Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/Kf2aNz8gKZ8SwvbQP1eio9gTELU.roa
File: Kf2aNz8gKZ8SwvbQP1eio9gTELU.roa (raw, json)
Hash identifier: BCrsM/YtPKvPIedmvTEB9IozvunvcpD2pSnoZbUpHU8=
Subject key identifier: 29:FD:9A:37:3F:20:29:9F:12:C2:F6:D0:3F:57:A2:A3:D8:13:10:B5
Certificate issuer: /CN=de7c82b2276cbdf130ccad046b65feab2c27ed49
Certificate serial: 0A798E21
Authority key identifier: DE:7C:82:B2:27:6C:BD:F1:30:CC:AD:04:6B:65:FE:AB:2C:27:ED:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3nyCsidsvfEwzK0Ea2X-qywn7Uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/Kf2aNz8gKZ8SwvbQP1eio9gTELU.roa
Signing time: Sat 01 Jan 2022 04:52:54 +0000
ROA not before: Sat 01 Jan 2022 04:52:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49423
IP address blocks: 176.118.185.0/24 maxlen: 24
2a0d:ca47:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175738401 (0xa798e21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de7c82b2276cbdf130ccad046b65feab2c27ed49
Validity
Not Before: Jan 1 04:52:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29fd9a373f20299f12c2f6d03f57a2a3d81310b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:63:76:66:26:6c:38:f5:26:19:ae:1b:04:f2:
48:9e:f4:c5:dc:be:ed:0e:48:7c:95:56:b4:17:74:
e3:25:c9:3a:de:90:37:c3:aa:97:29:08:6f:1a:ee:
1b:90:36:57:3b:5b:d2:98:c9:a0:02:d9:c4:da:81:
9e:86:e3:9a:bc:76:fd:5e:09:88:7c:24:ad:3f:21:
41:24:96:fd:cb:44:4d:15:89:7f:0d:79:18:bd:3a:
c8:aa:4e:8c:6e:ed:a9:15:aa:e4:11:f3:f9:a3:53:
6b:d2:e4:69:34:49:6c:48:bb:29:9c:9d:bb:b4:70:
6e:86:fd:69:e0:11:3e:ad:02:1b:b0:1f:98:e0:20:
62:e5:13:bd:16:30:f0:98:b2:ac:d7:14:5f:8a:46:
33:f9:11:f5:59:e9:a3:6d:bc:3a:a0:58:a9:31:74:
bf:61:08:b0:d3:60:78:1b:fa:ee:45:88:b9:bb:a7:
5d:19:9f:a9:45:2f:0f:68:68:52:32:eb:6f:91:1c:
d6:61:9e:23:2c:af:60:41:c6:2c:d8:dc:84:15:16:
0a:cc:ed:74:d3:6d:cd:27:6d:b6:6e:40:7e:be:38:
9b:88:60:a5:02:aa:cb:0f:d8:7a:1e:04:d8:ec:12:
5c:22:01:ef:4a:c6:6d:b8:52:f7:98:87:9f:a0:ef:
d1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:FD:9A:37:3F:20:29:9F:12:C2:F6:D0:3F:57:A2:A3:D8:13:10:B5
X509v3 Authority Key Identifier:
keyid:DE:7C:82:B2:27:6C:BD:F1:30:CC:AD:04:6B:65:FE:AB:2C:27:ED:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3nyCsidsvfEwzK0Ea2X-qywn7Uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/Kf2aNz8gKZ8SwvbQP1eio9gTELU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/3nyCsidsvfEwzK0Ea2X-qywn7Uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.185.0/24
IPv6:
2a0d:ca47:2::/48
Signature Algorithm: sha256WithRSAEncryption
91:e9:0b:c5:00:e3:f1:16:85:ad:87:4c:1f:97:b2:7e:f7:be:
85:e4:20:e6:f7:d9:aa:2c:45:a2:43:db:d7:b8:50:c7:1d:43:
91:c1:ae:cc:14:b6:7f:fe:a6:17:99:37:09:db:41:a9:00:38:
49:d0:ef:98:b0:67:60:8a:09:9a:3e:6a:a0:a0:cf:95:04:3d:
74:7e:82:db:98:31:81:d1:13:a5:6d:de:25:9f:3d:d4:43:cd:
f9:7d:4c:cf:dc:7b:c8:c9:cf:91:59:78:fb:38:38:ca:00:05:
40:e5:29:02:9a:57:8e:88:44:a1:9c:06:d5:7a:e8:ff:1b:ba:
7e:6e:9e:65:34:ff:fc:94:69:5b:16:78:59:8e:a2:7e:b0:b1:
4d:45:13:03:06:ed:f7:6e:32:6b:e7:14:84:e3:2f:9e:ee:0c:
b6:29:7b:d9:e1:11:15:76:dc:02:ab:a0:6c:72:d2:11:47:ec:
82:92:1a:7d:20:09:2c:62:45:95:7f:5d:7c:63:50:c6:2b:cf:
26:fd:88:46:bb:ac:8f:92:c9:60:4b:67:8d:15:4a:83:ad:ec:
d5:4e:f3:b9:f7:d1:30:8b:fa:e0:4d:83:68:a4:75:b0:62:53:
26:a8:d3:6f:c2:90:9a:5a:23:84:4d:ca:8b:b7:6c:29:ee:fb:
35:25:9a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:37 2023 by rpki-client on console-fra.rpki-client.org