Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/9c9f28-b1fb-4793-ad56-008af3a418a3/1/vTEFkaYMJkHZuqyeFfCAqPLNdDw.roa
File: vTEFkaYMJkHZuqyeFfCAqPLNdDw.roa (raw, json)
Hash identifier: zHwpJDKzAowG1NZDiRRlzVOJzc0HKZQBDEOKoJLHXk0=
Subject key identifier: BD:31:05:91:A6:0C:26:41:D9:BA:AC:9E:15:F0:80:A8:F2:CD:74:3C
Certificate issuer: /CN=a4f95a685631dab8b64aec060c4d1bc666cc870e
Certificate serial: 9310B4
Authority key identifier: A4:F9:5A:68:56:31:DA:B8:B6:4A:EC:06:0C:4D:1B:C6:66:CC:87:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPlaaFYx2ri2SuwGDE0bxmbMhw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/9c9f28-b1fb-4793-ad56-008af3a418a3/1/vTEFkaYMJkHZuqyeFfCAqPLNdDw.roa
Signing time: Sat 01 Jan 2022 00:58:37 +0000
ROA not before: Sat 01 Jan 2022 00:58:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 176.116.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9638068 (0x9310b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f95a685631dab8b64aec060c4d1bc666cc870e
Validity
Not Before: Jan 1 00:58:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd310591a60c2641d9baac9e15f080a8f2cd743c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:63:05:66:98:c4:85:10:c0:47:fb:be:50:36:
06:dd:7e:d6:83:80:14:64:85:0e:0f:5b:bd:dd:5b:
8e:bb:82:c4:91:cc:94:f4:3e:b0:49:03:15:eb:0d:
20:aa:89:63:bc:99:3a:fd:53:a8:48:af:84:46:7e:
ca:9a:8c:5a:47:ce:38:24:05:d1:6c:a0:a4:03:c3:
5d:0d:31:20:38:4d:98:75:bb:a4:e7:ae:ef:bc:ec:
78:a1:80:d1:13:db:5f:18:bb:5a:3e:01:ea:42:60:
58:a1:89:1b:f0:18:95:7c:25:4c:16:26:b2:8a:71:
ec:a4:b9:1e:b1:4b:94:70:0e:5b:7a:74:53:54:4a:
21:50:74:3b:1e:81:13:2c:1a:f1:a8:18:dc:07:79:
21:33:db:a0:4b:85:1c:de:87:70:52:e9:5d:68:ce:
fc:52:66:9b:5d:a9:0b:51:63:05:75:31:4e:51:96:
1d:c0:22:73:fd:76:ed:0b:c7:b1:4b:23:ec:7b:60:
ff:d2:0c:3d:e3:00:92:49:2e:ad:a3:55:b5:3d:c4:
b3:5b:ac:44:ee:57:9a:74:92:54:e0:1d:b4:b4:c6:
bf:7c:53:8a:29:da:8c:8a:03:30:3e:93:2e:29:29:
6a:eb:a4:22:ec:32:0c:ba:82:20:91:7f:af:62:a8:
61:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:31:05:91:A6:0C:26:41:D9:BA:AC:9E:15:F0:80:A8:F2:CD:74:3C
X509v3 Authority Key Identifier:
keyid:A4:F9:5A:68:56:31:DA:B8:B6:4A:EC:06:0C:4D:1B:C6:66:CC:87:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPlaaFYx2ri2SuwGDE0bxmbMhw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/9c9f28-b1fb-4793-ad56-008af3a418a3/1/vTEFkaYMJkHZuqyeFfCAqPLNdDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/9c9f28-b1fb-4793-ad56-008af3a418a3/1/pPlaaFYx2ri2SuwGDE0bxmbMhw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.11.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e9:63:27:50:3f:16:83:02:a7:05:fb:09:b6:f1:66:b5:47:
42:54:56:07:c4:ab:42:01:58:86:e1:9f:df:14:44:12:50:60:
55:65:93:5a:88:75:66:a3:fc:9a:e2:c7:88:b6:2c:f2:f4:85:
a4:43:52:8c:ca:e5:02:07:f1:fa:ae:9b:7b:55:0a:08:fb:9a:
ac:6a:a3:f3:d9:8d:fb:fb:7c:48:85:b0:ef:da:11:f3:8e:c9:
1f:35:e2:14:92:13:85:1d:02:f8:d0:7d:64:34:91:1e:0c:4b:
b2:84:93:5a:b6:e9:a7:ed:28:67:37:1d:aa:06:9b:30:c5:42:
88:d9:20:b1:6f:9b:d2:01:19:5a:5f:23:8c:fd:d4:ff:14:0f:
f5:f7:4b:6a:f3:a7:db:9c:cd:0e:f1:56:76:60:2c:db:3c:dd:
58:45:e7:e4:e4:e9:ec:fb:dd:f5:6d:7c:cf:a9:10:f1:f5:6b:
99:1c:ba:27:f5:a9:98:f5:f1:17:d7:58:a4:51:2c:03:9f:6c:
d8:e5:f2:3d:6e:0f:3e:20:13:7d:1e:65:14:2c:00:07:ff:d9:
4f:9b:4f:da:f7:d6:51:b8:b4:33:f2:47:7e:25:df:3b:97:d6:
f3:e9:99:ff:d0:a6:1c:02:48:45:21:f3:19:dd:92:f9:80:40:
16:c5:4c:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:33 2023 by rpki-client on console-ams.rpki-client.org