Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/0xRzkyZCF4uCr-TlJK1N9PnDtiY.roa
File: 0xRzkyZCF4uCr-TlJK1N9PnDtiY.roa (raw, json)
Hash identifier: mJFXaPzg1hFeZw0V9zBnAHYW3qvl7Ku6CO2b2d6vvmE=
Subject key identifier: D3:14:73:93:26:42:17:8B:82:AF:E4:E5:24:AD:4D:F4:F9:C3:B6:26
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 381C040C
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/0xRzkyZCF4uCr-TlJK1N9PnDtiY.roa
Signing time: Sat 01 Jan 2022 09:59:26 +0000
ROA not before: Sat 01 Jan 2022 09:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57776
IP address blocks: 178.175.156.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941360140 (0x381c040c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 1 09:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d31473932642178b82afe4e524ad4df4f9c3b626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f6:2e:b1:f5:7e:30:29:63:0c:2e:14:1c:e9:
13:75:2d:ef:c6:d4:2a:1f:31:15:12:1f:10:31:18:
7f:5d:f0:46:66:ad:78:fb:58:61:6e:34:51:0c:96:
a3:d2:b8:11:29:0e:c3:d2:dd:d3:7c:80:48:23:be:
99:1a:7f:76:fe:f6:f1:98:f6:63:a5:9c:80:9f:40:
8e:04:30:89:8e:f8:d1:f5:e2:fe:2d:d5:fc:ba:0e:
49:2f:42:5b:8a:c4:f8:b9:e0:d5:62:8a:ed:df:db:
7c:a8:6c:42:5b:f9:35:d5:2d:a1:5d:54:d0:91:da:
0e:16:38:b5:31:11:09:3d:5d:1f:1e:60:1e:dc:65:
2a:7d:3e:9e:bf:6b:63:13:12:ff:65:ee:35:7c:6b:
9a:22:89:1a:38:c1:02:8e:40:ef:aa:88:f0:73:31:
ac:35:83:39:c2:b2:22:3a:8b:f5:4e:61:15:e0:62:
ea:f7:96:21:b1:83:ab:21:80:a0:e5:6c:13:c4:ec:
c5:1d:ba:7d:d7:c1:50:84:dc:f4:c8:c8:c1:cc:c3:
bd:de:19:68:f9:b2:51:37:d0:d7:2e:d4:78:c5:bc:
9e:67:f7:9e:f6:f5:14:70:7c:2e:9d:f5:d5:69:7f:
f2:e4:b0:9b:90:83:3b:5b:08:f7:da:15:75:a2:5b:
4e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:14:73:93:26:42:17:8B:82:AF:E4:E5:24:AD:4D:F4:F9:C3:B6:26
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/0xRzkyZCF4uCr-TlJK1N9PnDtiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.156.0/23
Signature Algorithm: sha256WithRSAEncryption
10:1f:ca:d6:a1:dd:51:70:8e:6c:05:3c:1c:82:cb:ed:d8:f7:
89:aa:d8:ba:f4:2f:4d:28:8a:a0:bb:8d:cb:9a:bd:c3:66:a2:
e3:61:76:8b:48:10:3d:de:5e:f2:c7:28:fe:2c:f3:4d:ee:5a:
f5:54:cc:c7:c6:bd:b5:03:c7:6f:31:fc:02:0c:42:8a:78:fe:
f3:ea:cd:81:d4:3a:80:11:f0:76:6d:ce:e7:4c:f2:43:bc:6c:
3c:af:6e:7a:db:13:76:28:db:5f:31:70:a7:55:2e:3d:de:e2:
3d:e9:e4:08:e1:d1:cd:10:45:8d:64:f0:68:8b:85:2a:1d:30:
06:27:97:5f:1c:0f:02:5c:54:3a:d4:6f:1e:3e:c8:09:66:a9:
ec:0f:ca:f7:a9:a9:93:d8:cc:a9:9e:23:81:54:83:3d:08:85:
51:ad:d5:7f:bd:c2:e2:22:3c:ef:cb:61:63:c4:c3:45:03:17:
b6:72:19:fa:93:11:c5:69:1c:e6:82:84:28:e3:28:f5:6d:c4:
35:8c:09:a6:d2:e1:47:cc:50:50:aa:49:99:0a:8e:c7:a4:b9:
73:d7:07:24:2a:61:bb:60:a5:27:a8:58:9d:ac:7a:c4:49:ac:
37:fd:aa:4e:8a:b1:3a:0c:15:35:f3:0d:ed:00:f2:99:dc:aa:
fa:11:8b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org