Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/d94fce-547e-4242-b72c-b7ab686c076e/1/isYhe_ZEiMqZxrDPeyoFu1dXVKM.roa
File: isYhe_ZEiMqZxrDPeyoFu1dXVKM.roa (raw, json)
Hash identifier: 2sETqZR+i1vaP5IKC4SxTSYZ39czgiPgukhxw7dxiMc=
Subject key identifier: 8A:C6:21:7B:F6:44:88:CA:99:C6:B0:CF:7B:2A:05:BB:57:57:54:A3
Certificate issuer: /CN=081ca60e04847bd2f7c45c8687e5f5aad1fee8fb
Certificate serial: 076E29C9
Authority key identifier: 08:1C:A6:0E:04:84:7B:D2:F7:C4:5C:86:87:E5:F5:AA:D1:FE:E8:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBymDgSEe9L3xFyGh-X1qtH-6Ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/d94fce-547e-4242-b72c-b7ab686c076e/1/isYhe_ZEiMqZxrDPeyoFu1dXVKM.roa
Signing time: Sat 01 Jan 2022 16:11:10 +0000
ROA not before: Sat 01 Jan 2022 16:11:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59690
IP address blocks: 176.124.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124660169 (0x76e29c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081ca60e04847bd2f7c45c8687e5f5aad1fee8fb
Validity
Not Before: Jan 1 16:11:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ac6217bf64488ca99c6b0cf7b2a05bb575754a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:43:5f:3a:46:2d:83:b9:4a:3c:16:36:8a:d4:
28:32:e7:9a:2e:d2:2d:52:b5:ee:29:2e:bf:ac:20:
ff:8d:a2:36:15:3c:b0:91:44:c5:69:bc:da:3a:e1:
d8:52:bf:e6:e2:83:16:15:91:91:5c:13:d4:fc:bf:
93:38:e4:08:fe:9f:8b:8a:cc:a8:1b:fb:62:a5:cd:
17:35:ca:8c:8d:0f:d6:d9:95:20:65:f2:5f:15:0b:
b8:2d:2b:f5:10:3c:f3:6a:73:36:3e:be:f2:e8:e0:
bc:5a:23:c6:fa:8f:7d:40:77:34:8e:4c:ae:b2:48:
f4:d0:1e:cb:bd:76:d6:71:1a:1e:60:c5:85:54:81:
e7:1c:bf:d3:fb:58:89:82:0d:3f:f9:0b:3d:a7:8a:
f4:04:87:16:52:7d:f6:28:24:42:6d:e9:26:a4:93:
c3:b5:ea:1d:ba:c2:98:81:3f:80:90:dd:eb:33:d7:
30:b4:e1:61:09:1e:99:13:67:50:3a:44:f7:f8:ae:
42:65:d3:99:14:b1:75:ee:52:dd:20:5a:11:f6:7c:
6f:3a:d9:30:db:75:3b:43:06:4e:64:36:5f:da:54:
ee:e9:c4:30:0b:7e:d3:9c:b3:b2:3b:97:13:70:1e:
fe:39:a9:71:3c:e6:16:36:2c:f1:c1:98:1f:49:5e:
5f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:C6:21:7B:F6:44:88:CA:99:C6:B0:CF:7B:2A:05:BB:57:57:54:A3
X509v3 Authority Key Identifier:
keyid:08:1C:A6:0E:04:84:7B:D2:F7:C4:5C:86:87:E5:F5:AA:D1:FE:E8:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBymDgSEe9L3xFyGh-X1qtH-6Ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/d94fce-547e-4242-b72c-b7ab686c076e/1/isYhe_ZEiMqZxrDPeyoFu1dXVKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/d94fce-547e-4242-b72c-b7ab686c076e/1/CBymDgSEe9L3xFyGh-X1qtH-6Ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.252.0/24
Signature Algorithm: sha256WithRSAEncryption
88:66:65:b2:c5:8b:b4:52:01:2d:79:c8:b6:b1:8b:3f:e9:0e:
1c:66:14:93:df:c7:18:ac:07:f6:57:ce:ff:2a:56:45:ef:6a:
c2:3f:43:77:70:4e:27:fb:25:32:4c:6e:05:fb:57:03:ba:9b:
a0:8a:f2:94:e5:ea:75:6f:d6:11:44:39:7d:2e:6a:b7:26:55:
10:41:60:7f:ec:2a:f1:38:5b:5d:8c:28:f8:b5:c8:f0:cf:ff:
b5:e4:31:84:72:49:84:7f:5b:59:9f:6a:c0:7e:93:06:03:19:
34:6a:4b:bb:8e:f0:0e:b3:6e:6a:db:c2:69:06:66:b4:88:ef:
b4:25:b1:11:fc:c2:dd:80:78:86:67:45:72:97:f6:5c:c8:c6:
ff:68:db:d2:ed:54:ac:71:4c:02:23:dc:a5:24:d4:1f:46:a2:
e8:11:bd:d8:02:b5:34:c9:a0:23:95:7d:26:07:9e:e8:d4:09:
8a:12:a2:6a:8a:28:32:a5:05:b5:ae:3c:ce:37:74:39:4a:46:
2d:28:5c:b4:11:4b:ce:81:99:d6:b1:6e:75:54:5c:49:67:dd:
c2:85:bc:d2:45:5c:40:d4:5c:0c:2a:e7:9a:f5:4d:87:65:29:
57:9e:7c:2b:31:bf:3d:1d:f9:c3:9f:83:a9:4f:8a:6a:7a:ee:
3e:b0:02:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org