Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/eYtVXWz2ZjigHGQyBtkbdXw63H8.roa
File: eYtVXWz2ZjigHGQyBtkbdXw63H8.roa (raw, json)
Hash identifier: hcma8CIJpvgFpVUu2YTz0d7WEBqcYqF8YnkGOXoF8XY=
Subject key identifier: 79:8B:55:5D:6C:F6:66:38:A0:1C:64:32:06:D9:1B:75:7C:3A:DC:7F
Certificate issuer: /CN=836528e152b6dcba1571241ac55be5bce01118b7
Certificate serial: 238FBF39
Authority key identifier: 83:65:28:E1:52:B6:DC:BA:15:71:24:1A:C5:5B:E5:BC:E0:11:18:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2Uo4VK23LoVcSQaxVvlvOARGLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/eYtVXWz2ZjigHGQyBtkbdXw63H8.roa
Signing time: Sat 01 Jan 2022 16:10:42 +0000
ROA not before: Sat 01 Jan 2022 16:10:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 178.132.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 596623161 (0x238fbf39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=836528e152b6dcba1571241ac55be5bce01118b7
Validity
Not Before: Jan 1 16:10:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=798b555d6cf66638a01c643206d91b757c3adc7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:78:71:f0:2b:26:c1:08:f0:a4:50:b6:3c:9a:
93:b7:d6:3f:05:0a:6c:63:cc:36:ad:d3:cf:f5:77:
99:56:b6:2c:d4:e4:01:bb:48:c8:ea:7b:3d:f0:de:
6d:66:cc:19:8c:97:51:05:83:e0:d3:6e:01:7d:75:
5a:df:c4:f9:71:76:16:28:05:a9:35:1a:3d:54:65:
42:65:86:7a:b1:b4:ef:63:b1:58:60:2e:9b:a1:c5:
ec:d7:cf:a8:74:4a:a1:bb:f2:23:3a:a8:b9:b7:01:
fc:21:50:26:50:d5:54:f0:84:d0:02:0a:0e:4c:a5:
ad:42:54:18:f5:4b:42:66:60:7f:df:8c:89:ff:f0:
f4:ae:b9:82:f6:be:ea:8d:61:33:27:c9:c6:2f:b6:
e9:53:0f:2a:42:7d:c3:ea:3c:1e:ce:69:16:47:c2:
96:1b:a3:af:20:5f:4a:0d:03:de:a1:bd:e0:a2:aa:
4c:fc:9a:ef:0f:49:ca:71:8d:ee:79:ae:9f:89:62:
8c:68:33:18:f0:45:40:71:74:ec:21:96:ca:31:71:
04:d3:17:92:ee:3b:cc:c5:c4:bb:ab:28:b6:0f:2f:
d1:2f:17:2d:08:eb:38:84:b6:ec:4c:2c:aa:8b:0e:
93:c5:73:97:c8:12:60:6f:7c:63:ee:59:a2:42:92:
e6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:8B:55:5D:6C:F6:66:38:A0:1C:64:32:06:D9:1B:75:7C:3A:DC:7F
X509v3 Authority Key Identifier:
keyid:83:65:28:E1:52:B6:DC:BA:15:71:24:1A:C5:5B:E5:BC:E0:11:18:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2Uo4VK23LoVcSQaxVvlvOARGLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/eYtVXWz2ZjigHGQyBtkbdXw63H8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/g2Uo4VK23LoVcSQaxVvlvOARGLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.132.56.0/24
Signature Algorithm: sha256WithRSAEncryption
57:49:d2:05:45:fa:00:80:36:1f:3b:1d:3f:ba:42:c7:83:5e:
10:94:5b:19:19:eb:d4:b9:12:10:22:3d:91:91:6a:c0:0a:e9:
bc:74:79:90:21:26:04:2d:41:f3:55:cb:b5:76:06:9a:0a:84:
2c:af:1a:0a:aa:95:31:ee:01:80:d7:8e:1b:74:39:9f:5c:ba:
6e:9d:6d:d3:8d:92:42:50:01:36:ed:45:ab:19:a6:d6:44:9c:
9d:d9:43:85:92:d1:03:6c:8c:76:12:37:f3:1e:8c:c4:65:6b:
62:90:e0:f3:e4:2f:f0:f8:51:f2:db:78:b0:75:d5:92:e4:3a:
33:e4:53:02:75:a0:03:b8:e3:d0:79:72:3d:9a:06:91:85:7f:
4f:a4:3d:84:6e:2e:46:02:0c:be:63:5d:33:ef:49:52:00:c4:
c4:12:2a:d4:ce:bc:b3:14:ec:93:05:ab:a1:27:d0:5f:27:98:
c5:b9:31:a1:5a:1c:11:23:07:5c:cc:a8:4f:bb:2d:ba:cf:da:
3b:a9:19:2e:02:4f:87:5b:18:76:e9:1d:d0:92:2f:6d:f2:02:
7d:de:cc:91:29:2c:33:9d:1f:be:3d:a9:f9:9c:93:2f:26:df:
af:dd:b9:98:3a:1c:6f:5c:32:2d:fd:16:81:01:0d:26:4b:37:
19:17:e1:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:29 2024 by rpki-client on console-fra.rpki-client.org