Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/44h8_HeaWsTp32QCmiv9qSyhtCk.roa
File: 44h8_HeaWsTp32QCmiv9qSyhtCk.roa (raw, json)
Hash identifier: KMKsI++SZxthWY8bJEP+gknGfstmOjlYTDH+woyaZjY=
Subject key identifier: E3:88:7C:FC:77:9A:5A:C4:E9:DF:64:02:9A:2B:FD:A9:2C:A1:B4:29
Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Certificate serial: 018562C6ED209913FA66CC02B378E2B7B946
Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/44h8_HeaWsTp32QCmiv9qSyhtCk.roa
Signing time: Fri 30 Dec 2022 11:24:42 +0000
ROA not before: Fri 30 Dec 2022 11:24:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49549
IP address blocks: 178.250.189.0/24 maxlen: 24
193.0.230.0/24 maxlen: 24
2a0f:cdc2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:c6:ed:20:99:13:fa:66:cc:02:b3:78:e2:b7:b9:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692
Validity
Not Before: Dec 30 11:24:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3887cfc779a5ac4e9df64029a2bfda92ca1b429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:58:c4:7b:6b:e1:fc:61:e6:19:8c:de:ab:5f:
61:5b:81:76:40:25:53:f9:11:49:d3:8d:84:5f:90:
71:32:17:11:b2:80:68:8e:5e:82:57:ff:d9:a3:12:
66:87:f0:57:5d:80:15:67:e4:b3:7e:17:1a:4b:3e:
75:d1:45:5f:7d:17:91:19:08:db:4c:dc:2c:bd:d4:
2b:23:ce:af:97:cf:24:d7:c6:f9:d7:b2:10:22:c8:
38:d9:db:0e:8c:f0:25:84:b4:7f:ae:b2:13:30:cf:
eb:fa:43:cf:9f:2e:2c:ff:ac:f2:24:44:18:0b:8a:
e2:f2:bb:e8:dd:aa:fd:94:29:a4:81:1c:37:1a:82:
2a:3c:8c:2d:03:6c:c3:d8:28:96:97:64:14:61:80:
f5:a9:93:b9:d6:f0:f4:41:6b:62:a9:79:ce:f6:89:
ea:9c:8e:a7:cc:23:23:90:1e:6a:b4:f6:5e:29:ba:
84:48:fe:f1:d5:75:f6:be:48:c4:b2:ce:f8:a7:77:
9d:6a:c2:9d:b4:4f:86:d1:6d:d2:4f:0e:6b:60:66:
bb:45:c0:83:b7:f8:ee:46:38:0c:11:44:f0:04:a3:
6b:12:3f:9a:e7:2e:7a:c1:31:44:51:f2:09:fa:b3:
d4:61:e4:36:74:61:d7:a3:f9:6c:dc:c9:d7:3b:bc:
ca:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:88:7C:FC:77:9A:5A:C4:E9:DF:64:02:9A:2B:FD:A9:2C:A1:B4:29
X509v3 Authority Key Identifier:
keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/44h8_HeaWsTp32QCmiv9qSyhtCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.250.189.0/24
193.0.230.0/24
IPv6:
2a0f:cdc2::/32
Signature Algorithm: sha256WithRSAEncryption
42:94:72:e8:a7:18:e8:cb:43:74:07:61:bc:66:8e:82:ee:e2:
7b:4b:37:f6:1d:74:d4:55:41:f9:da:cc:56:86:f5:d9:5a:dd:
7b:fe:7f:99:9a:f9:0f:95:cd:6d:c0:78:e5:55:df:ae:6e:3f:
70:c9:84:50:de:97:96:e3:54:0f:4a:91:4d:46:31:3c:77:76:
3a:97:bf:a8:1d:e9:40:fe:32:b1:1e:79:42:a6:7b:e5:e3:8c:
4a:f0:dc:c1:e2:22:8d:2a:70:11:a4:6c:11:b4:87:29:89:84:
1a:d4:cf:e1:a0:c3:89:e2:cd:3b:ef:f2:a5:e8:75:db:73:ad:
76:1d:d1:93:fa:cb:cd:37:e5:de:24:cb:cc:ff:ad:f5:91:d4:
02:39:35:81:99:52:98:2e:0a:7d:19:88:cc:71:0e:f2:bc:58:
9a:e6:fc:e5:3b:14:c7:06:dd:86:4d:aa:51:ed:7e:19:65:21:
6f:6e:e3:5c:82:e5:d2:d7:0b:7c:42:27:66:33:9e:ae:c2:4c:
ad:1d:71:24:cf:05:a0:ac:12:66:b8:9e:72:85:1a:fe:21:c9:
67:03:d6:10:bb:b4:c9:33:98:36:4f:ac:a5:e6:41:54:15:31:
c5:df:38:21:98:da:43:7b:08:f5:db:b1:44:9d:d1:b1:7c:db:
35:11:f6:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:33 2024 by rpki-client on console-fra.rpki-client.org