Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/P7R_cqSZIA2uUNeJN3qEPNVBjQQ.roa
File: P7R_cqSZIA2uUNeJN3qEPNVBjQQ.roa (raw, json)
Hash identifier: iZbH5SXIongOv+LUCpJt4K3Ia0xUzXWyA/HEpNYlN/s=
Subject key identifier: 3F:B4:7F:72:A4:99:20:0D:AE:50:D7:89:37:7A:84:3C:D5:41:8D:04
Certificate issuer: /CN=a3674d5884a50a84e07dbdf6798ddcbb9cc2032e
Certificate serial: 03FC03ED
Authority key identifier: A3:67:4D:58:84:A5:0A:84:E0:7D:BD:F6:79:8D:DC:BB:9C:C2:03:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2dNWISlCoTgfb32eY3cu5zCAy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/P7R_cqSZIA2uUNeJN3qEPNVBjQQ.roa
Signing time: Sat 01 Jan 2022 14:57:02 +0000
ROA not before: Sat 01 Jan 2022 14:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199251
IP address blocks: 176.58.44.0/24 maxlen: 24
176.58.45.0/24 maxlen: 24
176.58.48.0/23 maxlen: 23
176.58.50.0/24 maxlen: 24
176.58.51.0/24 maxlen: 24
176.58.52.0/24 maxlen: 24
176.58.53.0/24 maxlen: 24
176.58.55.0/24 maxlen: 24
176.58.57.0/24 maxlen: 24
176.58.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66847725 (0x3fc03ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3674d5884a50a84e07dbdf6798ddcbb9cc2032e
Validity
Not Before: Jan 1 14:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fb47f72a499200dae50d789377a843cd5418d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:89:a3:07:2d:a7:7a:65:e6:52:1b:a0:81:d3:
32:dc:45:c3:a3:69:78:8b:3a:f3:0d:7b:7c:da:7d:
b6:95:9e:24:d5:0e:1d:89:a5:12:1d:33:55:f1:da:
a6:a2:6b:bc:b8:37:54:f2:52:90:6e:6a:37:37:42:
8e:30:32:eb:07:43:54:81:83:67:d3:46:90:f2:c1:
fc:6b:3d:2b:af:57:c2:a4:5b:59:30:e3:82:3d:a5:
2f:ea:34:fb:d6:b2:f9:27:80:b2:ed:e2:57:b1:a5:
98:66:07:f5:93:c6:d5:ad:79:a0:89:d7:0f:c0:70:
0a:fe:f9:7d:41:68:df:6f:30:21:f3:5a:5a:e3:90:
0f:d4:51:88:11:6c:b8:3b:8d:3f:9e:7c:ce:30:b0:
fb:da:94:af:4d:49:d7:3e:e0:7a:3b:55:5f:c6:17:
8a:b2:9b:af:45:82:e5:c1:7e:a5:d7:61:de:cc:28:
e2:12:fe:d7:8b:e5:9c:3f:df:ac:7a:4a:5e:90:86:
02:79:58:ef:e2:20:64:e0:ed:5a:5e:4c:ca:cf:0d:
5b:ac:64:66:d4:30:3e:8a:e5:2e:3a:d2:21:00:c9:
a4:a9:c5:51:ce:cd:dc:2f:19:f6:4b:df:d2:b3:d0:
93:15:9c:4e:a1:06:85:c6:12:86:f6:47:5e:2b:81:
c1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B4:7F:72:A4:99:20:0D:AE:50:D7:89:37:7A:84:3C:D5:41:8D:04
X509v3 Authority Key Identifier:
keyid:A3:67:4D:58:84:A5:0A:84:E0:7D:BD:F6:79:8D:DC:BB:9C:C2:03:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2dNWISlCoTgfb32eY3cu5zCAy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/P7R_cqSZIA2uUNeJN3qEPNVBjQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/806532-54e9-4b49-b8a7-9e220f04a901/1/o2dNWISlCoTgfb32eY3cu5zCAy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.58.44.0/23
176.58.48.0-176.58.53.255
176.58.55.0/24
176.58.57.0/24
176.58.59.0/24
Signature Algorithm: sha256WithRSAEncryption
18:26:29:7e:0f:82:8a:83:54:56:07:18:f3:51:97:96:80:4c:
bb:f9:c5:ba:7f:48:5a:18:cb:85:47:7f:a5:70:cf:11:7c:6a:
02:67:ef:77:62:95:95:70:b7:83:d7:d0:b5:e7:d4:4e:8d:3e:
75:51:0b:20:ae:20:0a:2c:20:19:e5:58:9f:50:5f:db:ef:3b:
00:4c:99:0f:86:ab:eb:d5:79:58:a2:e9:f4:f5:bf:a0:36:34:
78:84:03:b9:44:62:0d:ab:d6:6b:08:cf:3c:09:fe:ba:41:89:
c2:4c:a5:56:49:61:82:78:86:58:7f:9f:56:4e:12:48:c6:04:
81:71:09:2d:ed:a4:0f:98:a9:3e:dd:d9:f7:3a:12:bb:5b:e2:
b0:d3:61:29:26:00:cf:aa:42:cf:68:27:e4:49:2c:4e:cf:4c:
cc:57:13:ac:6f:50:72:9e:95:23:41:b2:89:bb:a3:a7:d2:80:
c5:8b:1c:e1:53:0b:c6:d3:f8:a3:f6:26:96:7b:c6:6c:f2:17:
01:84:13:d1:48:a6:0b:ad:1e:63:e3:ac:f5:26:78:61:bd:7f:
00:ee:b9:e0:c5:d6:cb:d5:19:16:ca:0d:58:da:dc:09:fa:92:
17:fd:59:43:90:70:c0:10:b9:06:56:69:87:71:b6:99:a2:c0:
65:87:98:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org