Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/P56eEHb6gfjXzq74LDgMYHG6cCc.roa
File: P56eEHb6gfjXzq74LDgMYHG6cCc.roa (raw, json)
Hash identifier: dPbps2fQbRNXpjvU+aBEN/mjZgCbDG2LszqKoahN0Z4=
Subject key identifier: 3F:9E:9E:10:76:FA:81:F8:D7:CE:AE:F8:2C:38:0C:60:71:BA:70:27
Certificate issuer: /CN=1795ac843cd8ba90188f7313652bb561299b296f
Certificate serial: 0AB1A8A2
Authority key identifier: 17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/P56eEHb6gfjXzq74LDgMYHG6cCc.roa
Signing time: Sat 01 Jan 2022 07:57:19 +0000
ROA not before: Sat 01 Jan 2022 07:57:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62101
IP address blocks: 176.126.221.0/24 maxlen: 32
176.126.220.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179415202 (0xab1a8a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1795ac843cd8ba90188f7313652bb561299b296f
Validity
Not Before: Jan 1 07:57:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f9e9e1076fa81f8d7ceaef82c380c6071ba7027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:16:b5:e8:4e:c9:dd:8d:ac:34:df:1e:17:3d:
12:75:d0:e6:99:69:03:85:58:30:a4:5f:17:e2:60:
45:de:85:ac:21:a6:36:84:29:1d:43:91:4d:91:99:
fe:d4:fa:56:a9:eb:da:b3:7e:82:d0:53:9a:71:c8:
83:1e:ea:18:af:ed:0d:bb:38:b0:1f:6d:c1:3d:82:
4a:f8:5a:8f:ab:3b:eb:9d:e7:e3:92:93:1b:db:a6:
73:0c:86:31:35:cb:26:92:80:9f:a1:c5:30:4c:96:
74:33:c5:6d:90:f8:00:48:0f:60:85:46:3f:ca:a2:
05:35:43:70:8e:c5:0b:6e:94:dc:85:37:bb:38:98:
0d:10:f2:3d:8c:d4:2c:48:42:16:d7:ab:2c:58:80:
17:e9:5a:0a:7a:5b:5a:5a:d7:42:d4:3b:8d:c8:a7:
65:0f:48:2e:c5:75:ad:de:5c:f8:44:40:21:62:e6:
b6:43:b3:2c:4f:56:67:90:01:65:d5:2b:df:e6:74:
51:59:14:52:17:d6:1f:d9:84:3a:1a:2e:4e:81:e2:
dc:ae:d6:87:be:7c:2a:51:6f:1c:0e:bb:2f:9b:d0:
b7:23:3d:65:4f:e6:ba:3d:1d:70:6f:9a:48:02:ca:
5e:21:e3:e3:2d:fe:3d:c8:39:cc:b4:cc:d0:85:bd:
d3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:9E:9E:10:76:FA:81:F8:D7:CE:AE:F8:2C:38:0C:60:71:BA:70:27
X509v3 Authority Key Identifier:
keyid:17:95:AC:84:3C:D8:BA:90:18:8F:73:13:65:2B:B5:61:29:9B:29:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5WshDzYupAYj3MTZSu1YSmbKW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/P56eEHb6gfjXzq74LDgMYHG6cCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/6683f4-3eec-4dcb-8787-731abc6f75ca/1/F5WshDzYupAYj3MTZSu1YSmbKW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.220.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:55:74:8f:76:db:6d:e2:2c:b9:04:8d:39:fc:47:27:8b:8e:
02:fe:a0:cc:ea:d9:ec:92:29:8e:62:1a:88:c1:64:93:5a:1e:
4c:7a:eb:af:28:49:6b:f7:7a:fa:aa:66:fc:41:db:9c:22:ec:
0e:8c:1d:e6:7c:f3:ad:40:30:bb:d3:c0:ac:67:72:7d:10:f9:
c3:df:de:51:7f:f6:ca:4d:e1:59:af:df:15:91:50:61:95:25:
bc:be:1b:fe:99:f2:ea:88:91:55:de:11:b4:c1:6f:67:9d:70:
cc:6f:80:56:0e:2f:00:f5:9f:33:60:0a:13:87:08:89:d7:bd:
82:ea:20:aa:a3:c9:bb:c8:3b:a2:15:61:94:44:db:67:3b:9a:
e7:ed:3a:85:34:22:f0:cd:36:9e:58:13:78:1d:c0:68:5d:b4:
4d:77:b7:f5:35:72:7d:d5:62:9d:b9:69:be:4a:ab:55:af:60:
8c:67:c7:f2:27:b5:e8:5a:df:96:69:37:aa:99:e1:9a:40:bf:
b1:79:b7:9e:68:c0:e6:81:da:fa:1b:07:13:b0:55:c2:cb:d5:
f9:15:a8:eb:74:61:6a:8f:bc:92:ac:ca:4f:2d:7b:26:98:f2:
39:61:16:15:c7:2e:e5:85:7c:a1:56:b8:81:09:e8:3f:03:9b:
6d:9f:53:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:33 2024 by rpki-client on console-ams.rpki-client.org