:b5:c8:97:c2:d0:d2:7b:
a7:0b:48:e8:14:8a:9d:17:a6:20:36:d5:15:aa:60:
ed:2e:58:ad:54:e5:78:b5:cd:13:d1:70:0f:0e:ef:
a7:c7:c7:a0:0a:b3:e8:8c:9c:e7:9c:cd:7d:93:86:
6a:f4:a3:cd:98:1a:ca:3c:1a:5a:cf:93:c7:4f:02:
9a:d9:26:72:eb:eb:9f:8c:22:be:f9:cd:7a:1e:d2:
66:97:55:1d:05:cf:3f:23:9c:00:bd:a1:20:1c:84:
6b:cc:15:df:77:d3:af:fa:8c:db:4c:52:18:be:81:
32:62:a0:5f:ce:62:7c:df:fe:8c:df:40:5c:dc:5f:
26:13:8c:97:f8:95:83:f5:b9:50:55:73:3b:99:3e:
1e:6d:58:ac:a3:aa:be:8f:7c:30:07:f6:46:b3:cf:
32:68:39:11:91:c4:fa:9a:03:38:71:33:e8:c5:46:
94:46:e3:e7:da:04:aa:22:3c:07:b8:51:f1:78:e5:
ee:c3:89:b9:86:a6:ff:6f:82:d5:0e:2d:fa:1e:6f:
6d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7F:22:E1:D3:41:49:3D:9E:09:22:81:F1:B9:72:EE:2D:30:E0:9A
X509v3 Authority Key Identifier:
keyid:1B:53:4D:47:AD:8D:B5:89:4A:5F:C9:34:2E:45:58:F9:4E:4F:17:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G1NNR62NtYlKX8k0LkVY-U5PF_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6b4023-adef-4e4d-8cf6-32669737c517/1/v38i4dNBST2eCSKB8bly7i0w4Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6b4023-adef-4e4d-8cf6-32669737c517/1/G1NNR62NtYlKX8k0LkVY-U5PF_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.176.116.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0c:b1:8e:35:fb:08:b2:3d:e7:f7:07:ec:d3:d1:4f:0d:75:
01:c7:c4:db:23:08:48:27:2a:7b:71:69:5a:e8:fb:05:24:b0:
af:a5:42:38:96:54:fd:4f:9c:aa:3d:70:40:35:6c:6c:65:ca:
5b:ff:b5:fb:fb:55:0d:41:b5:9a:64:a6:87:63:8f:65:a4:d0:
05:0a:39:f3:37:2e:26:10:58:77:9d:f9:84:c1:fd:7f:78:33:
49:ab:70:ae:90:d0:c0:06:7c:35:26:7e:06:b7:ec:1c:ba:e2:
4d:67:9d:c2:a5:92:72:3e:8e:68:0f:b2:4e:49:9e:a6:37:d9:
a6:1f:7c:55:43:42:6e:7d:7d:a9:1a:68:29:8e:80:a1:ce:2b:
cc:7e:56:01:54:fb:54:af:96:19:77:d1:22:e4:09:c9:01:3e:
34:4d:c2:05:86:f4:e6:f3:e8:42:17:bd:71:b3:3b:d4:02:b3:
c6:15:e0:ad:95:ea:b8:d0:aa:29:35:86:11:d9:24:f1:39:d6:
cd:48:fc:f3:ae:b5:57:8f:cd:44:88:c0:06:7e:b0:5d:ed:5d:
10:f1:03:52:b7:80:9b:f0:22:9b:b4:b8:99:20:53:47:f7:33:
c5:52:dc:dc:3a:a6:39:5f:e4:88:96:4e:59:e8:c5:e1:69:02:
61:6b:9d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-ams.rpki-client.org