Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/ac52c3-ca44-4784-b72e-12641f9e6fc0/1/uhQPRaRtTLI4GNAmNS3Pr-umdFU.roa
File: uhQPRaRtTLI4GNAmNS3Pr-umdFU.roa (raw, json)
Hash identifier: Pv4y+7A1Nvb54k8kb72VbkpaJIr3ZKkMhPvORnwxa68=
Subject key identifier: BA:14:0F:45:A4:6D:4C:B2:38:18:D0:26:35:2D:CF:AF:EB:A6:74:55
Certificate issuer: /CN=fec6fb5a467974c977a997c6dda1464805ed379f
Certificate serial: 0186789C09275167AC06AA0090302E71C1B0
Authority key identifier: FE:C6:FB:5A:46:79:74:C9:77:A9:97:C6:DD:A1:46:48:05:ED:37:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_sb7WkZ5dMl3qZfG3aFGSAXtN58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/ac52c3-ca44-4784-b72e-12641f9e6fc0/1/uhQPRaRtTLI4GNAmNS3Pr-umdFU.roa
Signing time: Wed 22 Feb 2023 10:12:17 +0000
ROA not before: Wed 22 Feb 2023 10:12:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 176.116.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:78:9c:09:27:51:67:ac:06:aa:00:90:30:2e:71:c1:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fec6fb5a467974c977a997c6dda1464805ed379f
Validity
Not Before: Feb 22 10:12:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba140f45a46d4cb23818d026352dcfafeba67455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f9:e1:67:81:6a:28:21:bb:65:fb:a0:ee:ce:
60:25:55:a7:fb:6e:a3:7d:ae:d9:c8:5c:4e:04:b9:
9b:f4:ab:26:f5:f0:0e:fd:f4:f7:da:f7:1d:e3:59:
ba:00:62:b3:81:9b:e0:e0:05:4b:75:ba:59:76:e6:
82:78:7e:c8:3f:f6:25:5d:f4:cf:07:91:7c:5b:ca:
2a:ce:b9:24:52:47:87:59:5c:26:4a:21:7d:3b:1e:
d9:8d:d2:43:19:64:d3:84:f6:6a:13:2b:44:a3:f5:
06:a8:36:9b:dc:9c:70:10:9a:fa:71:a4:df:54:1f:
cd:e8:c8:89:a1:f3:2f:41:1f:c1:be:06:31:09:09:
94:f1:fc:f6:37:b3:6b:14:0c:76:e0:27:5a:fa:b0:
4c:8d:1b:53:a7:01:21:fa:c4:87:ac:7f:ed:1b:8b:
87:69:52:a5:ff:f7:b1:d3:e5:55:98:e3:a9:85:e0:
15:b4:72:52:f0:1d:53:75:42:5c:3b:54:01:6d:ea:
4a:32:4a:dc:1b:09:f7:37:ad:68:14:a9:23:98:a0:
3c:f0:c1:fa:f0:88:0c:09:a1:f3:61:bc:76:4b:42:
85:03:fc:85:bc:3f:e8:85:d6:57:fb:51:3f:16:1b:
6d:6a:db:de:00:a3:0d:91:32:9d:9c:3a:4a:8f:12:
ac:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:14:0F:45:A4:6D:4C:B2:38:18:D0:26:35:2D:CF:AF:EB:A6:74:55
X509v3 Authority Key Identifier:
keyid:FE:C6:FB:5A:46:79:74:C9:77:A9:97:C6:DD:A1:46:48:05:ED:37:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_sb7WkZ5dMl3qZfG3aFGSAXtN58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ac52c3-ca44-4784-b72e-12641f9e6fc0/1/uhQPRaRtTLI4GNAmNS3Pr-umdFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ac52c3-ca44-4784-b72e-12641f9e6fc0/1/_sb7WkZ5dMl3qZfG3aFGSAXtN58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.122.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:73:fb:ce:28:22:f2:e5:e2:64:57:e5:3b:7e:79:89:d0:78:
86:e7:28:3d:96:b4:58:38:9f:c7:23:10:17:86:28:77:33:c6:
4f:ce:65:72:a0:7f:ea:ec:59:7f:9a:85:7d:fa:50:fa:e2:14:
53:86:bd:e6:3f:cd:b7:ca:d8:5c:b4:70:03:76:e5:86:2c:0b:
fd:77:ac:3a:85:d6:64:6a:6f:ee:37:22:06:89:4f:3d:47:d0:
62:7b:e8:c7:2e:c7:63:51:6c:0b:35:8a:12:bc:99:3b:ad:ce:
aa:fd:67:f9:83:3f:f8:33:d5:d4:f3:a1:30:e2:d0:ae:c2:d8:
a2:70:6c:80:04:5d:e0:d0:27:b5:ea:cf:74:ec:7c:a6:db:51:
36:38:08:5d:85:d1:00:74:41:e4:80:2e:91:5a:e9:2b:7d:6d:
a9:18:eb:a5:0a:a0:83:aa:02:1e:9b:36:1f:a3:8d:35:4f:e1:
2b:f8:f3:ac:92:6f:9e:2f:1a:06:0a:68:f6:a6:a0:9d:ad:d8:
ab:f3:ad:bd:58:9e:5c:cc:58:df:d9:f6:77:9f:d8:c7:64:c7:
0c:c5:22:6b:dc:14:2b:71:9e:73:e8:13:b5:3f:a5:b3:02:f4:
28:a7:b4:3c:b1:5c:48:11:7e:e6:17:1a:f4:7a:e2:42:6a:27:
3e:d1:c0:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:22 2025 by rpki-client