Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/Ht_KOwWXxJ6cLtQ_gLK5kPWQnek.roa
File: Ht_KOwWXxJ6cLtQ_gLK5kPWQnek.roa (raw, json)
Hash identifier: SQtWKYzOMT64enRoh1xT9o7M5FgqREpQnJjPoO8T3s4=
Subject key identifier: 1E:DF:CA:3B:05:97:C4:9E:9C:2E:D4:3F:80:B2:B9:90:F5:90:9D:E9
Certificate issuer: /CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Certificate serial: 3582C2F4
Authority key identifier: 8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/Ht_KOwWXxJ6cLtQ_gLK5kPWQnek.roa
Signing time: Sat 01 Jan 2022 06:01:13 +0000
ROA not before: Sat 01 Jan 2022 06:01:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62229
IP address blocks: 178.22.78.0/24 maxlen: 24
178.22.77.0/24 maxlen: 24
178.22.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 897762036 (0x3582c2f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Validity
Not Before: Jan 1 06:01:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1edfca3b0597c49e9c2ed43f80b2b990f5909de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:02:72:c7:21:00:7d:f7:f6:03:70:e2:86:6b:
c9:c1:27:70:c0:15:5e:15:d8:a8:c4:65:18:44:69:
a9:1e:c5:58:d8:61:b9:88:d6:d5:1f:9c:9f:03:1b:
bc:69:a0:2c:fa:28:48:c1:76:89:7e:99:6c:2f:24:
29:50:51:56:ff:96:cc:67:eb:3f:b5:9c:a4:7b:1a:
e9:8a:3d:bf:f2:3c:5c:81:7f:ac:6a:f2:12:6d:09:
30:fd:02:ef:2f:96:ba:c3:d6:1f:f1:fb:53:80:f3:
47:60:2f:92:6e:0b:75:0a:e5:1e:68:80:d9:c9:6f:
46:e7:5e:11:39:91:62:80:53:62:9f:9e:69:48:38:
c0:35:e0:3a:bc:ce:aa:91:d7:55:71:2c:c2:4e:6d:
fe:db:7b:d0:47:89:0d:e2:b9:9d:8c:8c:25:7f:25:
5d:9e:9c:47:37:16:98:9c:03:e3:20:df:5d:b7:99:
ba:a3:e7:5f:63:03:b2:74:37:09:3f:10:46:43:3f:
bf:81:69:3b:c3:12:46:30:e1:f2:60:ff:0a:06:e1:
3c:f3:ec:3a:0e:32:3a:36:5f:fc:26:1a:7c:a9:ba:
0b:0c:b7:66:c0:02:90:f9:c3:91:be:b7:99:48:5d:
50:bf:ae:34:10:a0:be:e0:1f:eb:bd:a4:7c:4b:41:
11:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DF:CA:3B:05:97:C4:9E:9C:2E:D4:3F:80:B2:B9:90:F5:90:9D:E9
X509v3 Authority Key Identifier:
keyid:8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/Ht_KOwWXxJ6cLtQ_gLK5kPWQnek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.77.0-178.22.79.255
Signature Algorithm: sha256WithRSAEncryption
c9:56:5d:b6:06:8c:a5:8c:9e:68:b4:1c:aa:22:10:81:3a:7e:
e1:1c:fd:5b:76:ef:ee:38:2a:57:2c:74:7c:d6:e1:2b:e1:af:
40:a4:16:05:80:01:32:b6:2f:ed:e5:09:fb:c9:3a:e0:2e:f1:
14:84:a7:0a:bd:ee:80:0a:de:88:76:65:16:3d:ff:0e:0d:88:
a1:f2:97:9e:39:14:41:4a:0e:e3:fc:f8:9a:48:67:d8:e4:90:
f9:2c:b0:a8:4d:ca:7c:4b:95:11:02:8f:1b:ee:3b:e5:d9:fd:
64:7d:5b:82:67:c5:47:36:9f:d5:ee:d3:6f:10:0a:4f:2a:5e:
42:69:0e:11:de:71:88:ab:14:8d:da:75:6e:fe:ce:47:89:9c:
1d:c5:5c:16:eb:72:20:6a:d8:f1:6d:e3:da:4a:88:bc:82:c8:
42:c6:86:b6:4c:26:d9:7b:7d:b6:83:a8:bc:a6:e6:50:dd:1f:
84:07:c4:9f:6a:7d:95:0e:7f:7b:8f:d6:0c:7c:c4:12:46:59:
12:2d:b1:2c:05:b3:f0:c4:93:ae:1d:49:d7:71:7e:f4:a1:c6:
b3:8b:2c:91:95:c1:38:33:f9:e0:fc:ff:1f:51:15:f9:97:8e:
26:37:d3:fb:d2:6e:b2:81:1e:a6:55:3e:20:e4:ba:20:19:0a:
f8:37:54:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:00 2024 by rpki-client on console-fra.rpki-client.org