Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/BlK5LNIEovO3xnMKpOLrThlHwXM.roa
File: BlK5LNIEovO3xnMKpOLrThlHwXM.roa (raw, json)
Hash identifier: 1XOS/Dh0gOzSB04u/4zZaVoWtapAFq0wocq+ro7k/j0=
Subject key identifier: 06:52:B9:2C:D2:04:A2:F3:B7:C6:73:0A:A4:E2:EB:4E:19:47:C1:73
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01831E7E64F14E12C14E5D6F7CC4066A7964
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/BlK5LNIEovO3xnMKpOLrThlHwXM.roa
Signing time: Thu 08 Sep 2022 19:05:43 +0000
ROA not before: Thu 08 Sep 2022 19:05:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 176.105.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1e:7e:64:f1:4e:12:c1:4e:5d:6f:7c:c4:06:6a:79:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Sep 8 19:05:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0652b92cd204a2f3b7c6730aa4e2eb4e1947c173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fc:fd:06:16:64:67:d6:05:4c:55:7f:06:24:
c2:e4:87:72:a2:4f:7d:0a:c6:c7:09:bb:bd:f3:7f:
8c:2b:0b:a3:a0:f8:72:80:b0:66:b0:89:ea:f4:f4:
34:b7:b7:41:3a:bd:42:8f:e7:c9:d0:29:1d:f9:55:
a0:ed:d3:6c:18:d0:21:2b:6f:80:d8:7d:b9:c6:fd:
1f:77:05:2b:12:d2:7b:df:a8:5a:0e:20:cd:b0:ae:
6b:c7:9d:3b:b6:b7:f9:73:16:06:33:53:9e:9c:a9:
04:50:5e:91:36:dc:80:a1:c5:99:70:79:29:e8:e1:
13:09:36:df:7c:4b:1f:7b:7b:6d:02:2c:bb:a2:46:
8f:7d:44:b3:c7:c3:64:47:45:64:5a:4e:6c:1d:41:
80:e8:c1:d2:79:6b:23:cc:77:98:7d:3a:78:78:94:
b9:e9:64:8f:d7:d7:e7:28:5c:c6:a8:34:cb:f6:76:
fc:57:b9:d3:11:25:3e:7e:4f:9a:6b:9c:93:d4:94:
6a:87:5f:1a:82:8b:b0:61:f7:1f:59:f3:a0:d2:25:
15:7c:37:a2:67:d0:c4:24:3c:6d:3c:5e:5c:a3:d7:
01:be:61:15:a2:2f:0d:17:03:95:9d:36:f5:67:33:
ca:79:46:30:15:9d:6c:fa:7d:7f:c0:b6:9d:50:cc:
19:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:52:B9:2C:D2:04:A2:F3:B7:C6:73:0A:A4:E2:EB:4E:19:47:C1:73
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/BlK5LNIEovO3xnMKpOLrThlHwXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.229.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:9e:e9:32:5d:7b:c3:28:04:a0:37:88:1c:82:0d:6d:aa:19:
75:b1:bc:b6:5b:0a:ed:3f:f6:76:ef:87:d2:e6:99:18:96:42:
d4:76:94:df:89:34:ff:dd:76:dc:dc:ae:c1:03:dc:ab:52:a2:
d5:78:fe:a7:e7:82:83:ab:fe:08:79:36:db:37:72:78:4f:c0:
70:15:83:2f:18:c9:40:42:ba:eb:d9:98:1d:09:2b:5d:bd:46:
4e:57:23:75:fe:e4:07:ff:8c:73:96:da:2a:54:d9:e8:9e:60:
98:1e:dc:b5:cc:6c:66:97:68:52:68:1d:33:ab:48:c7:4e:c7:
c6:30:98:88:e2:fb:c0:82:17:f7:43:a4:fc:35:16:39:03:c5:
6e:4b:1b:a7:67:30:c9:17:63:b3:ae:84:18:ed:38:43:87:28:
ca:7b:c3:03:1b:70:e4:5c:c8:e1:d0:ee:14:3b:09:8d:e2:12:
7e:c5:67:74:fe:ac:e3:45:37:0c:98:1d:2a:ac:40:1f:29:0b:
70:7c:29:22:09:93:09:84:b3:00:87:55:53:7b:52:00:b7:5f:
e5:9c:a1:6e:0b:64:94:98:99:1f:9f:2d:7b:4f:6e:f3:d8:e3:
03:10:fd:69:0e:54:5a:36:0b:53:ec:17:a6:6a:0a:cc:14:4a:
29:c0:d9:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:18 2023 by rpki-client on console-fra.rpki-client.org