Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uANsPg0k4pzFPMKycS-HNmxzUII.roa
File: uANsPg0k4pzFPMKycS-HNmxzUII.roa (raw, json)
Hash identifier: wMJya9lysgtKyqGL0f5QGdVH14yc+PeeewfQVzrXmv0=
Subject key identifier: B8:03:6C:3E:0D:24:E2:9C:C5:3C:C2:B2:71:2F:87:36:6C:73:50:82
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0343A06E
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uANsPg0k4pzFPMKycS-HNmxzUII.roa
Signing time: Sat 01 Jan 2022 16:04:38 +0000
ROA not before: Sat 01 Jan 2022 16:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209592
IP address blocks: 176.118.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54763630 (0x343a06e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8036c3e0d24e29cc53cc2b2712f87366c735082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:74:82:54:24:03:1a:f7:8a:95:f3:a0:34:d2:
fe:6c:e0:11:30:58:3a:9c:74:64:4f:a8:75:c9:a0:
8c:9b:14:85:33:d5:30:bc:dc:f4:c5:63:02:dc:31:
7f:a7:68:27:58:b6:ca:f6:58:29:f3:e7:6c:2f:ea:
9d:4f:44:4f:41:07:e1:77:78:30:3a:30:09:ec:b9:
6a:3d:90:e6:fd:53:a5:1b:58:64:28:d1:97:26:03:
bd:aa:49:e3:ca:96:b4:f9:a8:ec:5c:8a:b0:43:48:
f9:dc:9f:c8:aa:37:be:51:eb:74:d9:f2:74:3e:a7:
3f:b2:ee:ac:eb:db:1f:12:a1:b1:57:c4:d6:15:e0:
d9:64:1b:17:08:a8:46:7c:c6:db:31:47:9a:23:cd:
17:d9:e4:93:90:ce:ef:e4:18:bb:1d:36:98:1b:24:
bc:82:ad:bc:b3:57:22:ea:d5:97:c3:c7:0a:6c:fc:
85:45:3f:8f:03:cc:3e:4d:42:32:2d:fb:a2:11:69:
f1:53:e8:e7:04:b9:1c:65:95:0c:cb:41:dc:e7:96:
aa:fa:dc:3e:24:99:8e:f1:2c:4b:50:c0:b0:48:41:
60:8c:5a:e2:a6:d8:fb:0d:ab:f3:d9:fd:94:d5:ba:
08:d7:a0:85:9a:da:ff:98:c1:fc:fc:d5:e8:d8:12:
60:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:03:6C:3E:0D:24:E2:9C:C5:3C:C2:B2:71:2F:87:36:6C:73:50:82
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uANsPg0k4pzFPMKycS-HNmxzUII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.197.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:bd:e4:e4:51:a9:53:16:bc:c9:19:d0:5a:c8:5e:7e:41:6a:
db:28:e0:31:84:54:1c:6a:d2:a2:b1:9a:21:95:a3:f8:df:42:
f2:80:69:8a:63:e7:a9:2f:0b:50:16:f7:f5:68:bc:14:e0:3e:
cc:ea:f4:83:bb:a2:58:79:e9:95:c6:1e:64:58:c8:05:9b:da:
97:37:45:9f:a9:7c:f4:4a:69:3e:25:a1:4c:ec:6e:28:71:44:
11:df:de:61:88:b0:10:0d:02:37:75:1c:78:26:49:4c:70:4a:
86:94:61:7c:af:bf:e6:7d:c5:1d:c1:a3:93:8e:0d:57:99:af:
39:64:ae:a5:5d:a3:e7:9f:cc:6e:56:00:be:9a:ec:cf:da:cc:
50:4a:b6:3c:87:61:03:cd:2d:89:be:b7:cd:6c:87:20:6e:5a:
26:25:71:6d:70:5b:6a:b6:18:f4:8b:1e:23:c3:d6:49:aa:b7:
8f:fa:db:dc:45:ea:56:f1:56:a1:73:ac:73:1f:91:fa:22:5d:
9c:7a:f5:70:c2:fd:5b:75:6d:84:6c:b4:f1:7c:d6:b3:b8:34:
64:0c:19:d0:4d:da:40:bb:1f:7d:77:20:e7:5b:67:3c:4a:f8:
02:f3:ff:f0:ab:e5:e0:91:75:94:87:4a:50:c9:c7:ad:bb:eb:
30:9d:ef:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org