Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/bdd43f-4528-4c92-88ba-56e7f93dcdbf/1/usqw5ISKDgDw_IRDodvhEBUVyIg.roa
File: usqw5ISKDgDw_IRDodvhEBUVyIg.roa (raw, json)
Hash identifier: YNMTcyIomIdrYN/Z20ByeQyAWk42ICxHiXDe+6xxbmc=
Subject key identifier: BA:CA:B0:E4:84:8A:0E:00:F0:FC:84:43:A1:DB:E1:10:15:15:C8:88
Certificate issuer: /CN=094245ee8b5ba4c66fe2ceca64be466fc96f71ed
Certificate serial: 02488A39
Authority key identifier: 09:42:45:EE:8B:5B:A4:C6:6F:E2:CE:CA:64:BE:46:6F:C9:6F:71:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUJF7otbpMZv4s7KZL5Gb8lvce0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/bdd43f-4528-4c92-88ba-56e7f93dcdbf/1/usqw5ISKDgDw_IRDodvhEBUVyIg.roa
Signing time: Sat 01 Jan 2022 06:01:48 +0000
ROA not before: Sat 01 Jan 2022 06:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48642
IP address blocks: 178.217.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38308409 (0x2488a39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=094245ee8b5ba4c66fe2ceca64be466fc96f71ed
Validity
Not Before: Jan 1 06:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bacab0e4848a0e00f0fc8443a1dbe1101515c888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:54:1d:0e:8d:98:94:95:6c:7e:1f:b4:c7:57:
1e:f4:8f:17:e3:06:a4:79:d2:35:34:6e:9a:9c:2c:
04:93:5d:62:3c:7d:06:16:1d:08:ff:2f:1a:2e:48:
f2:ba:26:7f:b0:c3:90:fe:62:87:8d:8d:53:9c:2f:
87:ba:43:4c:4c:6d:9a:2e:49:dc:47:4d:a9:fd:b9:
d1:6f:6d:e8:4f:06:b4:42:93:78:d1:54:3b:6a:bc:
a9:6d:dd:b1:ab:da:d8:40:5d:d2:88:aa:41:f8:a1:
e2:cf:f6:3e:57:2a:b1:89:c9:7f:b1:fa:91:de:b2:
9f:e5:22:a0:1e:87:15:4a:60:dc:60:d8:53:4e:47:
f2:d3:4d:43:c0:af:40:9e:05:2f:a7:59:37:cb:53:
18:ad:a1:3f:6a:c0:90:9a:d1:11:df:c3:f2:84:6e:
82:1b:51:40:ba:51:a8:93:01:b5:6f:7b:b9:b6:f3:
d9:4a:67:ed:2b:90:d9:aa:fc:08:44:31:0d:b0:27:
79:79:28:04:ba:3f:ce:90:0a:b5:2f:3d:b6:3c:c6:
26:8e:61:2d:33:05:86:05:1c:27:39:47:c8:cd:2b:
f0:b6:56:3d:3c:55:b6:65:bd:8f:38:65:f5:c3:8b:
8a:5b:8e:ce:6f:98:0c:2a:6f:e8:ff:b9:21:b7:f7:
f5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CA:B0:E4:84:8A:0E:00:F0:FC:84:43:A1:DB:E1:10:15:15:C8:88
X509v3 Authority Key Identifier:
keyid:09:42:45:EE:8B:5B:A4:C6:6F:E2:CE:CA:64:BE:46:6F:C9:6F:71:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUJF7otbpMZv4s7KZL5Gb8lvce0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/bdd43f-4528-4c92-88ba-56e7f93dcdbf/1/usqw5ISKDgDw_IRDodvhEBUVyIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/bdd43f-4528-4c92-88ba-56e7f93dcdbf/1/CUJF7otbpMZv4s7KZL5Gb8lvce0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.224.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:c9:f3:89:91:1c:4f:7b:a9:ba:d0:c7:6b:b9:f6:c2:16:81:
0e:2d:cd:0b:f8:31:3f:c0:b9:bc:0e:1e:b4:01:66:92:b8:89:
09:af:a8:78:b0:2a:9c:5a:cc:a7:3a:c3:64:9c:ae:ca:2c:90:
95:84:f3:4b:97:a8:16:cc:5f:38:e1:e6:45:5e:bf:4a:15:97:
af:17:9d:dc:7a:f8:40:c3:35:98:62:c4:5a:f1:54:51:38:71:
10:ab:95:d2:a9:b5:9c:75:6a:92:a0:1c:b5:d9:dd:41:fa:48:
80:f2:42:0c:71:cc:af:fb:2b:ad:78:09:b8:75:f2:a4:b1:05:
64:11:30:00:05:91:02:e6:2c:6b:0d:e6:d5:74:b9:0a:20:b7:
16:4a:43:38:03:57:39:aa:79:3e:f9:a0:03:aa:86:db:c6:a9:
33:93:9e:2a:71:a9:19:43:82:dc:0d:b8:6b:42:f6:d5:14:81:
dd:4c:c3:f4:4e:4d:fb:de:97:44:a8:dc:cd:45:d8:a5:b9:9a:
cf:bb:81:c6:34:aa:4c:e9:97:64:3f:55:23:1c:00:77:e2:a3:
34:31:07:5b:48:c6:fc:72:73:8d:7d:49:68:b0:9e:23:e4:e1:
a4:2e:0d:3e:b1:92:5a:2d:39:c8:d8:d9:10:f7:64:26:8d:4b:
9e:fc:13:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:52 2023 by rpki-client on console-fra.rpki-client.org