Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/f_iSHavazmdGuSBfUlgDUJPE7f4.roa
File: f_iSHavazmdGuSBfUlgDUJPE7f4.roa (raw, json)
Hash identifier: blBHGHxp4UQpFm6IHzRF7C0XS9+xxGbhodmlwwBevuM=
Subject key identifier: 7F:F8:92:1D:AB:DA:CE:67:46:B9:20:5F:52:58:03:50:93:C4:ED:FE
Certificate issuer: /CN=23daf57a212bb7f320a2246f97959575d0e68ce3
Certificate serial: 9D39FB
Authority key identifier: 23:DA:F5:7A:21:2B:B7:F3:20:A2:24:6F:97:95:95:75:D0:E6:8C:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9r1eiErt_MgoiRvl5WVddDmjOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/f_iSHavazmdGuSBfUlgDUJPE7f4.roa
Signing time: Sat 01 Jan 2022 01:00:56 +0000
ROA not before: Sat 01 Jan 2022 01:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 176.116.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10303995 (0x9d39fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23daf57a212bb7f320a2246f97959575d0e68ce3
Validity
Not Before: Jan 1 01:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ff8921dabdace6746b9205f5258035093c4edfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c2:eb:d1:ca:07:e7:c8:4e:43:7e:5c:96:d3:
19:be:7f:ee:44:02:8d:db:f3:db:69:e8:72:cc:6d:
e6:59:30:c8:cf:a8:cf:7b:ce:fb:82:f7:ec:85:01:
28:9c:c3:4d:e9:18:20:8f:54:fc:b4:56:73:88:7b:
26:14:df:a4:de:a6:2d:db:58:9b:3d:4a:27:d3:42:
c7:e8:f7:a7:a5:d1:77:53:22:88:95:69:74:18:69:
e5:d5:1d:38:02:21:54:ce:a9:4d:05:7f:d6:00:98:
28:00:d5:b1:04:22:84:59:bc:30:3d:77:90:4c:5c:
10:e8:b4:98:1c:71:27:90:91:e6:fa:c1:5a:44:a2:
be:15:51:3b:eb:f6:e3:a3:ae:4e:5f:ec:8e:eb:ec:
30:74:f5:2e:48:67:c6:f4:ff:2a:27:bf:30:2e:6a:
d6:41:5e:2e:10:73:03:04:7f:9c:93:fa:8b:5b:2a:
a7:04:35:f2:e7:4e:ed:7a:e5:60:82:f3:f3:d0:b8:
3d:b2:86:31:02:be:98:34:71:03:93:9b:39:1f:98:
e2:55:99:3d:a0:24:56:d9:3b:fa:46:93:49:9b:c3:
1e:e7:4f:c4:88:05:6c:40:97:c2:58:c9:58:19:3e:
03:54:72:98:00:d7:93:2b:ed:6b:d1:27:ed:b1:96:
23:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F8:92:1D:AB:DA:CE:67:46:B9:20:5F:52:58:03:50:93:C4:ED:FE
X509v3 Authority Key Identifier:
keyid:23:DA:F5:7A:21:2B:B7:F3:20:A2:24:6F:97:95:95:75:D0:E6:8C:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9r1eiErt_MgoiRvl5WVddDmjOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/f_iSHavazmdGuSBfUlgDUJPE7f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f7c4f1-341a-445e-8e33-50cb88276ae6/1/I9r1eiErt_MgoiRvl5WVddDmjOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.31.0/24
Signature Algorithm: sha256WithRSAEncryption
46:b1:f4:95:40:29:24:ce:86:fc:5b:d3:ff:cb:4e:f3:75:d1:
be:bb:90:0b:14:b3:b4:38:26:a0:de:86:22:ce:15:4a:58:c8:
4a:da:7b:be:aa:e4:28:70:f8:31:c2:87:22:b8:b0:58:3a:ff:
c6:f2:d8:06:59:92:4a:8c:bf:1c:ba:6a:cf:ed:31:a1:1b:78:
67:3d:8d:c3:99:90:66:d7:61:a2:b0:21:f7:d9:2c:e3:50:45:
bf:f8:d1:f0:41:92:d9:76:b6:b3:a1:56:c4:e8:18:c1:29:64:
10:65:bc:f1:2e:48:22:b2:42:df:b2:b5:f2:c0:ee:fd:ed:5a:
2c:d9:3f:82:90:63:4a:7c:06:16:ee:ed:c7:e1:33:b6:31:ce:
18:9b:2f:54:9a:af:b6:4c:9e:20:5c:a8:54:aa:bf:b2:7a:44:
54:4a:2b:10:0f:53:ec:72:8e:9f:9e:e3:b6:38:e8:01:77:d9:
f1:f7:31:f8:f1:f8:13:ed:d6:53:3a:04:5f:32:60:00:0e:f2:
e8:ce:82:e7:3a:ed:8b:ed:64:6b:17:e1:e3:07:cc:45:d0:02:
b9:58:3c:fe:f0:12:bb:7f:b2:03:89:4c:4a:f1:d0:ee:54:8f:
63:06:de:ad:f6:c0:ac:57:0f:2c:24:2a:4e:fe:37:73:d7:e4:
1c:94:fe:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:33 2023 by rpki-client on console-ams.rpki-client.org