Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/rZZKFOb5FGb-HPB8MWFzaAZUFSo.roa
File: rZZKFOb5FGb-HPB8MWFzaAZUFSo.roa (raw, json)
Hash identifier: pMirji7Q0O8fabW2l7e87bJwx/TIbsOXTpZkgKLZZ4s=
Subject key identifier: AD:96:4A:14:E6:F9:14:66:FE:1C:F0:7C:31:61:73:68:06:54:15:2A
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 01836A685FF4061E4EE76A12958CFD583C05
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/rZZKFOb5FGb-HPB8MWFzaAZUFSo.roa
Signing time: Fri 23 Sep 2022 12:52:48 +0000
ROA not before: Fri 23 Sep 2022 12:52:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36113
IP address blocks: 176.111.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6a:68:5f:f4:06:1e:4e:e7:6a:12:95:8c:fd:58:3c:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Sep 23 12:52:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad964a14e6f91466fe1cf07c316173680654152a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7d:9e:a5:47:59:c0:a6:4a:1f:4b:29:f3:75:
cb:81:6b:8f:30:fd:34:63:41:3d:03:48:40:2c:6a:
bd:9a:3e:01:aa:90:85:a1:9a:d2:a8:0e:f3:3a:cc:
09:33:80:30:2b:96:c8:1b:24:9c:1a:a8:42:a7:ff:
f2:bd:7e:74:eb:e9:c7:f9:45:a5:0b:b9:ef:aa:34:
da:1b:99:f8:35:9d:ea:86:30:53:2a:db:7b:36:c8:
c1:0b:3b:f9:ab:6b:21:ac:a8:45:5c:98:a9:c4:3a:
df:15:10:d7:6d:43:e6:7a:de:3b:cc:5d:e9:79:c9:
32:c7:ba:d0:c9:c7:cd:b3:1e:6b:05:a1:bf:96:76:
b9:51:ae:01:b8:26:0e:14:ea:9d:f6:4a:f2:b7:10:
8f:c7:b9:03:f6:c6:d3:a8:f5:43:03:a7:7f:0d:0d:
39:3d:65:a8:7a:3d:de:60:a4:0b:c3:5b:be:0f:55:
72:8c:f0:b6:f7:e6:0d:6b:2b:a8:21:44:cd:a0:1a:
09:e3:2f:08:6e:d3:63:f8:9d:41:27:86:c9:98:1c:
66:44:a2:a5:e0:67:06:c9:b2:bd:10:6a:25:d2:e0:
7d:7c:fa:d4:76:79:e8:99:8c:99:14:a9:26:df:62:
6c:06:c2:14:6a:1f:fa:3f:7f:ca:1e:21:d8:e2:83:
a9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:96:4A:14:E6:F9:14:66:FE:1C:F0:7C:31:61:73:68:06:54:15:2A
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/rZZKFOb5FGb-HPB8MWFzaAZUFSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.216.0/24
Signature Algorithm: sha256WithRSAEncryption
50:bf:96:d3:21:29:70:93:3a:d8:5a:49:31:4f:4c:cc:29:79:
b9:c3:0d:5b:96:4f:82:30:7b:a5:b1:ea:78:9c:52:7a:e2:38:
a5:49:00:ab:7f:12:5f:9a:20:21:ef:60:4e:02:d9:90:40:72:
70:2d:e3:43:8a:f6:7a:35:b6:4d:04:12:50:db:e0:c9:dd:dd:
e3:4f:f8:0d:36:54:54:16:ed:14:a7:f9:e7:8c:b2:96:c1:88:
4e:5b:d1:1e:0e:b8:eb:e0:3d:5c:21:99:94:42:c5:e5:fa:0d:
59:e7:f6:ea:d2:78:af:dd:f2:59:d3:7e:1e:97:3b:31:bc:41:
34:b6:fc:21:9b:db:79:31:cb:52:5b:0a:76:4b:a8:60:81:fb:
a4:a0:88:e7:19:10:4e:92:a7:b9:c6:ee:82:77:b6:1f:d1:df:
1e:4b:a7:71:14:43:a2:50:77:c5:a5:fc:c2:be:c9:c7:04:b9:
59:95:e6:e2:ae:d9:35:d1:6a:e5:09:cd:4f:53:c4:15:02:a6:
b2:bc:81:17:19:b6:2c:0e:58:ea:b4:c9:7b:ae:a6:e0:e5:9b:
9f:8b:37:76:51:1e:65:62:a4:73:48:7f:ac:e2:a0:69:97:5a:
1b:3b:a4:4a:7d:fc:7f:7c:5a:3f:79:e4:b3:92:ab:dd:4a:77:
e5:37:9f:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:48 2023 by rpki-client on console-fra.rpki-client.org