Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/ThYz90Bqprogu2xvYcVuXO5YuHc.roa
File: ThYz90Bqprogu2xvYcVuXO5YuHc.roa (raw, json)
Hash identifier: SJZiNuTGrwWpFGCwlRA1KfMo87S9DHszETA/7wnVGqo=
Subject key identifier: 4E:16:33:F7:40:6A:A6:BA:20:BB:6C:6F:61:C5:6E:5C:EE:58:B8:77
Certificate issuer: /CN=5b8a16522ec34b1c5bc4708206cc1963a15bbdb1
Certificate serial: 04F83872
Authority key identifier: 5B:8A:16:52:2E:C3:4B:1C:5B:C4:70:82:06:CC:19:63:A1:5B:BD:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W4oWUi7DSxxbxHCCBswZY6FbvbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/ThYz90Bqprogu2xvYcVuXO5YuHc.roa
Signing time: Fri 04 Feb 2022 09:48:46 +0000
ROA not before: Fri 04 Feb 2022 09:48:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208972
IP address blocks: 178.159.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83376242 (0x4f83872)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8a16522ec34b1c5bc4708206cc1963a15bbdb1
Validity
Not Before: Feb 4 09:48:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e1633f7406aa6ba20bb6c6f61c56e5cee58b877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ee:91:eb:f5:19:0d:fc:49:d3:77:50:07:1b:
cd:b9:23:38:f1:79:8d:76:d2:48:ec:64:ac:7a:17:
71:cf:f4:f8:7b:95:f8:57:bf:80:9d:f4:21:cb:b1:
28:a2:64:0e:ed:28:15:fb:28:54:1a:ca:54:57:c7:
dd:8a:17:09:df:5e:8c:41:8a:38:92:bd:ed:81:54:
e4:ee:45:88:4a:89:b0:1c:66:4e:a8:e6:53:5f:07:
b7:8b:e2:57:86:f7:4a:9c:2d:13:44:e2:98:fe:6e:
2d:57:d5:20:6e:7e:43:5a:de:18:44:03:d8:cc:88:
e7:58:5b:8f:de:6a:88:16:03:cb:51:10:91:37:14:
32:39:91:3c:bf:71:6b:dd:6e:75:0a:39:ee:c9:1f:
e0:94:e1:ec:95:76:e1:0d:94:07:27:3f:e5:0e:b0:
7b:e7:bf:27:3c:0a:d8:1f:40:99:ee:2c:d5:6e:b7:
ff:73:5a:84:f5:be:65:6e:5e:57:ea:0e:ae:13:79:
3a:60:cd:dd:6e:5f:0b:ce:d6:70:65:d3:47:10:7a:
44:22:d3:64:f2:96:bc:d0:e2:ff:a0:b9:21:a2:61:
8f:a2:a6:31:75:ba:3b:c0:a4:23:e8:1d:14:32:3c:
64:6f:26:2f:aa:78:f1:0a:25:69:f4:16:28:f9:e5:
f0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:16:33:F7:40:6A:A6:BA:20:BB:6C:6F:61:C5:6E:5C:EE:58:B8:77
X509v3 Authority Key Identifier:
keyid:5B:8A:16:52:2E:C3:4B:1C:5B:C4:70:82:06:CC:19:63:A1:5B:BD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W4oWUi7DSxxbxHCCBswZY6FbvbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/ThYz90Bqprogu2xvYcVuXO5YuHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/W4oWUi7DSxxbxHCCBswZY6FbvbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.35.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:5c:d4:81:4f:a7:ac:dc:24:6f:57:42:3a:9d:10:66:54:97:
8c:2e:43:bb:76:77:64:09:df:0a:a1:ca:f0:bb:5c:f0:3a:a0:
6a:bf:66:05:99:c8:ed:b9:7f:14:f1:39:82:b2:40:e0:7e:aa:
93:cd:f1:08:05:09:0b:5d:03:de:33:27:d6:03:10:d0:d1:d7:
3b:43:0b:cf:7e:c3:99:66:b0:55:4b:0d:b7:86:c6:1c:06:21:
2d:d7:68:1e:bc:9b:69:d8:1f:fe:d7:79:e7:e7:79:13:8d:29:
ae:15:f1:e5:e7:0a:bd:1c:a4:93:c4:6c:12:e8:28:75:0d:19:
47:06:4f:a6:5a:30:fc:71:d8:e2:f8:c1:81:35:4c:4c:e0:2a:
ba:b2:74:b4:e3:d0:1c:45:52:ea:1f:55:0f:4b:26:84:ce:ec:
5c:7d:fd:3c:1e:1a:4e:f8:9a:38:f3:3b:b9:af:fb:e9:38:65:
db:7c:b6:40:76:d9:01:88:3c:84:fa:ef:99:31:8e:83:ec:80:
b6:0b:cd:b3:a6:67:06:e6:fd:8b:1c:dd:20:04:66:c0:5b:98:
1f:67:1e:0f:c2:fa:99:67:03:ed:87:49:d2:a9:27:83:2b:69:
fe:70:37:66:87:21:ec:2d:5d:9e:0a:ec:f4:0c:2b:b3:08:cf:
aa:a7:b0:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-ams.rpki-client.org