Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/076272-296d-46af-85d1-44973a602d9f/1/dQ4rz-uPMxI-u-dT4v-b-uZJyTg.roa
File: dQ4rz-uPMxI-u-dT4v-b-uZJyTg.roa (raw, json)
Hash identifier: 7+so557K/j7x/7M2mRjj/W2KIyA6GB41po4VSgB7+Iw=
Subject key identifier: 75:0E:2B:CF:EB:8F:33:12:3E:BB:E7:53:E2:FF:9B:FA:E6:49:C9:38
Certificate issuer: /CN=6c09ab0751fea4b292a9afd14dbec3b83a077870
Certificate serial: 018BD723EB92F5AD814346B9B2662D8F90C6
Authority key identifier: 6C:09:AB:07:51:FE:A4:B2:92:A9:AF:D1:4D:BE:C3:B8:3A:07:78:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAmrB1H-pLKSqa_RTb7DuDoHeHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/076272-296d-46af-85d1-44973a602d9f/1/dQ4rz-uPMxI-u-dT4v-b-uZJyTg.roa
Signing time: Thu 16 Nov 2023 07:58:57 +0000
ROA not before: Thu 16 Nov 2023 07:58:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44536
IP address blocks: 66.132.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d7:23:eb:92:f5:ad:81:43:46:b9:b2:66:2d:8f:90:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c09ab0751fea4b292a9afd14dbec3b83a077870
Validity
Not Before: Nov 16 07:58:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=750e2bcfeb8f33123ebbe753e2ff9bfae649c938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:28:5d:97:5a:49:3c:d3:41:6b:af:df:15:67:
93:87:b6:5a:35:5c:b2:a2:b9:b1:27:38:b7:b1:0b:
e8:53:2c:f2:68:55:8f:9e:6f:58:f8:b7:42:7b:27:
ff:1e:a2:35:1e:e3:4b:4b:0c:75:5f:59:c9:f0:2e:
18:1f:47:06:45:66:1e:8b:f7:56:de:52:25:47:6a:
3b:07:b1:fd:56:4f:aa:c2:87:24:ab:aa:d8:04:93:
57:52:e6:d6:cb:6a:de:b6:3c:b4:a0:05:08:9f:d1:
3f:d5:f3:bf:44:50:6f:09:d8:d2:91:70:4a:25:9f:
2c:e9:1f:3d:41:c8:cf:b7:ab:04:55:c8:91:48:d9:
f5:63:64:3a:ae:4e:0e:11:a0:d7:ab:a0:2f:db:be:
a5:dc:4f:c7:89:99:33:b1:c6:7d:1b:40:1b:ba:2b:
69:ae:42:97:8d:95:84:a9:e8:8e:59:2b:d3:ac:03:
54:e7:a1:c2:1c:1d:0f:12:fb:19:e2:f9:e6:69:b0:
c2:fb:db:41:59:28:dd:00:ed:8f:b9:8f:82:13:26:
c6:30:1b:c5:2a:95:40:29:23:36:6c:0e:a1:25:83:
ed:83:4f:31:be:95:be:6b:1d:a1:cf:21:a1:ea:d9:
ba:88:7d:e6:49:14:1f:82:68:6f:98:99:01:c1:b7:
1e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0E:2B:CF:EB:8F:33:12:3E:BB:E7:53:E2:FF:9B:FA:E6:49:C9:38
X509v3 Authority Key Identifier:
keyid:6C:09:AB:07:51:FE:A4:B2:92:A9:AF:D1:4D:BE:C3:B8:3A:07:78:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAmrB1H-pLKSqa_RTb7DuDoHeHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/076272-296d-46af-85d1-44973a602d9f/1/dQ4rz-uPMxI-u-dT4v-b-uZJyTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/076272-296d-46af-85d1-44973a602d9f/1/bAmrB1H-pLKSqa_RTb7DuDoHeHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.132.134.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:9c:35:1e:a0:9f:f9:35:be:44:ba:ae:bc:34:95:e1:9e:47:
11:7a:48:31:c4:76:d5:d1:7d:2a:ed:20:49:b6:ce:8d:91:5c:
8d:60:2b:68:cb:52:9f:1d:bf:17:50:62:dd:f6:cf:1b:9d:a6:
0c:79:1f:eb:10:01:cf:14:71:c8:fe:80:b7:1f:77:a0:05:9e:
cd:bc:b4:4f:7e:81:05:08:e7:68:f7:13:0c:ba:b7:b4:11:8d:
c0:07:a6:6d:f1:32:c0:72:94:3e:92:03:b9:33:56:42:f5:bf:
a7:97:ee:6a:44:e8:3c:12:e2:85:92:19:0b:1d:49:81:38:c8:
36:71:0a:19:72:ce:25:a5:c7:cf:0c:ee:35:55:65:2f:29:f1:
6b:f2:07:7f:72:a8:8c:6d:81:41:89:3c:c2:3f:26:4f:06:c9:
ee:f5:0d:12:d2:56:9e:42:df:ab:45:f3:af:6f:11:2e:5a:13:
b2:a4:a7:eb:35:26:4f:44:37:eb:c1:33:df:be:cd:04:10:b9:
13:bb:3d:3d:68:22:b7:d4:0e:d2:7b:98:85:24:d2:04:a1:70:
ac:fc:bb:60:cf:6d:c6:85:81:0d:ab:0a:9b:48:77:25:44:80:
5b:b4:e7:0f:5a:0b:8b:eb:7a:ad:cc:e0:b6:50:a7:12:9f:26:
e7:fa:bd:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:39 2025 by rpki-client