Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/087gky-wC_99F63luigYJ5ptBOM.roa
File: 087gky-wC_99F63luigYJ5ptBOM.roa (raw, json)
Hash identifier: 96E/rUi2aHpSRm8lMyBCrNGqsHiG9CjS47VHwAGRYQI=
Subject key identifier: D3:CE:E0:93:2F:B0:0B:FF:7D:17:AD:E5:BA:28:18:27:9A:6D:04:E3
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 01AE2F1E
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/087gky-wC_99F63luigYJ5ptBOM.roa
Signing time: Thu 05 May 2022 16:29:40 +0000
ROA not before: Thu 05 May 2022 16:29:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 178.23.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28192542 (0x1ae2f1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: May 5 16:29:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3cee0932fb00bff7d17ade5ba2818279a6d04e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f6:c1:14:a8:4d:ab:b0:61:c0:86:fe:85:2c:
3e:b3:cf:a7:64:9f:97:67:78:a8:ab:6b:0d:4f:3f:
39:03:40:a4:8f:b9:d5:f2:8d:2a:c3:10:f5:ee:78:
b3:0a:88:66:41:5c:a6:00:9b:d6:b4:74:b7:68:0f:
94:91:d9:b5:85:0b:49:d9:62:e3:9e:5e:29:23:97:
f5:2a:45:dd:14:2f:78:94:d0:c3:6b:b5:78:30:cd:
90:96:15:3e:a7:df:2f:05:82:e2:64:a8:05:a6:d0:
fe:3b:ec:ed:c3:42:b5:c3:0e:df:b9:71:fd:1c:2f:
12:0e:fc:a5:66:26:09:6f:66:1e:f0:ba:57:74:13:
4c:19:9a:ed:4d:33:12:56:50:94:fe:4d:6b:18:78:
ac:6a:eb:1b:8a:91:51:83:dc:92:98:61:cb:09:5d:
ef:e7:aa:87:18:8f:1f:aa:7d:43:a5:1b:87:34:88:
48:1e:06:bc:4f:15:fc:dd:3d:0b:15:8f:41:62:00:
8d:7a:d4:5a:7b:bb:45:91:00:21:9c:fb:eb:54:46:
76:16:61:ef:28:4c:f3:93:a2:72:ee:58:7f:fe:ef:
8b:7d:e2:3f:8a:01:a1:0a:40:92:c4:a5:34:22:b9:
ff:fc:2b:5d:74:17:f8:a7:12:ff:d5:b7:d5:48:26:
e1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:CE:E0:93:2F:B0:0B:FF:7D:17:AD:E5:BA:28:18:27:9A:6D:04:E3
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/087gky-wC_99F63luigYJ5ptBOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.23.189.0/24
Signature Algorithm: sha256WithRSAEncryption
77:1b:1d:47:89:a3:32:51:ef:29:b1:c8:ba:2b:5d:7b:14:fb:
30:41:0f:ba:bf:b3:50:84:8b:70:83:e5:3d:bb:fb:e1:7c:58:
3a:f5:52:d3:4f:19:00:43:9a:0b:11:36:4f:a4:f1:7f:aa:f9:
35:54:85:1a:57:2e:df:3c:c2:07:a1:bc:a2:5e:57:64:ca:5a:
88:1e:59:d7:60:c4:11:ba:61:e4:78:79:53:ec:ba:3b:68:19:
f0:3c:f2:cc:23:a8:7d:eb:31:82:27:50:ff:68:25:b1:cc:6a:
bd:f0:5d:7e:46:83:f2:a9:49:c9:5a:4f:2e:15:65:4b:ba:78:
53:ce:af:60:e6:76:1a:b4:0a:19:38:57:6c:d9:79:6f:88:8d:
47:fb:11:91:a4:16:0c:04:90:a0:8d:64:87:68:42:13:ec:2d:
20:61:b2:42:86:a1:1d:45:d2:a3:fc:5b:75:e0:10:58:a2:9b:
13:29:d8:50:0a:d4:b2:ee:46:e9:63:7c:02:1a:b0:49:c8:29:
ad:d6:18:10:6f:65:b8:b8:fc:f9:13:51:40:6e:5e:3c:8e:e5:
38:71:43:e2:3f:37:84:19:b6:41:09:22:01:ea:c3:dc:cc:6c:
9b:7b:cd:80:53:b4:da:8c:9c:b1:2f:16:80:d0:30:3c:c6:7c:
7e:6b:cd:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:01 2024 by rpki-client on console-ams.rpki-client.org