Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/4zJHf1xKbfy1TtjhWMnjczgfl3M.roa
File: 4zJHf1xKbfy1TtjhWMnjczgfl3M.roa (raw, json)
Hash identifier: cm7M1Nob8V/BM+K+pgakQL6hvBnVRT4LAYYachBnmnM=
Subject key identifier: E3:32:47:7F:5C:4A:6D:FC:B5:4E:D8:E1:58:C9:E3:73:38:1F:97:73
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 03B4B7EE
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/4zJHf1xKbfy1TtjhWMnjczgfl3M.roa
Signing time: Tue 19 Apr 2022 03:11:44 +0000
ROA not before: Tue 19 Apr 2022 03:11:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 176.223.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62175214 (0x3b4b7ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Apr 19 03:11:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e332477f5c4a6dfcb54ed8e158c9e373381f9773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8c:90:60:ef:a3:03:d5:42:20:88:b2:65:da:
d1:a1:3c:6f:72:9f:6a:cf:f5:9b:fc:30:7a:67:77:
9d:c8:65:e4:93:cc:08:d6:81:af:96:0a:73:1f:19:
06:38:14:f8:a1:ad:5d:62:a6:26:91:11:e7:a4:01:
c4:47:b7:cb:50:af:e9:70:33:61:aa:29:c3:6a:9e:
5e:ed:19:09:bc:86:fe:38:85:58:88:80:27:8e:ea:
18:78:14:2f:eb:08:36:e5:ac:1f:58:1c:af:56:8d:
f7:65:82:6f:33:3f:30:ee:1f:11:89:c9:86:11:8b:
8d:01:09:77:f5:4c:cb:3e:da:43:b0:66:db:98:af:
b2:57:48:8c:84:6c:d3:a7:1e:0c:c4:c4:d6:56:96:
5a:99:4b:ee:da:9d:19:6f:91:db:d4:00:2f:98:5a:
10:86:6b:e9:b5:db:36:10:09:d3:3d:70:a6:8e:f4:
9d:af:ca:d5:50:2f:62:96:78:3f:82:f6:c1:6c:41:
23:15:ee:38:34:d0:87:fa:eb:7c:2f:7c:da:f0:94:
6f:95:b2:17:7d:a2:b1:67:f8:9e:8c:fe:76:4c:5d:
cb:17:88:9b:df:28:f1:0d:97:65:0c:0e:f3:5b:7d:
ec:47:a3:f4:70:67:ef:bc:97:0e:18:06:21:3e:75:
f6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:32:47:7F:5C:4A:6D:FC:B5:4E:D8:E1:58:C9:E3:73:38:1F:97:73
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/4zJHf1xKbfy1TtjhWMnjczgfl3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.223.181.0/24
Signature Algorithm: sha256WithRSAEncryption
78:32:d4:1d:17:6d:0c:cc:f5:c6:3c:48:02:79:b3:9d:4e:e9:
a1:97:5d:0e:eb:ad:08:62:03:57:f4:70:53:d3:7f:83:7f:18:
46:c3:ff:a5:7b:d5:08:0b:d7:8f:d3:82:74:3b:8d:15:98:74:
bb:37:17:30:9c:df:5a:68:a5:55:00:c3:d6:61:8c:9b:db:25:
2f:0f:73:84:92:f1:af:cd:b0:47:93:d8:6a:a5:a2:04:03:94:
7e:1c:82:5a:bf:af:99:ff:e6:73:74:03:1e:6f:93:f6:d6:4d:
50:53:f4:a1:d5:aa:dc:83:a0:01:61:d6:fb:78:9d:bf:55:4a:
78:ae:57:ca:3b:35:74:f0:34:69:97:69:42:16:d6:de:7c:c0:
1a:dd:81:c7:71:7b:3d:20:94:2a:88:9f:4e:ab:99:0d:ff:eb:
07:27:a1:59:2c:4e:93:59:4e:32:7d:99:75:04:af:32:23:2e:
90:15:6b:46:97:96:23:a2:62:01:ed:e4:c0:a9:ea:62:d5:6a:
17:00:49:71:ab:1e:12:bc:1b:03:a3:73:57:0a:02:58:81:26:
47:e3:8d:cf:e2:40:22:8c:b5:2c:df:1f:65:35:65:44:00:8a:
2b:38:8f:18:66:d7:14:cd:59:f5:a8:32:b5:5f:3a:27:1b:ac:
4d:83:6a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:55 2023 by rpki-client on console-ams.rpki-client.org