Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/tBZMMpRpCXtuVJmOu5W0dS90lGo.roa
File: tBZMMpRpCXtuVJmOu5W0dS90lGo.roa (raw, json)
Hash identifier: 1VtcgEhPVTSGLq9fwLMQTOrj+wjK8IOIsss2u2ZWga8=
Subject key identifier: B4:16:4C:32:94:69:09:7B:6E:54:99:8E:BB:95:B4:75:2F:74:94:6A
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0184390DC24558738EDB568212BA7B5900F6
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/tBZMMpRpCXtuVJmOu5W0dS90lGo.roa
Signing time: Wed 02 Nov 2022 15:55:13 +0000
ROA not before: Wed 02 Nov 2022 15:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 176.105.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:39:0d:c2:45:58:73:8e:db:56:82:12:ba:7b:59:00:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Nov 2 15:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4164c329469097b6e54998ebb95b4752f74946a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:fe:63:2c:84:98:ce:c8:75:31:5d:17:13:ec:
49:ef:08:8f:1a:41:86:de:08:08:73:1b:f0:2e:86:
3c:5a:81:9e:15:ba:39:22:35:11:0b:73:5d:bd:a3:
ee:5a:31:e8:69:7a:a3:85:70:e6:29:56:f4:3d:76:
7b:54:b6:f5:27:36:21:4a:e3:55:5b:a2:79:2c:e9:
97:f9:f2:6d:67:1a:3b:92:d5:d9:e5:90:5d:31:01:
23:a8:06:8a:8f:fd:01:d8:cc:9d:38:16:49:9c:94:
28:39:12:95:34:58:51:7b:4c:2e:b5:87:4d:2a:33:
df:73:7d:a6:88:aa:4d:0c:aa:b9:93:65:b1:9c:53:
55:9a:ea:61:eb:da:04:ad:be:9b:f3:9a:f7:9a:3d:
0c:28:32:1c:60:90:9d:99:88:b8:a9:5e:b9:60:73:
cb:15:81:b9:b0:bb:84:97:37:7e:f0:26:d3:82:de:
2e:83:cf:45:95:6f:1e:b7:32:0c:97:44:3d:f6:c3:
81:04:7a:3d:5c:a6:7a:4a:a9:d3:7b:9a:d7:c1:80:
43:e9:68:8b:58:a8:04:cd:57:00:19:1e:3e:20:92:
0c:b8:fd:59:9f:06:af:d7:87:03:90:a9:07:75:9d:
8d:58:57:b9:f7:66:92:d8:b0:a9:04:88:6d:dc:97:
2a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:16:4C:32:94:69:09:7B:6E:54:99:8E:BB:95:B4:75:2F:74:94:6A
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/tBZMMpRpCXtuVJmOu5W0dS90lGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.229.0/24
Signature Algorithm: sha256WithRSAEncryption
47:64:ae:38:ad:e9:f9:57:37:32:13:37:e9:69:be:b4:59:7e:
ec:a4:b1:d8:b7:fa:c2:8e:32:55:89:1b:c2:ce:42:fc:d1:b0:
8a:b3:92:51:6c:07:7e:20:4c:98:cd:9b:ee:e7:e7:51:d9:1a:
95:d7:9e:d1:03:6f:ff:52:a6:77:35:1d:f0:bf:20:21:71:31:
df:f3:f6:b8:dc:fc:41:57:14:d0:2e:09:82:d3:5d:2e:82:bd:
cd:db:8b:f8:a5:13:92:5a:34:36:5f:39:f3:a5:ad:4c:37:20:
da:09:40:54:11:da:00:b8:f9:5e:cd:48:fe:32:b7:c6:f2:ba:
b6:64:c9:44:5a:d5:76:eb:1d:4b:8e:83:44:37:1a:79:fb:0f:
b9:8b:42:8b:f3:cf:20:36:dc:98:de:f1:db:8e:a9:97:7d:07:
6d:d9:ff:dd:52:7d:46:07:af:95:7d:59:a6:74:8b:aa:38:80:
42:69:7f:ac:45:87:d7:de:f6:53:af:fa:a0:5c:5e:69:68:8f:
86:ae:5d:f8:66:2f:e7:87:b1:24:12:8d:38:0f:9c:25:04:a6:
19:3e:f5:f5:fc:f0:f4:61:6a:37:5e:7d:dc:61:2c:28:5b:9e:
04:85:47:a3:88:b5:34:2b:ae:d4:c3:87:e0:9e:68:70:1b:f6:
99:38:be:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org