Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/iNRBXWTpO98sII_bDdh4V44PxOc.roa
File: iNRBXWTpO98sII_bDdh4V44PxOc.roa (raw, json)
Hash identifier: 1W6r45AMhqwIQrW2AtHGU4AkEpcOmmYrywQAHwafU9Y=
Subject key identifier: 88:D4:41:5D:64:E9:3B:DF:2C:20:8F:DB:0D:D8:78:57:8E:0F:C4:E7
Certificate issuer: /CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Certificate serial: 01825895B7BAA855B584E8D11462E16C4492
Authority key identifier: 9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/iNRBXWTpO98sII_bDdh4V44PxOc.roa
Signing time: Mon 01 Aug 2022 08:46:23 +0000
ROA not before: Mon 01 Aug 2022 08:46:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 176.118.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:95:b7:ba:a8:55:b5:84:e8:d1:14:62:e1:6c:44:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Validity
Not Before: Aug 1 08:46:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88d4415d64e93bdf2c208fdb0dd878578e0fc4e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:88:c7:4e:42:c7:51:db:d4:a9:40:0a:32:6b:
da:26:77:35:58:7a:62:0e:ff:66:34:2d:69:58:a4:
51:9c:6a:e4:89:c0:ed:7f:55:c1:3d:3b:2c:73:a1:
7a:19:c4:a2:69:09:02:90:63:a1:4b:a5:d0:0d:99:
1b:64:74:cb:b9:ef:38:f0:04:14:a4:fa:fc:4a:29:
35:52:23:84:04:d3:b4:17:9d:9f:3c:a2:46:98:a1:
4a:db:b7:3d:34:58:5b:d2:be:a2:a0:56:dc:f0:17:
79:9d:de:61:12:e3:9d:b6:a8:b0:1d:11:c4:fb:01:
f9:54:5f:02:fa:99:8a:fa:81:61:13:c5:29:6f:5b:
2b:97:3c:d8:29:c2:d8:b8:08:6e:e0:57:c6:b7:39:
3e:b6:bb:5e:4a:ea:a5:45:4d:83:b1:57:6a:47:2e:
a9:46:74:9c:78:2f:3a:13:e2:84:27:42:a5:ca:f2:
a7:40:72:f3:d2:62:9c:52:6a:b0:1c:0d:54:85:f8:
32:7f:e6:08:1b:87:94:8c:14:d6:79:67:23:0a:d5:
d2:43:6f:ea:30:0e:82:11:86:68:25:b2:2b:a5:59:
ad:5e:9f:25:c5:90:b4:14:d5:b1:16:6e:46:03:eb:
01:42:90:53:6f:33:68:a3:f9:6b:3a:78:ef:03:a4:
15:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D4:41:5D:64:E9:3B:DF:2C:20:8F:DB:0D:D8:78:57:8E:0F:C4:E7
X509v3 Authority Key Identifier:
keyid:9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/iNRBXWTpO98sII_bDdh4V44PxOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/naqfFPl9Ta2MAEwlOl4c58fdfEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.163.0/24
Signature Algorithm: sha256WithRSAEncryption
71:95:f0:97:e8:ef:44:8e:f1:dc:5b:05:e6:d6:98:4c:8a:71:
5b:19:a4:38:56:b9:a8:bc:b8:45:aa:a1:55:fb:e4:55:b3:6e:
0f:b8:a8:75:2a:0b:1f:39:02:ed:29:06:95:34:01:d6:5a:9b:
06:24:f2:b3:fc:be:ae:90:89:0a:0e:da:52:94:e7:9f:46:75:
72:ce:4b:87:2f:0d:ec:1c:63:00:aa:fd:dc:24:0c:f1:cd:39:
79:62:fa:3f:98:26:79:89:bc:3e:85:ec:6b:d4:7b:be:44:36:
1b:fd:88:89:21:40:f6:b0:ac:75:83:ca:a1:3a:80:ab:a0:49:
be:10:89:6e:3a:72:3f:b3:57:31:b6:ed:89:a2:f2:68:1b:9f:
53:54:00:96:e4:29:56:6a:ac:37:b0:fc:b2:1f:f0:e1:88:5b:
4d:16:dc:83:ab:8e:55:d2:95:7b:12:42:e9:f9:72:f3:c2:7d:
ee:a8:2e:bb:a8:99:2a:ca:0c:5a:b1:a6:14:e8:ea:6f:bd:5c:
ee:df:c8:1a:f5:09:01:8b:72:b1:f7:5b:29:93:79:57:db:f1:
2e:4b:15:d6:8c:80:36:af:4d:b9:f6:52:52:5a:86:42:7e:19:
28:09:f8:eb:b8:24:0a:6b:d0:36:2b:34:b6:c6:38:44:ec:80:
de:e3:25:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-fra.rpki-client.org