Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/ey4hT3V2CES5FS2L-uUH1pp_af0.roa
File: ey4hT3V2CES5FS2L-uUH1pp_af0.roa (raw, json)
Hash identifier: uW7UIGmklGQ+lbSc3JH00vRsWac1XQMrukwhLySaoVU=
Subject key identifier: 7B:2E:21:4F:75:76:08:44:B9:15:2D:8B:FA:E5:07:D6:9A:7F:69:FD
Certificate issuer: /CN=8d8740799c91c2630a8092178db824f3a889a75f
Certificate serial: 17A7C682
Authority key identifier: 8D:87:40:79:9C:91:C2:63:0A:80:92:17:8D:B8:24:F3:A8:89:A7:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYdAeZyRwmMKgJIXjbgk86iJp18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/ey4hT3V2CES5FS2L-uUH1pp_af0.roa
Signing time: Sat 01 Jan 2022 15:55:49 +0000
ROA not before: Sat 01 Jan 2022 15:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8649
IP address blocks: 176.96.96.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396871298 (0x17a7c682)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d8740799c91c2630a8092178db824f3a889a75f
Validity
Not Before: Jan 1 15:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b2e214f75760844b9152d8bfae507d69a7f69fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:05:cb:a4:9b:10:8c:7b:c4:db:a7:ef:4f:b9:
db:b4:cb:8f:d2:b1:71:45:6c:59:9f:02:54:75:cb:
23:18:4f:8e:0a:0b:f4:5d:68:a8:98:8c:ac:e5:39:
91:1d:a8:a0:0a:cb:3d:3b:1f:48:10:17:37:92:cf:
eb:36:15:d0:57:cc:c2:11:46:bd:c7:7f:35:c0:0b:
ad:81:3f:24:76:1f:5c:ea:84:f9:da:c8:3a:62:e6:
58:37:39:76:63:15:b4:89:f5:d6:c7:75:94:5c:99:
9b:ad:bc:05:ec:c4:55:31:a8:17:50:a0:e1:c6:03:
90:d5:b8:73:f7:72:1e:15:43:45:4d:fb:12:71:04:
05:ab:fd:62:af:6e:53:1d:b9:7d:34:48:4c:3b:23:
db:43:a1:2a:bb:35:af:a9:20:40:c8:1e:4f:74:06:
3c:18:57:ce:ef:fe:47:b0:0d:3d:da:9f:4c:79:9e:
b0:0c:5b:95:16:bd:26:af:16:d2:5f:39:8d:1d:b6:
34:fb:e2:7f:ab:51:25:54:65:e5:21:7d:12:e8:23:
19:11:0d:89:92:49:cc:98:04:ee:db:ee:58:f0:92:
38:f8:5f:e4:d3:ae:d4:78:31:5b:76:f7:7e:ea:cc:
97:78:32:8e:ba:36:e7:9f:51:4f:4c:d8:9a:e3:ff:
46:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:2E:21:4F:75:76:08:44:B9:15:2D:8B:FA:E5:07:D6:9A:7F:69:FD
X509v3 Authority Key Identifier:
keyid:8D:87:40:79:9C:91:C2:63:0A:80:92:17:8D:B8:24:F3:A8:89:A7:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYdAeZyRwmMKgJIXjbgk86iJp18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/ey4hT3V2CES5FS2L-uUH1pp_af0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/jYdAeZyRwmMKgJIXjbgk86iJp18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.96.96.0/19
Signature Algorithm: sha256WithRSAEncryption
37:12:10:e9:62:87:c8:a1:3e:ed:7e:f3:f0:bd:27:d7:a2:47:
01:10:c0:36:ce:bd:6f:63:41:64:fa:f4:c6:3b:15:c7:b2:51:
1b:d5:91:20:b1:5e:93:46:1d:6b:71:f6:be:72:09:2b:d5:d1:
d6:cd:e8:ac:f6:00:f3:ab:0f:1e:a5:c6:d7:06:12:24:87:37:
96:ee:e0:c6:08:25:a6:04:10:28:f5:f3:26:34:c2:42:28:60:
89:a9:7b:5f:6d:66:04:35:34:bb:24:96:b9:c2:9e:ab:dc:ed:
89:c3:3d:51:f1:26:e3:50:df:e7:dd:9a:81:cc:e4:bc:69:96:
66:21:e8:5e:02:3a:50:fa:37:f5:f3:61:70:d9:bd:f4:88:de:
f2:bd:0f:e1:f7:7b:35:b7:32:23:ee:41:29:5f:33:05:d1:3f:
22:46:3a:37:65:91:3b:dd:97:8e:67:33:23:15:f3:b3:05:5c:
e6:8d:1b:a2:b4:3e:dc:f1:54:5c:c3:73:78:5d:c2:15:d0:e1:
6c:65:cd:21:57:d9:ea:62:d1:aa:7f:f1:3b:68:31:66:31:e7:
51:a6:6d:f1:e0:01:58:46:ff:69:80:2e:10:05:e6:5d:2f:79:
94:21:a8:d0:02:41:6f:08:c7:32:f2:1d:a4:fb:ca:04:80:d6:
e3:71:3f:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:31 2023 by rpki-client on console.sobornost.net