Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/opgJg8pd0XOFFYeK8oE8U_qzGeY.roa
File: opgJg8pd0XOFFYeK8oE8U_qzGeY.roa (raw, json)
Hash identifier: YX30ay0Jt63gWAYDYopp0t71KDDzDQuWBDB4lcGn780=
Subject key identifier: A2:98:09:83:CA:5D:D1:73:85:15:87:8A:F2:81:3C:53:FA:B3:19:E6
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 032F90D8
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/opgJg8pd0XOFFYeK8oE8U_qzGeY.roa
Signing time: Sat 01 Jan 2022 16:04:28 +0000
ROA not before: Sat 01 Jan 2022 16:04:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201624
IP address blocks: 176.118.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53448920 (0x32f90d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2980983ca5dd1738515878af2813c53fab319e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:af:d9:82:89:8f:4f:e5:5f:b2:31:50:da:86:
25:6f:a6:79:5c:5b:2d:0f:eb:d7:3b:9a:86:89:e9:
45:30:54:9f:9c:e2:59:9c:31:be:cc:4a:dc:98:4b:
9e:e9:45:52:bf:08:b1:a9:58:36:1c:5e:0c:05:35:
4e:12:82:5d:9a:82:bb:f0:c7:19:28:6f:84:ec:69:
fb:d2:9a:c7:ab:09:a7:2d:3c:9b:4c:60:cc:0c:c3:
7a:32:2f:bf:b5:44:d9:58:0e:37:2e:fa:12:26:05:
ce:63:99:0e:72:2e:fe:f3:9a:8e:05:2f:91:29:e9:
a7:6f:e5:ac:1a:b7:4a:45:66:97:a5:80:51:58:1a:
96:5f:3c:01:db:9d:ec:04:9e:d0:81:99:ce:4d:76:
88:6e:49:7c:ca:d4:b3:cd:6d:ba:a2:81:6c:37:4f:
ce:61:30:00:73:7e:bd:6c:9c:9e:04:01:b0:3a:19:
bf:70:83:07:2e:25:aa:b3:8f:59:62:74:eb:69:e9:
9d:76:19:e0:87:ef:b3:32:e8:21:3e:cd:9d:be:0e:
fd:ae:3f:71:0a:24:b5:89:42:78:2c:66:ba:19:25:
ea:ac:2e:20:cf:67:ef:6c:5e:80:9c:dc:34:f8:92:
92:47:62:a4:6b:dc:1b:33:21:31:99:91:92:ae:8f:
23:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:98:09:83:CA:5D:D1:73:85:15:87:8A:F2:81:3C:53:FA:B3:19:E6
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/opgJg8pd0XOFFYeK8oE8U_qzGeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.199.0/24
Signature Algorithm: sha256WithRSAEncryption
74:01:80:31:63:d3:ce:e1:77:97:5c:66:41:9a:4d:40:4d:0d:
5a:fb:f2:06:3c:b9:d5:fb:60:09:63:99:da:ad:32:8c:eb:66:
0a:9a:2c:e5:76:14:5d:52:b8:c5:b0:10:09:65:80:aa:bf:c6:
2c:a5:e2:55:6c:52:3e:e3:17:9f:7d:aa:c2:5a:60:27:37:51:
1c:79:82:78:36:a1:6b:c6:95:97:0f:f2:0a:3d:3d:75:a2:2b:
ff:71:eb:a5:22:fb:f6:b6:57:3e:1f:b3:90:33:8a:8e:f9:06:
18:f5:70:ca:ba:6f:a5:1f:43:9c:b8:24:c3:e8:b2:91:41:30:
79:f2:19:96:da:01:4a:f8:1f:97:55:57:e2:e4:79:26:6f:85:
f7:fd:36:3c:eb:2e:3d:c2:92:8d:a9:b9:cd:e0:d7:9e:26:36:
0b:77:41:87:ff:58:16:a8:b9:7c:16:0b:e5:4f:78:f1:dd:45:
93:75:7a:b2:30:e6:c5:c5:d5:72:f1:b4:a8:36:5f:a0:e5:c8:
f0:4d:b5:42:8f:e0:a8:4d:32:a2:46:0f:77:25:68:44:09:df:
d0:ce:92:27:98:d3:c1:ff:0b:68:9c:20:75:4e:36:97:f4:e9:
96:00:17:1a:33:47:ff:a7:99:5f:af:05:44:78:43:43:e5:b4:
6c:39:45:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org