Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/AFWK-7QmLmOUeuOd-MsieYbEN1M.roa
File: AFWK-7QmLmOUeuOd-MsieYbEN1M.roa (raw, json)
Hash identifier: enaRg+ITFHawnt2o70fSuiF/1sijSqqfNhqwAAtJAdc=
Subject key identifier: 00:55:8A:FB:B4:26:2E:63:94:7A:E3:9D:F8:CB:22:79:86:C4:37:53
Certificate issuer: /CN=6ba26b56cee97f6020941bb17c6a7c6cea0f814a
Certificate serial: 037A2102
Authority key identifier: 6B:A2:6B:56:CE:E9:7F:60:20:94:1B:B1:7C:6A:7C:6C:EA:0F:81:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6JrVs7pf2AglBuxfGp8bOoPgUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/AFWK-7QmLmOUeuOd-MsieYbEN1M.roa
Signing time: Sat 01 Jan 2022 11:54:47 +0000
ROA not before: Sat 01 Jan 2022 11:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62068
IP address blocks: 176.105.255.0/24 maxlen: 24
2a0d:c740:2c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58335490 (0x37a2102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba26b56cee97f6020941bb17c6a7c6cea0f814a
Validity
Not Before: Jan 1 11:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00558afbb4262e63947ae39df8cb227986c43753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:37:32:85:15:78:cb:26:41:3a:74:ea:7c:e7:
b2:f1:e1:4d:94:e0:92:24:8a:07:92:ef:5a:17:5a:
29:44:fb:9f:37:ea:66:fa:7c:dc:a9:75:72:e0:a4:
f7:ae:0f:6c:e9:4b:b9:2c:53:28:3e:86:98:0a:f8:
cf:7b:de:98:8d:f3:fc:b6:6f:94:e8:78:62:2a:e8:
4a:8a:6a:27:d5:33:1e:42:6f:59:72:64:50:96:f2:
85:6f:40:5f:40:11:88:3e:59:c0:da:70:9e:f1:70:
e4:dc:b6:ac:9f:b1:fc:cd:77:28:46:e2:30:4d:da:
19:a4:0a:5e:98:3f:99:2b:b3:33:f5:6a:3d:ac:f6:
89:3a:a6:47:ea:32:cb:93:e6:ff:a9:7e:4f:97:a2:
f8:7a:c7:9a:f5:41:1e:f4:cb:84:14:fa:8b:d7:90:
be:d1:35:71:29:70:0d:e8:eb:d2:59:9a:16:aa:91:
45:8b:cd:bd:34:81:e7:ea:6e:ac:d1:35:8e:80:37:
a4:d2:b7:d4:0d:88:97:13:f0:87:2e:d0:c3:04:34:
e9:b3:b1:3b:04:7d:68:d5:bf:84:b6:5e:7f:54:d0:
bf:53:28:25:e3:73:8e:b9:7d:10:c3:e1:1d:a0:ba:
98:d1:71:aa:b7:dd:3a:54:98:0d:cf:fe:74:1d:e3:
4f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:55:8A:FB:B4:26:2E:63:94:7A:E3:9D:F8:CB:22:79:86:C4:37:53
X509v3 Authority Key Identifier:
keyid:6B:A2:6B:56:CE:E9:7F:60:20:94:1B:B1:7C:6A:7C:6C:EA:0F:81:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6JrVs7pf2AglBuxfGp8bOoPgUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/AFWK-7QmLmOUeuOd-MsieYbEN1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/a6JrVs7pf2AglBuxfGp8bOoPgUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.255.0/24
IPv6:
2a0d:c740:2c::/48
Signature Algorithm: sha256WithRSAEncryption
cf:78:26:dd:a7:82:76:b1:83:50:b2:1a:2e:60:94:42:70:89:
34:b0:a9:5a:54:a8:78:81:d9:47:ee:40:92:6e:81:85:55:2b:
4b:1d:03:05:a3:1a:c8:60:3e:40:1f:a9:cb:c8:f0:66:a9:0c:
fe:88:b2:12:b6:cb:7f:52:87:3e:c7:39:67:dc:8d:c0:1b:ce:
89:a0:b5:5f:17:a4:f5:ea:f5:ad:ca:b9:0e:77:01:53:9f:ef:
a3:bf:16:b9:55:38:e8:94:92:1d:95:52:8e:68:ae:ac:ef:0a:
50:2d:d7:b0:4a:31:99:7f:03:ca:f6:3d:3d:3a:6f:32:79:4c:
5f:01:4c:91:ae:1c:09:8c:f8:53:2d:9e:5d:20:f6:27:c9:46:
e1:96:0c:d4:c3:06:cb:c1:fa:b5:12:68:c9:cb:72:5e:d5:d8:
d7:ce:fc:09:a5:97:99:2c:ee:0b:fc:f2:3e:13:f2:df:e3:84:
d8:38:3f:d4:0f:26:dc:9f:0a:7c:6e:9e:89:ab:a7:74:97:0a:
be:61:f8:41:c4:57:db:09:f4:7c:87:37:a9:53:0b:dd:5d:83:
9f:4e:6b:41:5e:8d:58:47:0a:0d:99:70:31:39:40:bc:ca:2f:
a2:7f:5c:b7:79:c2:26:5c:ae:f6:18:d8:93:69:98:67:55:b0:
a8:2e:bc:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:07 2024 by rpki-client on console-fra.rpki-client.org