Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/XNuTJwAttNZscwkv_aqPl_PCuyI.roa
File: XNuTJwAttNZscwkv_aqPl_PCuyI.roa (raw, json)
Hash identifier: 9Updv2rsNe4T6Nq38s1d/b1Dt18N7GpJQr7V2vAnN68=
Subject key identifier: 5C:DB:93:27:00:2D:B4:D6:6C:73:09:2F:FD:AA:8F:97:F3:C2:BB:22
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 07634A9A
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/XNuTJwAttNZscwkv_aqPl_PCuyI.roa
Signing time: Sat 01 Jan 2022 03:51:33 +0000
ROA not before: Sat 01 Jan 2022 03:51:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 176.105.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123947674 (0x7634a9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 03:51:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5cdb9327002db4d66c73092ffdaa8f97f3c2bb22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:eb:45:39:27:c7:b6:75:23:12:07:0f:f6:65:
90:f0:19:6f:f9:bd:e3:ab:03:54:75:e2:fd:ca:87:
e3:14:e8:0e:e6:b1:d9:08:ce:26:41:21:94:3c:50:
9b:ac:28:a8:13:5c:3c:8f:4f:7e:94:d6:bc:4f:eb:
f5:66:c7:16:0e:a6:7d:92:cd:aa:84:2b:58:63:1b:
48:f9:de:3f:a4:e9:f2:d8:de:63:0a:99:db:84:90:
ca:d8:f2:56:e7:91:65:bf:b1:6d:b9:8a:7c:3a:81:
0b:03:f9:38:e5:08:98:bc:12:17:20:90:97:b8:b8:
ea:e8:c3:14:96:3f:c3:11:7d:bc:cb:73:2e:aa:79:
0d:5e:53:b8:09:97:eb:3b:93:7e:5a:3a:ba:4f:ba:
78:b8:29:87:6f:01:18:9e:ad:4e:e1:f8:89:e1:59:
59:36:b1:0a:14:9d:a6:3c:64:d6:cb:cf:c0:6a:c8:
1d:8a:6b:65:15:03:1c:35:83:59:44:bf:ff:2a:15:
f5:b6:95:7d:d1:cd:f3:c1:68:1d:b3:f3:d0:4f:64:
a5:2a:a5:09:4f:05:60:cf:10:18:a6:02:63:f4:9e:
96:ed:ac:cc:79:7e:e0:d0:68:7c:68:73:b1:17:8b:
2b:34:e0:71:b6:eb:79:71:1f:55:3f:ea:f1:ae:8a:
99:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:DB:93:27:00:2D:B4:D6:6C:73:09:2F:FD:AA:8F:97:F3:C2:BB:22
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/XNuTJwAttNZscwkv_aqPl_PCuyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.229.0/24
Signature Algorithm: sha256WithRSAEncryption
67:af:71:de:b6:82:f3:03:20:a7:6f:45:77:4c:1b:be:34:9c:
d6:94:23:a7:ff:5a:07:49:a6:32:26:9b:33:a9:a2:a8:02:d6:
a7:07:72:4f:2b:7a:e3:2f:ba:64:c8:65:08:bc:3c:d0:96:ce:
ab:95:b2:a6:23:9a:0c:b8:95:b6:34:d4:8a:92:65:cc:d9:1b:
f8:ef:18:82:a1:4b:f7:fb:65:f1:6e:ba:0a:75:13:f5:fa:e2:
05:fb:42:f5:2c:d5:35:33:4d:1d:45:47:4f:f4:10:f4:12:58:
66:4d:83:2a:2b:01:e5:fc:3d:06:d2:bf:84:47:ef:14:03:c6:
df:05:36:c5:50:86:f4:bd:98:f1:d2:c8:67:7e:93:88:8b:a3:
12:4a:6a:88:15:4b:0e:06:3d:0b:34:b1:3e:42:26:83:27:fb:
66:b4:dc:13:b3:da:41:e3:00:68:aa:40:18:3a:dd:2c:cf:43:
28:65:95:2f:8e:d9:0d:3b:b0:fa:a3:24:dd:6e:a5:de:31:70:
b2:a5:bc:e4:41:bf:21:04:82:cf:74:0d:67:55:57:9b:3f:97:
ac:d0:f0:f8:5a:cc:89:7c:58:bf:e6:fc:68:33:f3:b5:55:4a:
76:6a:d1:ae:f7:63:fb:c8:a3:1f:14:e2:29:c0:bf:4a:e1:25:
48:2c:5f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:43 2024 by rpki-client on console-ams.rpki-client.org