Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/z0vS4dRZfZ_ufARCa5sDufvBjjM.roa
File: z0vS4dRZfZ_ufARCa5sDufvBjjM.roa (raw, json)
Hash identifier: bonDKDXm6WiS5pDwSfjaxm9KxuZFIRD5GDwClacdd00=
Subject key identifier: CF:4B:D2:E1:D4:59:7D:9F:EE:7C:04:42:6B:9B:03:B9:FB:C1:8E:33
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 01F6C6D9
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/z0vS4dRZfZ_ufARCa5sDufvBjjM.roa
Signing time: Sat 01 Jan 2022 15:06:20 +0000
ROA not before: Sat 01 Jan 2022 15:06:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57957
IP address blocks: 176.111.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32949977 (0x1f6c6d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 15:06:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf4bd2e1d4597d9fee7c04426b9b03b9fbc18e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:64:de:c9:1e:44:a5:5c:85:4a:74:34:56:3c:
78:fd:3d:25:de:41:f1:bd:d8:68:d1:fe:22:39:fe:
f0:5c:76:81:98:c9:fc:e8:3d:bd:2f:00:d6:49:56:
48:8a:77:a0:c3:50:19:b3:90:af:30:0c:09:f1:64:
3a:fc:4a:39:e7:38:69:a0:42:48:23:e4:ca:d1:37:
5b:8d:f9:2a:d7:22:a7:41:30:b0:91:d1:95:b7:ca:
9f:81:6a:30:5c:15:de:ec:0b:21:cf:20:c1:72:1c:
da:9d:4a:61:12:98:8c:cb:36:41:47:54:ee:cf:9d:
7e:ff:56:7b:cc:ab:0f:82:22:19:78:fe:1c:8f:0b:
d1:c6:df:22:77:a2:f7:df:6a:80:32:f7:9b:c2:16:
a0:28:34:6d:36:26:93:99:5c:1c:c0:4f:28:f9:48:
46:92:2b:34:1a:18:6e:65:57:6a:95:ab:69:93:29:
67:ac:a2:2d:00:7f:86:26:98:09:f8:a1:ec:aa:e2:
bd:e1:b7:7e:b1:32:2c:a6:75:71:a4:10:64:96:f5:
1f:f5:0f:f6:2d:b0:63:c9:55:99:21:6c:91:92:85:
c8:61:c3:82:ed:85:cb:53:a3:8c:16:1b:d8:40:2f:
d9:14:0a:d4:c4:55:68:6b:a3:f1:d7:81:96:96:af:
e6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:4B:D2:E1:D4:59:7D:9F:EE:7C:04:42:6B:9B:03:B9:FB:C1:8E:33
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/z0vS4dRZfZ_ufARCa5sDufvBjjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.216.0/22
Signature Algorithm: sha256WithRSAEncryption
96:47:e2:42:14:2a:a2:21:0a:2f:3c:af:ee:70:ab:84:eb:92:
b4:bc:37:ea:bc:00:e6:78:15:9b:f7:68:10:2f:1d:0b:60:2d:
f5:b9:4d:26:40:e4:5e:02:60:56:6d:2a:c6:11:70:8b:de:6d:
e3:00:68:7a:32:2d:b3:5f:f0:e1:78:78:88:99:7e:06:c2:57:
d3:31:55:27:6b:a7:81:45:45:b2:2c:80:3a:96:18:87:27:66:
2b:7a:79:53:61:a5:d3:bb:58:0a:89:ab:6f:2d:e1:fc:1b:80:
09:af:8c:0a:d1:e0:30:5e:b2:5d:73:6f:7c:ba:ae:ae:34:50:
d7:de:71:84:e6:14:1b:6a:97:ca:e5:7e:9f:5f:61:41:05:0b:
00:bf:ab:de:98:61:55:8f:8e:b8:3e:c1:71:e6:aa:c9:86:87:
66:7e:1f:a2:b9:f7:b6:8c:6a:a1:be:48:45:4e:f0:49:58:af:
2d:6d:ee:26:d8:3f:83:64:23:ec:c0:02:97:18:3b:f0:50:ea:
ff:61:96:02:d3:7b:fa:42:b6:c9:ea:55:03:cf:60:f6:b6:be:
d1:b9:0b:3c:65:c6:5e:fe:4d:d6:8e:99:ad:26:a8:c2:74:de:
a6:62:2b:67:f8:7e:b3:6b:cc:b8:19:f6:8e:3a:4f:8a:68:a5:
77:ad:6c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-ams.rpki-client.org