Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/1-DK9CDialfREBlSP56iKCno3uDA.roa
File: 1-DK9CDialfREBlSP56iKCno3uDA.roa (raw, json)
Hash identifier: ziu0rnzrvc7VFue3UlyM6KhtsA6MX4bM4FZIFF3K4w4=
Subject key identifier: F8:32:BD:08:38:9A:95:F4:44:06:54:8F:E7:A8:8A:0A:7A:37:B8:30
Certificate issuer: /CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Certificate serial: 01850AB6DC6982525D5509F7FA91C49D3D56
Authority key identifier: 9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/1-DK9CDialfREBlSP56iKCno3uDA.roa
Signing time: Tue 13 Dec 2022 09:00:34 +0000
ROA not before: Tue 13 Dec 2022 09:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211439
IP address blocks: 176.118.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0a:b6:dc:69:82:52:5d:55:09:f7:fa:91:c4:9d:3d:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Validity
Not Before: Dec 13 09:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f832bd08389a95f44406548fe7a88a0a7a37b830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4c:68:10:f5:90:2d:fa:2a:39:63:9d:23:5a:
10:18:85:06:61:ce:6a:d2:05:df:78:16:91:57:2e:
97:a0:36:ab:52:42:23:2a:e8:e7:cc:37:16:aa:c4:
f7:89:80:9d:7b:50:b3:bf:31:b6:0c:ca:89:04:77:
2b:02:dd:05:7e:13:04:dc:c4:0b:6d:0d:0c:e8:4d:
a5:3c:d6:65:34:05:f4:85:35:3b:f1:ba:ee:e0:41:
bb:68:82:59:9d:08:f7:61:d1:05:e8:5c:48:ee:09:
54:2e:5b:bd:60:38:d8:4c:cc:d7:d7:67:ca:79:ab:
81:82:04:4f:a2:f5:5e:42:e5:5e:22:74:b1:16:f9:
53:c1:a6:95:53:f8:4f:53:bc:17:a3:c8:be:7a:1e:
dc:b6:a6:db:27:bb:3e:ac:92:19:13:c2:34:7b:d8:
07:83:3d:be:91:9a:28:2b:fa:0b:85:4d:e7:7e:bb:
2b:01:b3:be:d9:cd:7d:61:51:bc:91:7e:3f:52:14:
ab:83:fb:b1:ce:6d:d9:1f:91:a0:0b:a5:60:b6:67:
82:c3:e5:7f:d5:87:41:6b:0c:d6:50:03:05:fd:c8:
fe:a7:81:48:8b:e1:d3:a4:a0:42:15:84:43:ce:29:
6e:e5:6b:f7:73:44:d8:9d:e9:08:8f:8c:39:62:aa:
29:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:32:BD:08:38:9A:95:F4:44:06:54:8F:E7:A8:8A:0A:7A:37:B8:30
X509v3 Authority Key Identifier:
keyid:9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/1-DK9CDialfREBlSP56iKCno3uDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/naqfFPl9Ta2MAEwlOl4c58fdfEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.163.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a9:80:17:72:f2:26:eb:64:2e:27:14:b8:9c:64:fd:9a:23:
ba:bc:76:46:d2:f2:5f:21:6a:62:bb:e2:6e:de:7e:16:54:83:
84:3b:3e:30:15:af:e3:d7:fd:65:bf:9d:2f:92:a7:ce:2d:52:
28:cb:74:1f:87:fd:b4:e7:46:28:da:0f:6a:4e:8a:46:10:17:
7f:2f:25:d2:38:01:b8:11:fa:9c:6d:ff:bf:68:f9:15:f5:4c:
ca:2c:98:8c:03:a8:f4:e0:f3:a0:53:05:5c:29:d3:3f:0f:20:
6f:f1:ca:d4:3c:55:cc:06:e4:a5:86:b5:20:9d:02:bf:c1:0f:
d2:e8:d6:78:1a:e1:fa:be:24:a3:87:ea:38:40:7a:f3:f5:fd:
e3:c6:45:56:e0:cb:67:c7:8c:d5:11:a2:cd:24:eb:81:11:5a:
f0:c8:ad:c5:eb:6a:30:6b:55:59:e4:bd:8a:4f:c2:94:26:eb:
24:d1:4f:68:5e:0a:86:8f:a9:3b:61:9c:cd:eb:63:2d:61:b2:
fc:14:8b:b7:0f:1b:d4:0d:b3:26:d7:2d:65:93:bb:8f:b4:1a:
79:bb:b2:ff:cf:cc:24:6e:5f:38:85:56:2b:30:71:db:58:42:
14:e8:15:b9:f3:cf:d5:1d:9f:06:77:ed:9f:09:6b:97:26:d9:
86:0a:80:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-fra.rpki-client.org