Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/8a93b6-2e7e-487c-b0f3-28d15eb7341d/1/1-e9TOO4EX1A8CIVCOVjM5iMVSHs.roa
File: 1-e9TOO4EX1A8CIVCOVjM5iMVSHs.roa (raw, json)
Hash identifier: mr5IkC8u1Hsu04zfxJlb/ehmoYHA0P8Q9TVHs2Xh4fc=
Subject key identifier: F9:EF:53:38:EE:04:5F:50:3C:08:85:42:39:58:CC:E6:23:15:48:7B
Certificate issuer: /CN=1e8f6a46ddf7f93ca2935ebe618246ae6dd31b0d
Certificate serial: 0183418C9B06FD80124D44F8971CB65261BD
Authority key identifier: 1E:8F:6A:46:DD:F7:F9:3C:A2:93:5E:BE:61:82:46:AE:6D:D3:1B:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ho9qRt33-Tyik16-YYJGrm3TGw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a93b6-2e7e-487c-b0f3-28d15eb7341d/1/1-e9TOO4EX1A8CIVCOVjM5iMVSHs.roa
Signing time: Thu 15 Sep 2022 14:27:57 +0000
ROA not before: Thu 15 Sep 2022 14:27:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57712
IP address blocks: 176.106.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:41:8c:9b:06:fd:80:12:4d:44:f8:97:1c:b6:52:61:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e8f6a46ddf7f93ca2935ebe618246ae6dd31b0d
Validity
Not Before: Sep 15 14:27:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9ef5338ee045f503c0885423958cce62315487b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:47:25:ab:ce:02:54:ad:3a:b7:95:60:93:49:
7d:89:7c:20:99:40:a6:89:c9:c5:b5:98:42:39:1a:
45:17:02:aa:ad:37:fd:f8:a4:2b:6c:c7:e4:69:a4:
93:ba:b2:d7:4d:7b:21:56:6b:c5:9c:c7:4a:c8:b7:
d0:50:af:26:33:85:73:81:f1:32:ae:0b:33:0c:fe:
4e:db:10:97:0e:b7:0b:c4:ae:08:a5:b4:57:2a:73:
0b:7e:93:4a:64:c7:cc:3c:ea:ee:96:de:a5:a9:af:
b2:ed:98:4c:5c:06:48:f2:09:99:d6:5b:48:b6:8a:
1b:37:3b:8a:83:a3:39:4b:0e:7c:a3:43:90:1a:0b:
b3:af:5b:aa:9b:1f:bc:70:04:07:11:f0:92:0b:b9:
51:70:1d:e5:3e:0f:03:07:11:7d:cd:70:82:d9:03:
50:17:71:4c:ea:50:ba:83:71:3e:3a:56:57:5a:d6:
af:8e:0f:3a:8c:14:81:89:c9:3a:f9:f9:e6:20:0f:
8d:20:d9:80:6c:45:05:91:f2:b8:a7:16:3b:15:a6:
78:58:33:f7:16:01:51:f6:c3:76:74:6b:f9:23:d7:
f5:ac:8b:54:bd:88:cb:fa:dd:4e:cb:09:75:f5:2c:
c4:70:31:1c:36:22:c4:d7:b4:a5:6f:12:98:54:13:
ce:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:EF:53:38:EE:04:5F:50:3C:08:85:42:39:58:CC:E6:23:15:48:7B
X509v3 Authority Key Identifier:
keyid:1E:8F:6A:46:DD:F7:F9:3C:A2:93:5E:BE:61:82:46:AE:6D:D3:1B:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ho9qRt33-Tyik16-YYJGrm3TGw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a93b6-2e7e-487c-b0f3-28d15eb7341d/1/1-e9TOO4EX1A8CIVCOVjM5iMVSHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a93b6-2e7e-487c-b0f3-28d15eb7341d/1/Ho9qRt33-Tyik16-YYJGrm3TGw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.106.240.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:04:b9:45:d4:2b:ee:12:3d:2f:ab:02:4f:8e:be:6a:44:48:
75:54:d2:91:d2:a7:75:98:63:ea:39:30:39:88:79:66:6e:e7:
d0:56:b7:44:4e:c2:1f:89:3a:93:cd:36:f0:2a:c9:c3:3d:0f:
df:4b:31:db:84:51:12:82:8e:28:1d:59:53:84:a9:b9:5b:01:
e3:4d:e3:8b:14:30:74:71:c0:2f:6f:4a:76:40:a0:20:fa:4a:
ad:e5:a8:32:eb:da:14:03:16:9f:df:ff:e5:e5:ac:82:83:34:
48:47:16:6a:ab:7f:f9:4b:1a:81:14:53:1d:05:05:65:21:36:
9c:3f:b9:98:90:02:3d:aa:33:77:15:cf:95:ac:b6:45:bb:38:
d1:63:a2:5e:92:2b:15:94:54:fe:07:0d:7b:aa:66:8f:ad:86:
f0:ec:be:3a:32:c5:74:5f:5a:87:eb:0e:74:8a:c6:3f:f5:62:
c7:3b:e4:a7:e5:24:6a:ec:3e:9f:aa:e8:ad:11:26:7f:57:c8:
01:16:b1:7e:66:74:02:34:af:76:6c:64:6b:51:d8:dc:e7:4c:
3b:63:2b:ec:40:16:b1:f5:5b:fc:6f:10:15:aa:a6:69:b7:cc:
a6:43:d0:26:d8:b5:6f:ce:3c:7a:33:39:3d:46:84:bf:91:55:
a2:0d:1c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:36 2024 by rpki-client on console-fra.rpki-client.org