Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/4OOPD78wYk6Wd3QLEUQ4QuhEc1w.roa
File: 4OOPD78wYk6Wd3QLEUQ4QuhEc1w.roa (raw, json)
Hash identifier: VBIfUDgJCgDEAy4pw0YL2R3piXQ0JI9pZGIfKHko1OI=
Subject key identifier: E0:E3:8F:0F:BF:30:62:4E:96:77:74:0B:11:44:38:42:E8:44:73:5C
Certificate issuer: /CN=adce3c2aafc7783cce8234551f3e9661d27eefbc
Certificate serial: 0162DE96
Authority key identifier: AD:CE:3C:2A:AF:C7:78:3C:CE:82:34:55:1F:3E:96:61:D2:7E:EF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rc48Kq_HeDzOgjRVHz6WYdJ-77w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/4OOPD78wYk6Wd3QLEUQ4QuhEc1w.roa
Signing time: Sat 01 Jan 2022 07:03:41 +0000
ROA not before: Sat 01 Jan 2022 07:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12779
IP address blocks: 176.110.111.0/24 maxlen: 24
2a10:e140::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23256726 (0x162de96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adce3c2aafc7783cce8234551f3e9661d27eefbc
Validity
Not Before: Jan 1 07:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0e38f0fbf30624e9677740b11443842e844735c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:aa:cd:b9:8a:8a:ce:05:45:c8:b8:ee:8a:d8:
bc:33:1d:77:e0:90:a3:e3:8b:a1:93:db:f3:4c:7e:
c7:80:f0:30:ee:38:3c:de:ce:92:81:40:3c:2e:d5:
7a:4b:ff:2a:54:8a:1e:56:5c:ff:d6:4a:1b:c1:cd:
1a:c5:a4:a7:8e:bb:3d:84:76:25:a2:20:28:ee:51:
26:55:6b:2a:a9:e4:2a:16:e7:ef:67:e2:ad:0c:43:
75:bd:35:ff:18:b8:70:49:d1:c3:68:13:a6:e0:71:
16:09:14:99:ea:f9:a3:0d:84:37:59:a2:73:2b:a8:
e8:76:7c:9d:7a:1a:8f:a7:c4:13:a7:05:47:fd:19:
ee:ac:2a:a1:d3:fa:9c:5c:50:dd:38:af:59:e8:94:
cd:93:4b:07:18:31:21:6e:6d:b9:7d:1c:26:df:da:
d4:a7:fd:ae:7f:ed:3b:e3:23:74:84:d1:c4:f9:e6:
35:ad:f9:45:e4:95:60:52:76:a1:5f:76:68:e3:90:
a4:2f:5d:ee:db:c9:71:75:0f:f6:36:63:22:e4:8d:
3f:5f:f1:4c:54:cc:56:e1:82:9c:62:9d:b5:e7:c9:
bd:fd:52:1e:fe:6e:2f:33:b0:58:7a:1d:a9:a9:5e:
50:cc:bc:49:d7:27:66:0f:6e:7c:7a:b2:61:cf:a6:
1b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E3:8F:0F:BF:30:62:4E:96:77:74:0B:11:44:38:42:E8:44:73:5C
X509v3 Authority Key Identifier:
keyid:AD:CE:3C:2A:AF:C7:78:3C:CE:82:34:55:1F:3E:96:61:D2:7E:EF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rc48Kq_HeDzOgjRVHz6WYdJ-77w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/4OOPD78wYk6Wd3QLEUQ4QuhEc1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/rc48Kq_HeDzOgjRVHz6WYdJ-77w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.110.111.0/24
IPv6:
2a10:e140::/32
Signature Algorithm: sha256WithRSAEncryption
76:91:b9:4b:bf:76:79:60:5e:6d:63:3f:46:0a:4f:cc:56:a3:
18:42:8e:4a:a5:3f:e8:3d:6e:b9:3e:d4:73:01:83:46:7d:7e:
db:0c:b3:49:c1:be:d0:63:e4:99:50:da:e7:7f:28:96:9a:90:
ef:6f:85:60:84:5f:8a:3b:5c:41:40:be:f5:5a:f7:7f:55:99:
ed:43:84:2b:72:79:c5:54:48:33:8c:80:2e:7a:b9:81:34:a8:
bd:a2:15:ea:29:5e:ff:ea:1e:6b:07:a9:69:6c:3e:b3:db:15:
e7:5e:63:5c:19:97:cb:53:30:c4:ff:92:4c:02:ee:58:9a:88:
6b:87:85:b9:0c:e3:a3:7f:c0:e1:74:55:af:29:f1:48:bf:16:
8a:65:9a:4a:49:97:bb:f3:7c:74:d3:8b:55:e6:e2:87:d9:c4:
42:d2:f8:9d:65:e6:24:d8:d9:b7:10:27:89:78:30:5d:12:26:
d1:fb:ce:cb:64:2f:f8:0b:7c:6d:71:96:42:77:df:a2:b9:03:
38:f3:f4:ea:cc:35:a5:6f:a2:bd:db:2c:a5:fc:68:18:58:bd:
e8:5f:19:fa:2d:43:9b:5e:e4:65:08:76:09:36:15:a7:e0:e9:
54:ad:e0:df:52:77:41:a3:77:8c:a7:cb:d7:b5:77:36:06:3d:
d4:0c:1f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:01 2023 by rpki-client on console.sobornost.net