Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/v42JpT_oj_MWmZ_SEQdpDJ5l2Vw.roa
File: v42JpT_oj_MWmZ_SEQdpDJ5l2Vw.roa (raw, json)
Hash identifier: g+KKh5cmatZ78ij7I+jNVpfwspFteP5fw0duTTK0MgM=
Subject key identifier: BF:8D:89:A5:3F:E8:8F:F3:16:99:9F:D2:11:07:69:0C:9E:65:D9:5C
Certificate issuer: /CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Certificate serial: 054BE576
Authority key identifier: A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/v42JpT_oj_MWmZ_SEQdpDJ5l2Vw.roa
Signing time: Sat 01 Jan 2022 11:53:41 +0000
ROA not before: Sat 01 Jan 2022 11:53:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 176.119.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88860022 (0x54be576)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Validity
Not Before: Jan 1 11:53:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf8d89a53fe88ff316999fd21107690c9e65d95c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f3:78:89:7f:e8:fa:6b:0b:e7:80:00:00:b9:
4d:64:71:0e:42:31:13:13:16:f0:2d:13:e3:b9:b5:
ba:42:7d:20:71:91:0a:72:a7:4d:d9:0a:e4:c2:1b:
b1:1e:bd:52:00:1f:a6:85:9c:28:01:1b:b7:2e:cd:
47:9b:a3:be:aa:c2:40:2c:d1:0f:e9:8b:a5:e9:85:
56:27:46:a8:11:38:ac:25:08:8c:e9:56:45:47:7d:
f3:7a:17:1f:ff:dc:64:31:3b:29:bf:68:93:3f:d0:
4f:9a:b4:85:e4:73:18:93:17:34:1f:fa:64:b0:cd:
bd:89:01:8f:27:0a:e5:67:83:ff:fb:c7:b6:19:b8:
bd:2a:c8:11:7c:b5:6a:af:8c:a0:4b:69:76:e8:fa:
49:18:54:13:45:90:1e:36:73:eb:9b:9a:61:63:ca:
95:2c:76:56:d6:1d:fc:ad:ab:8b:83:07:24:52:5d:
aa:3a:06:97:bc:be:1a:08:51:7f:38:54:68:ac:8c:
d6:19:7f:f3:70:19:c6:36:41:1a:86:4a:1c:09:c2:
87:5e:09:d9:0b:c4:e0:2b:4a:51:a5:6f:0e:ac:92:
a8:e5:6d:17:05:43:9e:ac:e1:c0:83:fe:db:56:1b:
03:8c:18:88:c8:da:33:dd:be:30:9f:60:ee:4a:9c:
b0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:8D:89:A5:3F:E8:8F:F3:16:99:9F:D2:11:07:69:0C:9E:65:D9:5C
X509v3 Authority Key Identifier:
keyid:A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/v42JpT_oj_MWmZ_SEQdpDJ5l2Vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.222.0/24
Signature Algorithm: sha256WithRSAEncryption
77:6a:8b:9b:bf:5d:41:39:d4:0e:7d:a4:2a:06:9a:5d:82:11:
6d:cf:d1:09:d3:1f:97:84:c3:12:dd:9c:88:22:f9:ba:4a:b5:
0e:ea:d1:23:08:f4:cc:08:bf:fc:8c:d3:63:87:f5:09:62:86:
96:7d:6e:b3:24:61:80:00:02:b8:30:e0:61:76:63:92:20:19:
fd:1d:44:2b:f0:a2:d9:72:e1:4a:ac:51:89:6a:16:33:91:61:
76:48:cb:a8:9e:da:bc:5c:48:ed:4b:cb:d9:14:4c:9b:cd:c2:
a5:fe:60:9e:f5:c3:ff:75:dd:d5:0d:0b:63:81:c5:3d:55:24:
9c:9c:a0:20:5a:bc:cd:09:0b:6b:d4:16:40:e8:ff:3d:22:7d:
28:a7:c7:dc:12:52:3b:5e:45:32:97:6a:59:cc:ff:cf:e5:eb:
40:b6:91:58:de:8d:24:9b:f6:eb:4c:10:e1:ec:7f:01:2e:12:
7a:d3:15:6b:d3:cb:42:d0:1e:1f:b0:29:c2:8a:d7:db:57:a6:
5c:6a:b4:ea:16:17:09:15:89:ea:ae:82:f7:a4:7a:5d:2a:92:
c5:98:7d:de:f7:8d:2c:04:8e:3f:b2:75:58:36:d3:bf:f9:c3:
50:4f:bd:3e:ce:6d:5a:89:48:ec:4a:39:f0:46:be:a5:4a:cf:
6d:c4:6e:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:12 2024 by rpki-client on console-fra.rpki-client.org