Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/77d607-7d7c-4589-aff7-2fda97079c01/1/3Nz-hEb98k1xZtFSuTIgJDipVfg.roa
File: 3Nz-hEb98k1xZtFSuTIgJDipVfg.roa (raw, json)
Hash identifier: BdJLTWtWn9goAu7fb7rwq5V0sIjjWC4vUbOM6MuyqRs=
Subject key identifier: DC:DC:FE:84:46:FD:F2:4D:71:66:D1:52:B9:32:20:24:38:A9:55:F8
Certificate issuer: /CN=c4d8c1985c50c7ead4cfd8d3a93d63e5611f6fb6
Certificate serial: 1BBFDF7F
Authority key identifier: C4:D8:C1:98:5C:50:C7:EA:D4:CF:D8:D3:A9:3D:63:E5:61:1F:6F:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xNjBmFxQx-rUz9jTqT1j5WEfb7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/77d607-7d7c-4589-aff7-2fda97079c01/1/3Nz-hEb98k1xZtFSuTIgJDipVfg.roa
Signing time: Sat 01 Jan 2022 11:56:11 +0000
ROA not before: Sat 01 Jan 2022 11:56:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203650
IP address blocks: 62.176.216.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465559423 (0x1bbfdf7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4d8c1985c50c7ead4cfd8d3a93d63e5611f6fb6
Validity
Not Before: Jan 1 11:56:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcdcfe8446fdf24d7166d152b932202438a955f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f1:1d:8c:4f:b0:33:10:ff:b8:e4:ce:5c:4c:
eb:1a:43:97:43:2a:1d:78:ce:a8:0e:a1:70:44:44:
4b:4b:91:4a:e2:91:d8:27:34:14:54:84:84:4f:42:
b0:87:55:12:43:7d:e2:86:a9:0b:99:3b:68:fb:3c:
c1:10:e0:01:53:5e:ee:ca:bc:a1:02:d5:33:f6:a0:
cc:8b:0f:06:a9:7c:9c:8e:8a:06:ac:be:2f:52:c7:
84:45:ab:1b:d3:31:b5:3b:3a:69:91:22:f6:89:c3:
fa:03:35:1e:55:15:7d:ee:5e:0d:ab:44:a2:28:17:
c5:22:e3:a2:6b:88:b0:28:0c:c2:c6:dc:2b:d9:9d:
1e:74:6e:0f:e3:a4:af:2b:dc:4f:e1:a8:2d:6e:55:
86:26:67:c3:34:df:28:02:f1:d6:78:53:c1:f0:67:
54:86:6f:41:34:4b:56:50:11:5f:96:f6:da:df:00:
b0:78:82:0e:b5:91:ed:5b:1e:e2:8a:40:0a:ae:d3:
2d:e7:85:8a:47:48:ed:58:c2:98:45:d3:14:4a:e1:
df:07:cb:07:f4:a8:5b:b8:9e:5f:2a:2f:bb:05:50:
3f:44:54:9a:92:a6:ed:cc:2d:44:16:00:f7:f6:52:
68:87:c3:c0:2b:ad:03:8a:f9:7f:93:bb:21:d7:fb:
b0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:DC:FE:84:46:FD:F2:4D:71:66:D1:52:B9:32:20:24:38:A9:55:F8
X509v3 Authority Key Identifier:
keyid:C4:D8:C1:98:5C:50:C7:EA:D4:CF:D8:D3:A9:3D:63:E5:61:1F:6F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xNjBmFxQx-rUz9jTqT1j5WEfb7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/77d607-7d7c-4589-aff7-2fda97079c01/1/3Nz-hEb98k1xZtFSuTIgJDipVfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/77d607-7d7c-4589-aff7-2fda97079c01/1/xNjBmFxQx-rUz9jTqT1j5WEfb7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.176.216.0/21
Signature Algorithm: sha256WithRSAEncryption
26:0b:bd:75:71:08:da:a4:fd:c5:4b:f7:50:4c:8e:08:f2:ea:
c0:8f:c2:53:8e:48:eb:54:4c:d1:e2:ea:61:69:a8:62:d0:72:
a0:96:b7:b8:6d:fd:e9:2b:5c:0e:8e:ef:43:c3:ec:4e:48:75:
e1:ad:0f:1f:5f:bf:3e:21:81:1a:4f:f2:f8:03:80:f2:85:4a:
14:98:47:cf:c2:18:80:48:e1:17:6c:d8:3d:02:b8:fb:0f:8a:
c2:a4:fb:3b:69:59:70:17:75:30:d7:d2:ea:78:c8:a8:6e:c4:
73:db:fe:d7:41:12:f2:33:fc:aa:81:59:9a:39:da:91:ba:1d:
93:63:19:ef:5e:54:ce:9b:e8:ff:e7:43:b1:a7:03:b2:af:7a:
67:2b:07:de:ac:f9:99:e3:55:2d:10:7b:dd:58:29:16:23:cd:
2a:4a:9e:9c:a5:de:53:54:7f:2d:ee:90:c4:8a:29:08:07:5b:
3a:61:0f:3b:84:d2:be:ad:2b:94:41:01:80:e3:13:33:22:df:
68:7e:74:49:4b:97:4b:37:3f:e4:d8:9d:dd:a6:4a:49:e3:16:
61:2e:0a:68:5d:55:4c:8b:88:d2:f7:f5:31:97:1a:96:84:4d:
0d:d5:f3:35:ca:d5:07:15:12:b6:19:1d:86:c1:84:a0:28:6f:
65:53:37:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:26 2024 by rpki-client on console-fra.rpki-client.org