Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/aecf2e-29a4-4a20-8de5-db18c1041a95/1/_S43dt67NSvd9CxzPn5gOaMuUjA.roa
File: _S43dt67NSvd9CxzPn5gOaMuUjA.roa (raw, json)
Hash identifier: m0D0ujIs3//dJjD0aoYo8RFOqBW8e6dLGZgCUa037J8=
Subject key identifier: FD:2E:37:76:DE:BB:35:2B:DD:F4:2C:73:3E:7E:60:39:A3:2E:52:30
Certificate issuer: /CN=f984bce44fa32801d7f10ce9839b06084ddff2ba
Certificate serial: 028C976D
Authority key identifier: F9:84:BC:E4:4F:A3:28:01:D7:F1:0C:E9:83:9B:06:08:4D:DF:F2:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YS85E-jKAHX8Qzpg5sGCE3f8ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/aecf2e-29a4-4a20-8de5-db18c1041a95/1/_S43dt67NSvd9CxzPn5gOaMuUjA.roa
Signing time: Sat 01 Jan 2022 11:03:10 +0000
ROA not before: Sat 01 Jan 2022 11:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211921
IP address blocks: 176.103.212.0/24 maxlen: 24
176.103.213.0/24 maxlen: 24
176.103.215.0/24 maxlen: 24
176.103.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42768237 (0x28c976d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f984bce44fa32801d7f10ce9839b06084ddff2ba
Validity
Not Before: Jan 1 11:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd2e3776debb352bddf42c733e7e6039a32e5230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:be:6a:25:62:14:3a:b2:87:e3:a7:03:57:7e:
a3:72:f0:dd:40:b7:9b:5f:c2:d4:ec:4f:5f:2f:e5:
34:8c:69:5e:11:ed:93:63:14:6f:ad:52:8f:e2:5b:
ff:54:bc:d8:c0:1e:a8:33:38:8e:ba:16:42:fe:fb:
3b:f9:c7:e3:6d:f2:2a:f6:6d:9d:43:c7:ca:2d:f3:
ac:6b:d6:54:29:23:10:66:93:0c:cc:3d:3d:b2:e8:
ca:66:16:b4:b5:57:cb:b1:2c:60:f1:a6:5e:75:4a:
8e:68:03:93:32:c2:7d:4d:c0:49:1d:07:06:13:20:
55:63:4b:7c:f0:11:35:e8:0d:44:cf:89:6d:c8:ad:
2d:89:4b:5b:0e:d6:a4:ac:a8:56:89:1a:64:5f:82:
89:03:5e:24:5d:8a:61:28:5d:6d:ad:06:4b:29:cc:
32:11:78:10:d9:93:72:47:9a:11:ea:81:f7:4b:b6:
5d:58:cd:0b:af:b0:3b:cb:56:a0:8a:89:99:8c:f6:
97:72:07:78:02:ee:b3:ae:30:74:d6:21:62:2c:8c:
40:b5:b5:76:85:f7:78:1c:de:a9:8d:7a:e3:cf:84:
2a:7b:d1:28:1f:61:b1:3f:df:22:bf:86:58:c9:22:
80:fb:e5:67:38:81:9b:5d:7b:75:3d:2c:a3:da:45:
f2:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:2E:37:76:DE:BB:35:2B:DD:F4:2C:73:3E:7E:60:39:A3:2E:52:30
X509v3 Authority Key Identifier:
keyid:F9:84:BC:E4:4F:A3:28:01:D7:F1:0C:E9:83:9B:06:08:4D:DF:F2:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YS85E-jKAHX8Qzpg5sGCE3f8ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/aecf2e-29a4-4a20-8de5-db18c1041a95/1/_S43dt67NSvd9CxzPn5gOaMuUjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/aecf2e-29a4-4a20-8de5-db18c1041a95/1/1-YS85E-jKAHX8Qzpg5sGCE3f8ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.103.212.0/22
Signature Algorithm: sha256WithRSAEncryption
71:b5:36:43:c0:97:b0:74:ff:d5:31:6c:06:5e:2a:e5:05:16:
d3:7d:d4:6c:e3:58:95:0c:ea:5c:cf:db:e7:ba:e2:c3:a7:c4:
34:63:ee:a5:92:8e:48:5e:f4:fb:5c:6a:22:c3:54:19:79:92:
89:0c:b7:92:21:94:9d:71:5a:4f:71:3d:e6:58:1c:f0:4b:9a:
71:8e:9f:26:a1:51:2d:7f:e8:4d:06:d9:2d:95:ce:4f:79:68:
bf:d1:07:a0:d7:86:c6:95:fb:19:78:fe:54:0e:ce:df:74:94:
1b:b3:e0:d6:f2:08:97:87:28:73:50:d0:36:91:49:98:03:1f:
7d:43:31:af:ef:ba:6c:0d:e8:86:e2:80:e1:63:7c:bd:f6:f6:
11:f0:08:a2:da:50:62:ce:3a:d9:bc:13:fb:e1:fd:34:58:d6:
2c:8b:16:bb:14:1e:6a:0d:19:4b:ab:1e:d2:19:a1:c9:c2:96:
b6:8c:21:c8:bb:13:f3:3b:19:52:d6:8a:b1:1f:65:d4:5d:2f:
a9:06:19:d8:6d:ac:5a:f3:dd:1c:d2:7e:c7:9c:dd:bb:60:c2:
47:f7:c5:6c:17:b9:b6:1b:97:4e:79:4b:dd:5d:0a:3c:71:d3:
4a:12:14:cd:76:ca:3f:38:c0:bd:f3:6f:40:fc:a1:e0:0f:e3:
ee:44:11:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:29 2023 by rpki-client on console-fra.rpki-client.org