Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/TOi0wHTjgqQ39PuyzMx_1O0Mtsg.roa
File: TOi0wHTjgqQ39PuyzMx_1O0Mtsg.roa (raw, json)
Hash identifier: CDtaBm00YV8BssT4AUy2xbte/n/dnNG2aD3M7ktLvII=
Subject key identifier: 4C:E8:B4:C0:74:E3:82:A4:37:F4:FB:B2:CC:CC:7F:D4:ED:0C:B6:C8
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018221FB7358E3921A34A3630237D6AB5CE9
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/TOi0wHTjgqQ39PuyzMx_1O0Mtsg.roa
Signing time: Thu 21 Jul 2022 18:18:23 +0000
ROA not before: Thu 21 Jul 2022 18:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 176.105.229.0/24 maxlen: 24
176.105.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:21:fb:73:58:e3:92:1a:34:a3:63:02:37:d6:ab:5c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jul 21 18:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ce8b4c074e382a437f4fbb2cccc7fd4ed0cb6c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2e:c3:a5:b8:04:1d:1c:aa:ec:04:fd:02:0a:
73:29:aa:d2:13:32:18:d9:f6:13:6e:3c:ce:4c:db:
90:a4:37:6c:5e:7b:1a:a5:2c:d1:b4:da:a7:ab:63:
1d:5d:fc:10:4b:72:b4:9e:c5:fd:d3:83:9d:69:d7:
8b:48:65:d1:3e:f9:1d:70:fc:07:2a:46:89:0a:4c:
e4:27:0f:2a:2d:5c:03:4b:6f:d8:ee:44:c9:af:cb:
29:c6:d0:ea:6e:7f:74:93:56:f6:54:5b:4b:d3:78:
2a:61:cb:b9:0f:48:fd:5d:b3:de:68:c8:ca:72:ad:
de:e3:ba:e3:4d:42:c8:22:7f:2f:6c:40:c9:26:ec:
e7:36:58:6e:25:6b:ec:82:7b:c6:cf:a5:86:48:f7:
de:ff:c7:b2:c2:6f:ef:be:81:2b:d7:d8:c6:f7:55:
00:a3:f4:fd:ca:75:6c:6a:ff:bf:71:47:77:1f:01:
27:56:a5:f4:f0:d6:9a:2f:ba:94:a2:96:c4:72:5a:
61:ac:fb:69:26:37:52:4a:fe:f1:e5:29:91:b3:b0:
e2:54:d7:fb:b3:87:e3:3a:5f:60:83:cc:f4:64:cf:
e4:19:61:c3:5f:b0:85:94:53:3b:64:a1:a7:a7:55:
e7:33:1e:3f:92:1b:fc:43:0e:dd:88:45:d0:b1:de:
40:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:E8:B4:C0:74:E3:82:A4:37:F4:FB:B2:CC:CC:7F:D4:ED:0C:B6:C8
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/TOi0wHTjgqQ39PuyzMx_1O0Mtsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.229.0-176.105.230.255
Signature Algorithm: sha256WithRSAEncryption
16:62:a0:82:14:1c:a6:e1:75:94:09:ee:01:3e:9d:b6:11:9e:
cf:84:f2:10:af:03:18:68:aa:9c:22:81:17:9b:6c:19:12:5b:
2e:0f:2c:6d:b1:22:8e:17:35:f8:02:4f:27:89:1f:ba:52:28:
e2:cb:4a:df:3c:f2:ed:53:48:3e:c1:81:08:21:94:bf:e9:69:
e7:06:88:86:f3:7e:26:7c:37:27:20:bc:20:43:bb:cb:58:8f:
01:c2:ae:3f:78:8b:fd:d3:8f:cc:94:c3:55:89:3e:e4:5d:2b:
1d:49:00:18:f5:b1:60:d3:b9:41:34:4a:de:02:e5:21:39:6a:
b6:25:b4:44:ee:2d:01:4c:5d:d1:c9:7f:af:d0:0f:d9:56:d3:
9f:26:17:be:4e:ee:45:43:70:05:fe:6f:53:82:d5:d9:e0:7b:
3a:d9:dd:aa:69:40:7a:bf:96:a4:45:e0:72:85:20:17:34:0a:
f9:08:7b:7e:df:d2:b3:86:53:ee:d5:bd:d0:56:15:30:77:61:
9b:b3:04:b9:c4:54:80:04:bd:29:e9:af:da:25:36:cb:a3:d0:
0a:dd:bd:3b:52:c1:79:f4:19:a9:29:32:c1:f5:10:44:6c:f7:
76:aa:f0:73:cf:fd:3a:13:bb:1b:4c:df:bd:3b:d6:04:a4:5f:
b3:10:f5:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org