Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/kA6R7Qmnetx52qMjhWcaNENVDFk.roa
File: kA6R7Qmnetx52qMjhWcaNENVDFk.roa (raw, json)
Hash identifier: AnZsFwbKjfIda8Eww046rL8bFhw615bNn7GoeKWc2c4=
Subject key identifier: 90:0E:91:ED:09:A7:7A:DC:79:DA:A3:23:85:67:1A:34:43:55:0C:59
Certificate issuer: /CN=a608db43964b6986ec740f0b5e33f627589ac560
Certificate serial: 01856E81FB8D31BA21E14DB52E0E48156DC3
Authority key identifier: A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/kA6R7Qmnetx52qMjhWcaNENVDFk.roa
Signing time: Sun 01 Jan 2023 18:04:50 +0000
ROA not before: Sun 01 Jan 2023 18:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212928
IP address blocks: 176.96.226.0/24 maxlen: 24
176.96.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:81:fb:8d:31:ba:21:e1:4d:b5:2e:0e:48:15:6d:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a608db43964b6986ec740f0b5e33f627589ac560
Validity
Not Before: Jan 1 18:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=900e91ed09a77adc79daa32385671a3443550c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6a:ba:6c:86:e3:fd:fe:87:4a:07:aa:4e:36:
be:b8:51:c3:f1:d7:88:74:ab:df:c5:63:f0:0f:3a:
54:a4:6b:99:94:de:b3:30:ab:7d:fd:e7:69:c2:45:
4a:f0:78:34:47:22:b7:a8:78:21:2e:5d:b7:26:04:
ce:8b:44:69:40:cf:d4:34:b1:b5:56:80:a2:64:f3:
9e:6f:1a:5e:29:97:fb:44:16:51:98:c4:aa:f5:e0:
3a:c2:c2:40:02:bb:1d:b4:ea:6d:6f:a5:98:15:70:
9b:66:c3:7c:14:86:36:7d:52:b5:97:69:09:b0:1b:
f3:54:7d:88:d0:2b:1b:ea:0e:4c:4f:17:9b:5b:fb:
94:e9:37:50:d9:68:29:2a:31:f5:02:da:53:ad:03:
ce:ae:e2:d1:6b:2d:e0:88:58:86:aa:c7:55:56:00:
50:e5:33:44:56:a1:14:7c:93:00:a9:fc:85:59:91:
82:39:fe:50:e4:b3:87:ba:26:25:b2:d6:30:5f:24:
b6:ed:9f:5b:13:84:ce:0b:1a:eb:f0:04:04:f7:d2:
60:83:4b:c5:00:a2:59:33:57:5b:2f:46:f8:24:26:
62:f5:e6:f9:74:f2:91:f5:83:2b:c4:57:4d:e0:98:
01:7a:6e:36:e8:44:7b:ee:ab:37:1f:7d:35:e0:95:
91:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:0E:91:ED:09:A7:7A:DC:79:DA:A3:23:85:67:1A:34:43:55:0C:59
X509v3 Authority Key Identifier:
keyid:A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/kA6R7Qmnetx52qMjhWcaNENVDFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.96.226.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:44:7e:fb:96:a8:d6:cd:61:4f:ed:bb:99:54:e3:96:f1:cb:
a2:43:8b:e4:d3:0f:a8:ce:29:6a:63:bb:c7:0c:d3:05:01:40:
5a:41:9e:e3:a2:39:f7:f2:f2:61:c7:ee:d9:b0:d7:bb:cb:31:
b1:9f:de:15:b6:cc:61:13:c0:9c:f1:79:a3:b6:31:6a:8f:4d:
da:b8:b3:e7:51:0d:a4:f4:df:a4:a4:f8:58:41:99:c1:3b:57:
76:ea:1f:e0:14:d5:db:53:ca:22:43:e4:8b:07:9e:b9:e6:b5:
72:d4:5b:83:6f:11:f1:08:13:02:b8:da:5a:82:db:58:b4:44:
a6:6b:41:3f:0c:11:0d:1b:5c:3f:ca:e3:06:2f:44:01:25:3a:
a7:cc:7a:0b:6c:22:a2:63:63:7b:41:2d:c9:d9:63:84:66:e9:
dc:94:25:87:8c:08:35:1d:3f:ef:c8:f8:ae:f9:91:10:d6:d0:
56:a7:72:11:99:a1:00:1e:b8:0e:6c:bf:ac:dd:54:2b:35:58:
bd:d9:84:11:03:57:18:16:6c:18:dc:c6:06:45:1a:f2:31:15:
4f:ce:5c:5c:cd:05:46:9b:58:0b:4f:0b:ea:00:bf:74:0d:45:
de:ad:a6:8b:53:72:c6:92:c4:a3:fc:30:28:05:88:5b:67:4f:
df:58:6a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:53 2025 by rpki-client