Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/0ymEemACQKwS02-XTNncB_aLhPU.roa
File: 0ymEemACQKwS02-XTNncB_aLhPU.roa (raw, json)
Hash identifier: jewvcKc3Cgue/MseUKjU+xdM4erXE7wNqK34+rkvd6s=
Subject key identifier: D3:29:84:7A:60:02:40:AC:12:D3:6F:97:4C:D9:DC:07:F6:8B:84:F5
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 381E8670
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/0ymEemACQKwS02-XTNncB_aLhPU.roa
Signing time: Sat 01 Jan 2022 09:59:27 +0000
ROA not before: Sat 01 Jan 2022 09:59:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64453
IP address blocks: 178.175.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941524592 (0x381e8670)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 1 09:59:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d329847a600240ac12d36f974cd9dc07f68b84f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:ab:98:e9:62:6f:b3:83:01:8e:68:62:ba:
d1:0e:13:51:92:6a:2e:93:ea:6b:2e:84:88:98:1e:
db:da:5a:a7:9c:b7:d9:10:e0:8f:73:d4:76:91:22:
1b:ab:fe:e7:c8:62:2f:72:c5:68:12:fd:27:84:d8:
d1:c3:90:7a:37:32:9a:1e:6c:b1:57:40:9e:82:b7:
2b:df:86:64:c8:87:0f:35:05:83:82:1e:d8:e2:bd:
45:30:64:62:ac:0b:db:eb:7c:d7:e8:da:a4:2e:70:
ea:23:eb:79:d5:06:13:00:c9:d3:ea:8c:52:36:52:
b7:7b:15:93:3a:3f:fb:f2:b0:5d:44:aa:c9:93:f2:
46:76:28:79:07:e6:91:8c:54:89:ff:f9:71:64:45:
30:b1:f1:7d:3f:91:2c:68:e4:63:6d:25:ea:c0:f8:
50:74:de:a3:80:12:fc:c3:e0:4a:d0:ba:0e:07:fd:
1a:07:41:88:c1:a0:d9:1c:9f:70:b7:31:82:4e:0c:
28:86:f3:12:2b:88:d6:9c:05:46:14:17:e2:3b:87:
52:c7:47:b9:2d:53:23:1a:c3:8f:f2:81:6b:c4:99:
7a:76:d9:4a:aa:f3:c1:b4:43:d6:33:b7:da:3e:ae:
ec:f8:48:17:5d:15:c4:86:08:40:63:53:ce:0c:99:
13:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:29:84:7A:60:02:40:AC:12:D3:6F:97:4C:D9:DC:07:F6:8B:84:F5
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/0ymEemACQKwS02-XTNncB_aLhPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.158.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:24:67:45:cc:34:55:79:96:e8:f4:e3:0f:92:c5:9e:4c:a5:
b1:de:04:4d:52:da:8e:0a:22:5b:e3:4c:16:d0:f9:c5:c6:df:
b9:01:73:96:29:88:1b:d8:ba:bb:1a:68:6d:d8:84:ab:82:fb:
24:06:0c:b5:82:df:fe:82:5c:52:b1:02:c2:3a:d7:bd:dd:44:
ec:34:2b:95:c7:9a:87:59:f3:72:78:e7:ef:48:45:d1:a5:1d:
bb:e2:f6:00:2b:66:b8:c1:42:03:14:d6:32:7f:76:79:05:91:
92:c2:c9:44:7f:de:2e:da:73:cb:34:4d:19:6a:16:bc:0f:9c:
8f:a7:2d:5d:f4:05:06:b8:51:7b:b0:5b:06:7d:79:53:01:74:
5b:e6:b2:33:40:47:05:2e:3c:70:de:3e:d8:b5:27:ed:59:94:
d5:a3:c7:80:64:f6:e3:41:42:4e:f6:27:f7:d3:17:86:a9:6e:
33:44:a1:d0:9b:a4:59:f0:c3:96:12:89:a4:16:e2:8c:a9:f1:
b1:5c:90:2f:36:f1:6e:92:ac:12:23:44:ed:fe:07:06:d5:cc:
c0:8d:b8:7d:fd:0c:9b:72:d3:27:60:ab:a0:f3:35:40:6e:2e:
c9:d3:5c:63:f0:90:50:86:3a:46:85:96:a0:2d:99:9e:37:03:
6a:ec:ce:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org