Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/m2iclHBWAoJp3NZiBFyYS8ldnyk.roa
File: m2iclHBWAoJp3NZiBFyYS8ldnyk.roa (raw, json)
Hash identifier: 1P0FKx8q279gWFKZ0WCkGrW5b4WuW+dGFV8J0FcwblU=
Subject key identifier: 9B:68:9C:94:70:56:02:82:69:DC:D6:62:04:5C:98:4B:C9:5D:9F:29
Certificate issuer: /CN=3e20c700d98d76a9c640173889f9367da9de8997
Certificate serial: 3531E675
Authority key identifier: 3E:20:C7:00:D9:8D:76:A9:C6:40:17:38:89:F9:36:7D:A9:DE:89:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PiDHANmNdqnGQBc4ifk2faneiZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/m2iclHBWAoJp3NZiBFyYS8ldnyk.roa
Signing time: Sat 01 Jan 2022 11:57:30 +0000
ROA not before: Sat 01 Jan 2022 11:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35432
IP address blocks: 176.56.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 892462709 (0x3531e675)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e20c700d98d76a9c640173889f9367da9de8997
Validity
Not Before: Jan 1 11:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b689c947056028269dcd662045c984bc95d9f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:41:f8:c3:ce:95:f9:6b:6c:11:eb:67:d4:65:
3b:cc:78:05:86:eb:bd:38:d1:06:71:55:2d:13:80:
00:a4:bc:ce:3b:e8:a3:4a:d3:31:37:12:ab:7d:da:
9d:19:84:bf:7a:c8:01:15:ce:53:22:2a:dd:0c:c4:
9c:80:ee:16:bf:24:bc:b3:36:5c:fe:cb:14:5a:d6:
64:55:ae:cf:f7:25:ed:f1:d5:1e:47:f9:bc:6f:5a:
79:bf:ce:88:39:d8:8a:a6:4c:4d:27:3d:a6:57:bf:
e8:39:fd:55:71:7c:1e:18:51:a6:ee:03:a6:d5:2c:
d9:c8:59:20:08:9a:8c:cd:89:d5:70:95:b4:9c:06:
57:b3:8a:d4:04:5a:4e:96:99:67:64:71:5a:65:4e:
af:8a:7c:c5:22:3f:ab:3c:ea:ac:85:45:47:e4:8d:
a9:16:a4:13:44:4e:a5:84:25:63:00:fd:79:6d:d6:
66:5e:1c:50:0f:09:2a:b5:a6:ad:7a:7f:31:cb:98:
da:fb:42:8d:10:80:dc:75:7c:60:74:cc:48:c0:3f:
bb:f1:b5:79:f7:0d:6e:92:1d:ae:d0:c8:bb:6b:08:
90:9d:5a:4c:9c:c9:ed:a0:bd:3c:e6:72:2a:89:63:
8b:64:43:66:26:f4:7f:71:3f:4d:9b:ae:1b:2b:91:
90:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:68:9C:94:70:56:02:82:69:DC:D6:62:04:5C:98:4B:C9:5D:9F:29
X509v3 Authority Key Identifier:
keyid:3E:20:C7:00:D9:8D:76:A9:C6:40:17:38:89:F9:36:7D:A9:DE:89:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PiDHANmNdqnGQBc4ifk2faneiZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/m2iclHBWAoJp3NZiBFyYS8ldnyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/PiDHANmNdqnGQBc4ifk2faneiZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.168.0/24
Signature Algorithm: sha256WithRSAEncryption
46:09:da:b8:35:d4:03:ec:d7:f1:87:62:a7:4e:c3:05:11:b9:
18:cc:a8:34:db:33:8e:32:54:38:a0:89:90:19:14:af:4f:a1:
d6:24:76:22:84:d3:85:09:81:ad:6e:8b:d2:3e:3d:64:8a:0e:
a1:c5:1d:11:67:8f:f2:dc:7c:20:2b:86:86:27:a6:ec:85:78:
da:65:15:de:13:1e:c2:8c:e1:3a:8b:d7:65:32:e1:cb:ed:f3:
dc:eb:bf:92:64:d3:1f:3d:8b:74:2a:a8:5f:9d:ba:eb:32:e7:
a2:05:22:c9:2d:bc:90:f2:0b:ab:72:5e:49:fa:76:47:87:3f:
94:72:10:37:76:bf:b5:be:15:12:b2:95:96:5d:59:18:69:18:
f9:6f:e0:7e:7c:6c:09:ae:65:62:e1:97:86:3c:16:f4:47:30:
af:e6:47:2f:6a:51:75:7a:eb:0a:45:1b:5d:0c:11:6b:6d:05:
0f:33:55:93:8c:05:5b:4d:2f:7b:40:ab:26:b7:ce:39:df:4f:
40:9a:32:c0:e4:40:8e:1d:49:25:15:96:ba:b2:dc:ef:f9:77:
da:af:3e:b7:f6:c2:36:c0:51:e7:b9:07:e2:21:98:d0:c1:89:
2b:1a:50:3c:3c:c9:6a:ee:fa:b1:0a:70:5d:ce:fc:2c:14:12:
5a:17:5e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:34 2024 by rpki-client on console-fra.rpki-client.org