Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/26c7ff-998e-4131-a747-3c43c3d35ef3/1/4068Xii-XN6uEnHVstbiwvnbTV8.roa
File: 4068Xii-XN6uEnHVstbiwvnbTV8.roa (raw, json)
Hash identifier: hhbpoYo8y0ryxoU48K6r0JzXZZNIGo1liZFJ192rWXA=
Subject key identifier: E3:4E:BC:5E:28:BE:5C:DE:AE:12:71:D5:B2:D6:E2:C2:F9:DB:4D:5F
Certificate issuer: /CN=b48f063d29e910f033becb656e8b9901f69ec974
Certificate serial: 9651FD
Authority key identifier: B4:8F:06:3D:29:E9:10:F0:33:BE:CB:65:6E:8B:99:01:F6:9E:C9:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tI8GPSnpEPAzvstlbouZAfaeyXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/26c7ff-998e-4131-a747-3c43c3d35ef3/1/4068Xii-XN6uEnHVstbiwvnbTV8.roa
Signing time: Sat 01 Jan 2022 01:51:05 +0000
ROA not before: Sat 01 Jan 2022 01:51:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39120
IP address blocks: 176.126.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9851389 (0x9651fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48f063d29e910f033becb656e8b9901f69ec974
Validity
Not Before: Jan 1 01:51:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e34ebc5e28be5cdeae1271d5b2d6e2c2f9db4d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:67:7f:72:a5:d9:be:f7:9a:5f:9e:bd:f2:fc:
7a:e6:91:0c:d3:06:9e:8e:cd:10:83:fa:04:af:1d:
67:45:fd:ba:3d:5e:64:b8:bc:74:53:fe:21:48:e9:
fb:96:7a:36:5d:30:fd:71:0f:ff:50:0b:65:df:9c:
23:d5:22:c6:b8:83:3d:08:08:f9:4d:d4:b9:9e:8d:
49:06:b7:05:7e:cf:a0:df:1e:40:44:53:6e:7b:9c:
51:c1:17:0a:fd:93:e8:9b:8a:59:f3:b2:ed:74:f9:
9d:cd:85:08:66:43:03:a7:23:50:d1:42:ea:2f:96:
cf:d0:ce:9e:22:21:0b:da:77:d0:51:c1:50:e2:6c:
35:e8:1b:c8:19:df:7d:ba:ba:1c:10:f6:35:74:68:
ad:56:14:80:14:3f:a3:1b:ec:8d:ae:30:7b:a2:49:
eb:7a:3f:bd:8d:8c:17:66:f4:73:97:b5:c5:51:93:
91:d0:0b:de:1c:bd:ce:af:5f:39:1f:98:32:c3:21:
d0:eb:a8:d8:a6:7b:3a:15:8f:d6:4a:86:cc:f0:4f:
02:de:4b:47:cc:0b:c1:38:c8:3e:bf:57:d2:1e:9a:
16:43:d7:00:e8:c7:c5:c8:da:98:6d:17:97:76:16:
16:5f:82:5e:8e:e1:90:14:9a:9d:f2:7e:a8:df:ce:
97:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4E:BC:5E:28:BE:5C:DE:AE:12:71:D5:B2:D6:E2:C2:F9:DB:4D:5F
X509v3 Authority Key Identifier:
keyid:B4:8F:06:3D:29:E9:10:F0:33:BE:CB:65:6E:8B:99:01:F6:9E:C9:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tI8GPSnpEPAzvstlbouZAfaeyXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/26c7ff-998e-4131-a747-3c43c3d35ef3/1/4068Xii-XN6uEnHVstbiwvnbTV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/26c7ff-998e-4131-a747-3c43c3d35ef3/1/tI8GPSnpEPAzvstlbouZAfaeyXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.107.0/24
Signature Algorithm: sha256WithRSAEncryption
97:8b:d1:75:88:c7:e5:73:99:f8:41:42:fa:e1:6e:40:7d:b3:
b7:e4:ad:fa:e0:74:03:9d:2f:23:09:f3:c1:62:cb:34:7a:d8:
dc:bc:a6:db:96:69:d3:25:a9:e1:26:84:b4:6d:67:e3:86:44:
a1:df:9a:a3:eb:38:70:93:83:73:96:83:16:f2:22:c2:89:98:
b5:28:7f:e3:ee:61:b1:aa:1f:09:fb:43:5c:86:69:4a:9f:03:
a4:3c:8f:d0:e0:76:bb:13:bf:c0:f9:44:da:27:ee:c5:5e:50:
c4:55:e6:de:c4:3c:16:30:e4:70:3c:dc:23:0a:27:67:10:25:
7d:02:88:b8:9b:bd:b8:da:b3:a8:c8:61:db:df:12:10:4d:cb:
79:9f:8a:7f:50:3e:e8:4e:dc:43:d4:d4:56:c4:b4:df:64:4e:
47:e4:60:20:cd:42:ef:18:c1:d3:e0:76:64:89:9a:56:65:d0:
79:cc:63:b1:3e:c3:b8:2d:6d:3a:4d:fb:73:3d:ae:87:18:96:
d6:b8:92:e7:cf:f4:07:79:b0:7e:65:16:5b:15:57:a5:b0:df:
a6:78:6c:a6:03:73:f2:51:ef:1c:8d:81:c5:e0:db:6c:8f:9c:
0f:7f:d0:28:15:0c:f5:06:e0:5a:46:44:67:85:e0:5a:af:0b:
3d:c3:ec:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:20 2023 by rpki-client on console.sobornost.net