Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/qLJ_hMwmeXIlO1n2B0z54M0O__0.roa
File: qLJ_hMwmeXIlO1n2B0z54M0O__0.roa (raw, json)
Hash identifier: meMO1dK6gRVj/wlwTvp4kNRKIhp4CrGEOobEzjeetnQ=
Subject key identifier: A8:B2:7F:84:CC:26:79:72:25:3B:59:F6:07:4C:F9:E0:CD:0E:FF:FD
Certificate issuer: /CN=a608db43964b6986ec740f0b5e33f627589ac560
Certificate serial: 01856E81FB05B8FD153112B72A8291AF9483
Authority key identifier: A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/qLJ_hMwmeXIlO1n2B0z54M0O__0.roa
Signing time: Sun 01 Jan 2023 18:04:50 +0000
ROA not before: Sun 01 Jan 2023 18:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209873
IP address blocks: 176.118.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:81:fb:05:b8:fd:15:31:12:b7:2a:82:91:af:94:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a608db43964b6986ec740f0b5e33f627589ac560
Validity
Not Before: Jan 1 18:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8b27f84cc267972253b59f6074cf9e0cd0efffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:18:97:93:f4:e9:d2:01:c3:54:93:ae:13:26:
72:94:ab:aa:47:08:61:12:b0:60:97:b2:6c:cd:df:
f0:00:a5:e7:11:e2:0c:de:de:0d:08:d6:d0:c9:0f:
ca:d4:ca:34:c7:73:31:d0:3f:8b:09:9d:4c:bc:71:
9f:aa:cb:93:8c:d2:34:08:dd:84:8c:cf:27:5c:21:
ea:cc:2c:8a:74:0e:7a:66:f5:5b:ed:44:90:c8:e8:
3e:99:7c:90:9c:e4:8f:6c:11:61:94:c6:1c:ba:c3:
3f:07:05:b8:13:60:28:93:ec:9a:08:63:ec:04:3e:
ab:83:84:a1:2a:8f:9e:c2:f2:72:4b:a1:b4:ed:b4:
bd:c7:7c:0c:84:75:b7:9c:07:53:ad:c8:da:c4:a4:
37:bb:ae:e5:a2:dd:5d:30:f4:51:d3:6a:40:56:e8:
60:81:c2:f3:6d:d2:f4:5c:6f:30:b1:7c:5b:40:9a:
b5:1f:b3:10:95:b7:61:1a:05:d2:40:2b:d8:f0:78:
3a:a7:c5:56:73:0b:7c:26:23:46:09:55:46:cb:84:
0f:46:1d:bd:ec:8e:f8:33:e8:f1:a6:29:40:49:c9:
02:d0:98:10:89:35:07:27:5b:04:79:5d:60:11:f9:
ed:1b:4f:7e:0b:45:dd:1b:06:f4:17:cd:a6:df:4c:
97:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B2:7F:84:CC:26:79:72:25:3B:59:F6:07:4C:F9:E0:CD:0E:FF:FD
X509v3 Authority Key Identifier:
keyid:A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/qLJ_hMwmeXIlO1n2B0z54M0O__0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.212.0/24
Signature Algorithm: sha256WithRSAEncryption
83:ac:37:ed:e2:9e:68:4e:cb:d8:63:23:9f:59:ab:a9:44:4b:
09:ce:87:2b:df:6a:33:d6:1f:ed:c8:63:1d:58:ee:c6:55:e3:
c4:ea:1e:8b:75:e2:5c:56:fc:3a:43:b9:3e:66:f5:0b:da:9d:
25:48:cf:0b:c9:af:21:b7:0c:38:8e:25:f1:c4:d2:bf:e2:4d:
ea:23:e0:08:7f:3e:0c:6a:17:85:9a:cf:e5:7f:dc:a6:0a:99:
56:2d:61:24:c1:72:da:db:3b:18:97:a1:06:c5:44:51:24:58:
05:c5:f7:7c:6d:56:b3:b5:72:0c:60:81:e4:3b:9d:69:b1:90:
71:0d:ac:5a:c6:09:11:2d:c0:f0:ad:95:ba:31:14:c0:3a:b8:
43:52:90:42:cc:9f:ef:79:cc:a6:68:00:de:46:87:5b:13:3c:
aa:fe:0a:c8:e6:e5:e0:83:9e:06:6f:6b:a3:1a:1b:2e:98:40:
ec:cd:aa:d2:be:97:f1:ce:ef:13:1f:7d:2c:c5:49:9c:93:43:
d3:7a:d5:c3:bd:1e:41:66:bc:28:76:8d:dd:73:e5:fa:c2:4a:
9b:a1:f5:2b:83:f6:c6:91:22:a9:5b:2b:44:ce:ed:1c:e0:e5:
1c:ea:44:57:15:9a:91:cb:c6:fb:89:b8:13:5e:3a:88:70:b7:
43:4c:83:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:02 2025 by rpki-client