Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/xTHjdh6ux5W7ASgzDUZzXyPfblY.roa
File: xTHjdh6ux5W7ASgzDUZzXyPfblY.roa (raw, json)
Hash identifier: wDAVdgSQ+nPQEhGTNoD5s8oRp7Oh7We29mI5V+GgIC0=
Subject key identifier: C5:31:E3:76:1E:AE:C7:95:BB:01:28:33:0D:46:73:5F:23:DF:6E:56
Certificate issuer: /CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc
Certificate serial: 08C3CAC3
Authority key identifier: 4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/xTHjdh6ux5W7ASgzDUZzXyPfblY.roa
Signing time: Sat 01 Jan 2022 10:57:09 +0000
ROA not before: Sat 01 Jan 2022 10:57:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 378
IP address blocks: 132.76.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147049155 (0x8c3cac3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc
Validity
Not Before: Jan 1 10:57:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c531e3761eaec795bb0128330d46735f23df6e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e5:35:bf:d9:36:93:6a:74:7e:af:15:e0:95:
b1:71:06:e7:8b:04:0d:83:b3:c9:ac:9c:74:16:58:
a3:8f:b5:43:79:66:f3:96:38:44:8d:71:f2:9c:87:
c7:96:0f:42:7b:cc:0a:91:ed:eb:b9:cd:29:80:a9:
2e:46:82:21:75:04:ca:86:41:f0:59:c3:cf:6c:8d:
db:bc:a5:97:f3:5e:57:55:dc:b9:24:80:26:ce:e0:
a3:d7:91:e7:b6:06:5c:45:53:11:8c:41:d7:47:92:
93:3b:89:5b:74:98:ae:76:07:c5:d0:1a:24:b9:62:
56:e7:70:aa:a6:c1:57:a1:a8:74:71:ce:03:5e:4a:
9c:f5:3e:13:09:9c:38:49:c2:2e:d4:29:7a:40:a8:
e6:ac:72:cc:f8:34:9c:d2:35:33:a5:c3:3a:db:7f:
5a:21:a7:3d:36:1f:33:19:6d:d1:86:73:27:0f:c6:
b2:f8:50:13:4d:86:ad:f7:43:52:92:cf:4c:ff:4f:
ab:72:33:0d:98:b8:27:3f:75:70:08:c6:a6:84:ea:
ab:bc:5f:47:87:d7:c2:8a:c3:64:24:43:9e:b2:33:
77:d9:b0:02:54:c4:e7:3c:5b:c3:2f:da:78:3c:69:
a0:e1:da:2e:9c:f8:30:e5:9c:f4:63:e5:6e:39:8a:
ad:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:31:E3:76:1E:AE:C7:95:BB:01:28:33:0D:46:73:5F:23:DF:6E:56
X509v3 Authority Key Identifier:
keyid:4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/xTHjdh6ux5W7ASgzDUZzXyPfblY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.76.0.0/15
Signature Algorithm: sha256WithRSAEncryption
ad:8a:bb:be:d2:ef:36:06:7e:a8:53:0d:df:6c:03:5d:de:5e:
fe:1b:3a:c7:12:a0:cd:08:0e:3c:aa:bd:6c:52:9f:20:60:a4:
93:f4:70:9f:fc:fd:d3:b0:da:c4:4d:88:65:32:aa:e3:0f:11:
1a:f8:db:39:8f:b2:36:8a:62:32:de:48:bb:e9:f8:59:1a:d9:
75:30:0a:1f:fb:49:68:3b:66:3e:42:6d:9c:94:cf:1b:fc:a9:
b9:2a:05:6f:40:e1:e5:90:8f:ac:f4:52:2e:fd:e7:ce:11:b9:
cd:ab:79:5b:5c:4b:0e:dd:16:23:31:06:83:23:4f:65:95:77:
15:7d:1b:1d:cc:87:e1:1f:89:d3:13:c8:3e:90:a2:7e:6a:dc:
0d:3b:93:b9:d3:e2:eb:bd:64:67:1d:4e:dd:48:52:ff:84:b7:
c4:42:ce:64:b0:eb:3d:d6:47:08:32:b0:3d:b4:94:d3:c9:18:
a7:23:f8:16:1e:d1:73:5c:d9:4f:a5:ac:dc:ab:c0:b2:28:05:
82:5c:d3:71:08:15:8f:c7:8a:3d:e4:83:0c:db:49:23:61:94:
4b:b7:84:4a:10:d9:c7:9e:89:2e:62:6a:7e:37:e6:ce:2a:61:
e3:4b:76:6b:ce:80:6d:a4:2e:67:1a:32:a5:be:f2:df:5d:f1:
ed:a9:54:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:50 2024 by rpki-client on console-fra.rpki-client.org