Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/ztP2BkXYYID6DC-F6FuXF7oHbCM.roa
File: ztP2BkXYYID6DC-F6FuXF7oHbCM.roa (raw, json)
Hash identifier: L4rn1g1z3sbzk3VwrgwPU5UgVNX50Rxkk9Oh4aaYKZw=
Subject key identifier: CE:D3:F6:06:45:D8:60:80:FA:0C:2F:85:E8:5B:97:17:BA:07:6C:23
Certificate issuer: /CN=a608db43964b6986ec740f0b5e33f627589ac560
Certificate serial: 117DD260
Authority key identifier: A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/ztP2BkXYYID6DC-F6FuXF7oHbCM.roa
Signing time: Sat 01 Jan 2022 14:58:40 +0000
ROA not before: Sat 01 Jan 2022 14:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209873
IP address blocks: 176.118.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293458528 (0x117dd260)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a608db43964b6986ec740f0b5e33f627589ac560
Validity
Not Before: Jan 1 14:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ced3f60645d86080fa0c2f85e85b9717ba076c23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:87:32:64:88:14:e5:f0:c6:2b:77:63:2a:be:
00:0a:3f:9b:f6:3c:76:d5:33:58:cb:d3:82:c3:67:
77:7b:57:42:44:e9:f9:b7:c1:8c:4a:fe:ae:4d:1f:
87:a7:07:a0:88:f4:71:3f:a6:d7:7a:33:9d:f0:08:
15:0f:17:1f:2b:a6:e4:79:0b:95:cf:7c:c2:3d:11:
18:77:1b:8d:9b:09:3c:b2:eb:dd:a9:87:26:18:1a:
94:82:6a:f1:cd:a1:20:2e:22:dc:06:04:95:bb:85:
de:f6:b6:3e:b0:3e:e6:d2:9c:69:25:2c:eb:82:96:
90:ff:69:74:3b:9c:2b:3f:49:1e:a7:21:be:e2:3c:
d0:f6:2e:58:14:de:32:ed:9e:09:eb:11:8d:07:15:
81:f4:35:a1:de:18:7a:d6:6d:0c:21:5f:b9:fe:c3:
98:f4:5b:e9:83:6e:36:33:1e:be:67:c1:07:34:01:
cc:3a:43:71:9e:ec:73:01:f6:73:ee:0f:ee:33:f7:
b4:0f:43:b5:60:b3:83:d6:8e:fb:52:1a:f1:7b:da:
18:f8:18:ad:89:9a:66:6e:af:f4:a2:d8:4c:e8:08:
2f:36:2d:e0:8c:bc:31:b9:98:00:07:53:1b:5f:7f:
50:ca:62:22:4c:0f:eb:b6:66:27:8a:95:bf:e0:7b:
ea:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D3:F6:06:45:D8:60:80:FA:0C:2F:85:E8:5B:97:17:BA:07:6C:23
X509v3 Authority Key Identifier:
keyid:A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/ztP2BkXYYID6DC-F6FuXF7oHbCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.212.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:1a:4f:97:fb:a3:56:56:1e:cf:ee:28:b1:90:2a:d3:6e:5f:
7d:16:4c:f7:fc:e9:58:28:8a:f1:e6:f8:06:fc:d8:64:00:d8:
bf:50:6c:86:bf:58:23:83:c7:89:e1:10:1b:fd:bf:b3:0a:41:
19:b8:d0:d4:9b:a5:1f:82:63:6f:3c:d4:cc:8f:00:43:a1:ff:
0c:dc:4e:f8:b5:96:b2:46:bd:0d:26:0d:53:83:e1:38:33:80:
3d:42:b5:4e:66:87:9d:92:e5:7d:d4:11:e2:54:d7:ba:f6:0f:
ac:a4:53:76:d9:f0:20:c1:74:58:9b:be:c2:de:8f:ab:11:75:
c1:ce:66:95:af:d4:c3:4f:5c:74:3b:a6:88:a9:03:bb:8e:5f:
d3:db:c9:59:ad:af:d7:c9:62:dc:69:50:04:d8:5f:ab:98:35:
ee:d0:63:4d:f5:74:e7:3d:04:5d:8b:78:e7:10:c8:e3:11:fb:
f7:39:0b:f9:92:2c:a0:6c:50:9c:d5:02:63:3d:ef:19:0f:7b:
7d:7d:36:cf:cf:c7:10:75:52:bb:bb:01:4a:94:26:ef:24:c3:
b4:ee:f2:c9:f1:47:a8:12:e5:87:3a:b9:67:f2:79:6e:b4:b6:
20:62:7c:db:eb:76:db:dd:21:ef:82:5d:42:1a:16:67:33:92:
28:a5:7e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:46 2025 by rpki-client