Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/14b9_kuowoVeqLv3LJC2Z95ek7U.roa
File: 14b9_kuowoVeqLv3LJC2Z95ek7U.roa (raw, json)
Hash identifier: rIfEx/NQ/4g4lC6lz0iVcX0MX5QInzAt860PthubpAk=
Subject key identifier: D7:86:FD:FE:4B:A8:C2:85:5E:A8:BB:F7:2C:90:B6:67:DE:5E:93:B5
Certificate issuer: /CN=67800aba40639bf38d1eb6c9157b994f19323b13
Certificate serial: 0468F7E3
Authority key identifier: 67:80:0A:BA:40:63:9B:F3:8D:1E:B6:C9:15:7B:99:4F:19:32:3B:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z4AKukBjm_ONHrbJFXuZTxkyOxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/14b9_kuowoVeqLv3LJC2Z95ek7U.roa
Signing time: Sat 01 Jan 2022 14:59:24 +0000
ROA not before: Sat 01 Jan 2022 14:59:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49941
IP address blocks: 176.119.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73988067 (0x468f7e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67800aba40639bf38d1eb6c9157b994f19323b13
Validity
Not Before: Jan 1 14:59:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d786fdfe4ba8c2855ea8bbf72c90b667de5e93b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d5:8c:52:a6:ec:23:c3:59:e9:9c:d9:8a:98:
6f:e2:07:b7:c7:cf:20:58:9a:e0:d4:aa:6a:5b:3d:
9c:61:3f:9b:52:e7:ce:89:01:e4:da:01:9e:b5:56:
9e:16:26:9c:d2:9f:3e:15:5b:fd:8d:d1:f8:69:37:
b8:cc:83:24:49:4c:73:eb:c2:34:1b:e4:28:38:ac:
64:d2:99:77:58:cc:4d:b5:f4:02:a1:12:59:b4:b6:
4a:10:39:cd:3a:9e:cd:ea:b2:31:69:2c:4a:5c:c2:
35:83:02:e1:f2:ad:2f:f4:8b:de:20:0e:80:fe:9f:
ea:0d:b7:b8:0a:d5:af:5a:79:76:9c:d3:e0:db:cb:
ac:9c:0b:28:d5:7b:86:eb:b2:8f:7f:88:c5:82:8b:
f4:9b:4e:8f:2c:bd:39:48:fa:ba:43:a3:6f:3b:70:
cf:58:0f:38:28:ae:ff:b6:d7:28:85:01:fa:60:aa:
75:73:1d:fd:fb:5b:2f:c8:aa:98:fd:6d:b3:6d:dc:
66:39:cd:30:fa:b9:04:c6:ca:e7:1a:7f:91:fc:1a:
dd:bf:83:4b:a4:23:95:2c:0a:7c:f8:56:40:c9:6e:
eb:13:39:ce:80:c0:33:7c:b0:91:d3:12:80:1d:ea:
8f:df:a0:44:a8:1f:11:06:da:7e:1d:16:86:86:2c:
78:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:86:FD:FE:4B:A8:C2:85:5E:A8:BB:F7:2C:90:B6:67:DE:5E:93:B5
X509v3 Authority Key Identifier:
keyid:67:80:0A:BA:40:63:9B:F3:8D:1E:B6:C9:15:7B:99:4F:19:32:3B:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z4AKukBjm_ONHrbJFXuZTxkyOxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/14b9_kuowoVeqLv3LJC2Z95ek7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/3b54d2-783d-4d5b-891a-29262790409d/1/Z4AKukBjm_ONHrbJFXuZTxkyOxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.193.0/24
Signature Algorithm: sha256WithRSAEncryption
28:a7:5f:9f:d9:93:03:d4:05:bf:1f:36:6c:4d:75:ec:82:c9:
43:55:68:e3:68:6f:54:2d:1f:d1:e0:90:9e:48:1f:c0:a5:a3:
c4:03:6e:e1:85:76:90:0e:61:93:9e:d9:7f:51:14:dc:1e:ee:
7a:90:10:e8:0c:15:f5:a9:ce:be:7a:0c:d9:2e:67:4b:0f:15:
ca:c3:e8:0b:17:df:bd:a2:19:b3:d7:e8:70:51:92:f6:3e:5c:
7e:f1:ca:e0:1f:50:ab:37:b2:31:94:4c:52:c2:93:32:b8:bf:
4d:55:b0:14:3f:71:d4:6c:95:9e:be:2a:de:cb:d6:37:e2:e4:
b9:c9:2c:4a:42:6f:8a:ea:02:a7:b9:8c:6f:43:13:85:a1:ca:
05:42:4e:33:6f:3b:28:f0:3a:ae:a6:1d:1d:85:40:5d:cb:80:
58:d5:d9:52:ba:f8:12:07:2f:eb:8b:4f:5f:85:58:7f:49:7e:
61:ec:4a:6d:0b:cf:ee:da:88:66:17:eb:f1:57:6a:00:4e:80:
cf:42:54:e7:87:14:ac:df:e3:ad:de:44:a2:23:ba:3b:21:e0:
10:10:27:37:6a:83:41:d4:50:0f:59:69:d3:23:ab:7e:73:36:
5a:d7:57:d8:94:2a:49:9a:36:f4:15:87:bf:33:6a:2f:1d:20:
a2:a9:67:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:47 2023 by rpki-client on console-fra.rpki-client.org