Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/6b2770-0d31-4159-a9e9-5b9946dd1bea/1/4iVE4VuLuUeCkaVMWYGKhCRgEHM.roa
File: 4iVE4VuLuUeCkaVMWYGKhCRgEHM.roa (raw, json)
Hash identifier: Eh8L2OPez/AuUDkKO+vyuUpkUq3cZS3WhvLX9yo31y8=
Subject key identifier: E2:25:44:E1:5B:8B:B9:47:82:91:A5:4C:59:81:8A:84:24:60:10:73
Certificate issuer: /CN=26ab2a38caac0ce3ca01fdb87fdf96372e8598b6
Certificate serial: 0569C544
Authority key identifier: 26:AB:2A:38:CA:AC:0C:E3:CA:01:FD:B8:7F:DF:96:37:2E:85:98:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JqsqOMqsDOPKAf24f9-WNy6FmLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/6b2770-0d31-4159-a9e9-5b9946dd1bea/1/4iVE4VuLuUeCkaVMWYGKhCRgEHM.roa
Signing time: Sat 01 Jan 2022 02:58:08 +0000
ROA not before: Sat 01 Jan 2022 02:58:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61358
IP address blocks: 176.113.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90817860 (0x569c544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26ab2a38caac0ce3ca01fdb87fdf96372e8598b6
Validity
Not Before: Jan 1 02:58:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e22544e15b8bb9478291a54c59818a8424601073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:63:85:8b:58:66:8b:3e:a0:bc:be:d8:7a:cf:
96:62:31:c3:fb:d9:46:d0:30:5e:d4:7b:a3:e6:2e:
99:88:79:10:92:36:42:7e:d9:46:63:4e:d4:ea:34:
0b:0c:b9:d4:8b:17:a8:f7:d2:7b:7b:4d:78:b1:d0:
d4:79:7d:dc:18:cd:79:75:46:e8:c2:18:dd:35:3a:
03:05:48:70:35:0a:80:57:d7:0d:d2:57:17:47:28:
5f:32:c9:4f:96:a4:3d:00:73:c4:25:26:3c:ed:26:
1c:33:c5:29:8e:ff:df:46:66:31:34:87:e0:e8:10:
b1:31:75:59:fb:58:42:8b:8f:46:a5:51:0a:28:f1:
e5:c5:10:19:94:08:e6:11:5f:f8:c7:6d:fc:5e:6f:
18:f4:70:63:57:2b:23:c8:85:17:3d:3d:95:22:1f:
ba:20:39:54:be:fa:2d:04:4f:44:34:b4:14:07:3a:
cb:1f:93:9b:7c:c1:e8:8b:c9:d8:fc:7f:fd:74:50:
a7:54:dd:83:61:fc:02:33:68:b6:4a:26:f8:e6:9c:
8e:01:ac:9c:0c:f1:e2:2e:2d:e0:df:14:d6:5a:6d:
40:99:47:f7:da:64:5a:a7:5f:b1:be:e7:92:c6:33:
4f:12:7b:d0:6e:a6:f6:b2:4c:a7:9e:96:b6:9d:ae:
a1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:25:44:E1:5B:8B:B9:47:82:91:A5:4C:59:81:8A:84:24:60:10:73
X509v3 Authority Key Identifier:
keyid:26:AB:2A:38:CA:AC:0C:E3:CA:01:FD:B8:7F:DF:96:37:2E:85:98:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JqsqOMqsDOPKAf24f9-WNy6FmLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6b2770-0d31-4159-a9e9-5b9946dd1bea/1/4iVE4VuLuUeCkaVMWYGKhCRgEHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6b2770-0d31-4159-a9e9-5b9946dd1bea/1/JqsqOMqsDOPKAf24f9-WNy6FmLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.117.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:c3:b0:e5:14:da:1a:22:60:d0:11:07:4e:fd:9f:44:80:b7:
b0:8e:e4:1b:a3:a7:90:d3:a2:c3:89:0a:89:e9:9c:0a:dc:37:
75:4d:a7:a8:bd:af:64:b8:f5:98:e5:ef:0d:b1:eb:d2:de:55:
61:cd:91:67:28:34:3d:3b:ba:74:c0:dc:24:2e:37:cd:11:34:
1e:e9:2e:96:1a:0f:72:d9:18:9c:dc:e5:0a:2e:12:a7:d9:8a:
b7:73:62:3c:e0:f4:b9:93:82:f2:ea:f2:bc:d0:4f:6e:d4:28:
f1:19:20:3c:71:f7:ae:23:e8:4a:ba:38:69:2d:dd:9b:97:6e:
ce:a3:62:30:ab:94:2e:bb:d8:38:f7:42:01:9c:65:c0:7d:de:
fd:98:55:b4:dd:17:e6:98:34:ed:7b:a0:f9:a7:16:15:ad:6b:
eb:f5:fc:f9:62:ae:5d:34:2f:d7:c7:c7:ae:8e:b6:07:6a:d1:
6f:7e:63:0e:55:fb:18:19:8c:06:83:07:d3:70:ce:ab:ba:74:
66:f7:77:e5:ee:60:a5:20:d2:57:3a:8f:4a:df:18:9a:d0:ac:
70:76:3b:8e:1a:41:88:03:b9:65:a0:80:09:43:00:c2:88:5d:
20:e1:65:bb:ba:49:97:8d:90:fb:0e:7e:fd:02:26:36:2a:24:
84:9e:56:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:23 2024 by rpki-client on console-fra.rpki-client.org