Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/77d607-7d7c-4589-aff7-2fda97079c01/1/F2m1kYWsGGrzsJvh4z0Ki3nCcQA.roa
File: F2m1kYWsGGrzsJvh4z0Ki3nCcQA.roa (raw, json)
Hash identifier: QopECmMYhSOjaNzRqD0wLRxnCmDZXk0w5SUIILLFiYU=
Subject key identifier: 17:69:B5:91:85:AC:18:6A:F3:B0:9B:E1:E3:3D:0A:8B:79:C2:71:00
Certificate issuer: /CN=c4d8c1985c50c7ead4cfd8d3a93d63e5611f6fb6
Certificate serial: 1BBFD788
Authority key identifier: C4:D8:C1:98:5C:50:C7:EA:D4:CF:D8:D3:A9:3D:63:E5:61:1F:6F:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xNjBmFxQx-rUz9jTqT1j5WEfb7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/77d607-7d7c-4589-aff7-2fda97079c01/1/F2m1kYWsGGrzsJvh4z0Ki3nCcQA.roa
Signing time: Sat 01 Jan 2022 11:56:10 +0000
ROA not before: Sat 01 Jan 2022 11:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50304
IP address blocks: 62.176.216.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465557384 (0x1bbfd788)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4d8c1985c50c7ead4cfd8d3a93d63e5611f6fb6
Validity
Not Before: Jan 1 11:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1769b59185ac186af3b09be1e33d0a8b79c27100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ba:0e:32:ff:de:7f:77:5b:a3:65:25:45:7c:
94:c8:b5:7f:04:eb:d1:5c:b3:73:9d:68:8d:00:9b:
0c:ee:79:05:26:18:25:d4:07:fc:81:6f:a0:f5:eb:
0e:da:9f:33:52:57:3f:73:7b:3a:b2:4e:09:5a:91:
d6:bd:39:8e:56:40:43:3b:1d:1d:1d:89:e2:58:b8:
72:4e:49:94:9e:6b:b8:49:a1:29:75:16:74:37:6d:
ec:cd:cb:7e:6a:ca:a8:68:92:b6:45:82:e8:4f:05:
ad:a4:b0:2a:a2:04:7e:7b:26:40:de:ed:1f:e4:2c:
6e:e4:a6:7b:4e:8a:fe:af:ae:87:ea:1a:4e:a1:0f:
56:9d:01:6b:12:89:97:81:8d:18:74:4b:83:43:a5:
43:8d:97:5f:5f:4e:f4:f5:f6:33:96:77:ec:53:b6:
f2:43:4d:39:30:e2:3b:da:8e:f5:4a:e1:4e:04:bf:
3b:f0:11:2e:33:79:3c:e3:81:58:f4:84:88:40:f9:
09:f6:98:09:94:dc:cb:53:f3:ef:d3:06:cd:e3:58:
dd:3b:b8:6e:0a:b4:e6:5c:6b:ad:56:99:77:b5:ee:
3c:21:4d:8f:65:ca:3d:5e:7f:61:ec:07:d0:88:74:
bd:79:40:24:e4:90:72:e7:04:78:bb:05:8e:af:26:
6a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:69:B5:91:85:AC:18:6A:F3:B0:9B:E1:E3:3D:0A:8B:79:C2:71:00
X509v3 Authority Key Identifier:
keyid:C4:D8:C1:98:5C:50:C7:EA:D4:CF:D8:D3:A9:3D:63:E5:61:1F:6F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xNjBmFxQx-rUz9jTqT1j5WEfb7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/77d607-7d7c-4589-aff7-2fda97079c01/1/F2m1kYWsGGrzsJvh4z0Ki3nCcQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/77d607-7d7c-4589-aff7-2fda97079c01/1/xNjBmFxQx-rUz9jTqT1j5WEfb7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.176.216.0/21
Signature Algorithm: sha256WithRSAEncryption
27:73:9e:a3:f6:f8:cb:5d:ef:c8:fa:ca:59:09:a2:95:67:31:
ca:a5:3d:a1:e0:89:83:e1:3a:33:a7:a6:45:05:8b:8c:fd:a5:
fa:20:73:a3:90:28:ec:af:52:e3:be:b0:7b:f3:30:74:dc:b1:
a5:63:66:8b:0e:99:d9:3e:86:c7:05:c3:59:95:a9:44:b2:a3:
2a:cd:60:80:c6:bf:df:26:48:fb:c8:f1:e4:d0:c0:ac:2e:a9:
e3:77:1c:96:8d:f7:3f:bb:f7:54:f5:9a:1f:bc:f6:32:fe:8a:
2b:b1:ce:ae:67:a9:48:8e:bc:9f:92:1a:c9:da:5d:f6:bf:1d:
8f:9c:9c:d8:a1:c1:22:45:92:a6:d6:b9:3c:65:b5:82:6a:e5:
3a:32:3c:bd:5d:e8:83:41:91:11:a1:da:0e:db:87:02:c3:c2:
cf:bd:65:e4:5d:6a:55:77:b4:a6:a2:fc:44:67:d0:a4:cc:54:
76:18:5a:ae:9e:c8:b2:76:cc:9c:a5:9d:4f:a2:7f:9d:d4:52:
dc:63:24:0e:e6:89:b5:c2:13:64:a4:2e:90:3a:50:dd:70:8a:
c6:a0:49:03:53:7d:59:f0:56:3a:1f:a1:c7:a8:0e:7e:ec:cd:
64:e1:b2:bd:74:67:8f:09:f7:a9:49:a7:43:ab:d7:77:8b:38:
df:ab:b8:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-fra.rpki-client.org