Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/57269b-0f70-46cf-bce2-c7775159fc82/1/dW18vjls7egFcveUUAdznllmTlM.roa
File: dW18vjls7egFcveUUAdznllmTlM.roa (raw, json)
Hash identifier: oeOuWuvYIBmdZH8cCq9Wf7ghbVC8yY8r6vz7BatilhI=
Subject key identifier: 75:6D:7C:BE:39:6C:ED:E8:05:72:F7:94:50:07:73:9E:59:66:4E:53
Certificate issuer: /CN=a42cf3ea3f4619add7b1f85e5dbc768cd3d1742d
Certificate serial: 08AA6404
Authority key identifier: A4:2C:F3:EA:3F:46:19:AD:D7:B1:F8:5E:5D:BC:76:8C:D3:D1:74:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCzz6j9GGa3XsfheXbx2jNPRdC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/57269b-0f70-46cf-bce2-c7775159fc82/1/dW18vjls7egFcveUUAdznllmTlM.roa
Signing time: Sat 01 Jan 2022 15:05:57 +0000
ROA not before: Sat 01 Jan 2022 15:05:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209634
IP address blocks: 147.78.184.0/22 maxlen: 22
2a09:840::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145384452 (0x8aa6404)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42cf3ea3f4619add7b1f85e5dbc768cd3d1742d
Validity
Not Before: Jan 1 15:05:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=756d7cbe396cede80572f7945007739e59664e53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d9:ab:c9:63:6d:42:d9:73:3d:c6:92:eb:f5:
5d:ba:c8:d1:bc:59:c3:9d:eb:9e:1d:96:16:e0:e1:
be:b9:90:b3:46:71:70:db:4e:bc:92:19:99:ff:4e:
59:a4:99:3d:af:f3:94:d4:6b:9f:59:16:2c:ab:65:
dd:13:5a:e5:b3:b0:1d:ad:17:3d:48:80:c2:6f:42:
5e:ea:3c:e2:60:64:e7:6c:8a:3c:ac:82:a2:10:1b:
3a:39:0f:6c:0b:bd:c2:a3:99:d4:7c:d2:18:bd:30:
72:9c:22:61:08:5c:ba:cc:d2:f1:d3:60:42:52:7b:
d0:27:14:d1:68:80:e1:cd:9c:ff:27:60:9d:1a:91:
63:fb:fc:bd:9f:94:eb:10:00:f8:5c:fd:f2:78:61:
89:6b:9f:8a:06:59:5c:a6:88:b8:7d:7f:b4:61:0e:
59:76:9f:c1:67:d3:d9:c5:7e:58:13:6d:6c:6a:64:
58:9b:7b:2f:47:c2:7e:37:0c:5e:90:8f:2b:c9:05:
dc:15:08:74:39:07:81:c6:f9:f6:86:46:d9:08:0a:
c0:f7:87:81:f4:59:5e:00:b4:83:c7:89:ce:77:87:
18:db:b0:f4:8c:b6:bc:4e:cf:10:98:9d:6a:5a:6b:
ef:51:2d:6c:01:7e:98:3c:38:98:56:de:3b:8d:a7:
61:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6D:7C:BE:39:6C:ED:E8:05:72:F7:94:50:07:73:9E:59:66:4E:53
X509v3 Authority Key Identifier:
keyid:A4:2C:F3:EA:3F:46:19:AD:D7:B1:F8:5E:5D:BC:76:8C:D3:D1:74:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCzz6j9GGa3XsfheXbx2jNPRdC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/57269b-0f70-46cf-bce2-c7775159fc82/1/dW18vjls7egFcveUUAdznllmTlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/57269b-0f70-46cf-bce2-c7775159fc82/1/pCzz6j9GGa3XsfheXbx2jNPRdC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.184.0/22
IPv6:
2a09:840::/32
Signature Algorithm: sha256WithRSAEncryption
03:dc:7a:5c:66:96:67:28:1e:74:7c:22:d9:86:cb:c2:0e:d5:
31:48:1d:b4:69:93:0a:89:62:97:7d:1d:39:ec:2e:9a:05:5f:
e2:e1:30:78:60:35:a6:81:34:d0:6b:17:63:b8:bb:56:5a:7a:
5e:20:2c:9a:3c:0c:44:2f:c8:d7:9a:ce:90:7b:e6:3f:cd:42:
bc:0b:c7:fc:86:d7:0f:74:38:37:f9:31:f2:9b:96:df:c8:03:
96:a8:3d:1b:62:19:fb:fb:65:78:b8:e9:45:1c:c1:55:1e:b3:
82:bf:75:4d:71:ed:9e:88:24:db:e1:b8:de:f6:ba:de:66:41:
8f:b1:c6:42:4a:39:af:dd:c2:2c:1d:66:51:4b:88:a2:da:9c:
ac:56:7e:66:5a:90:2e:49:a4:4b:f9:6f:85:98:c7:a2:05:f7:
77:4a:61:65:98:c6:c9:08:84:45:ea:91:8f:5e:db:0a:65:25:
fb:66:fe:c3:83:95:18:39:28:b9:1a:75:5f:10:f3:a3:bc:fd:
3e:35:fc:0b:da:80:06:01:f5:62:83:b5:11:42:a7:d5:a5:aa:
e0:0c:0a:95:c7:6b:21:8a:c4:75:11:43:8a:e3:88:d8:62:08:
cc:9e:ae:a2:3a:a4:25:a7:c3:94:3d:0c:da:e9:ae:69:78:d0:
93:37:6c:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:06 2024 by rpki-client on console-fra.rpki-client.org