Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/3afqSTKFHNQs6-rDr8NvIp6MZU0.roa
File: 3afqSTKFHNQs6-rDr8NvIp6MZU0.roa (raw, json)
Hash identifier: a8zSSM5VqtoHySoPMtgEnjh9R3jTwHhjpomRJUqpjIE=
Subject key identifier: DD:A7:EA:49:32:85:1C:D4:2C:EB:EA:C3:AF:C3:6F:22:9E:8C:65:4D
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 3816B592
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/3afqSTKFHNQs6-rDr8NvIp6MZU0.roa
Signing time: Sat 01 Jan 2022 09:59:22 +0000
ROA not before: Sat 01 Jan 2022 09:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 178.175.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941012370 (0x3816b592)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 1 09:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dda7ea4932851cd42cebeac3afc36f229e8c654d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d1:28:fd:b9:c8:60:37:aa:e2:a1:f4:e7:7d:
ca:99:39:fe:59:80:50:41:0a:67:ea:46:90:9d:52:
dc:8d:c4:8b:9b:c7:b7:5f:f6:62:ab:ff:7c:4f:a0:
d8:38:92:39:ef:79:0f:ba:6f:48:38:7c:77:f8:98:
71:55:05:58:60:75:bc:dd:55:bb:61:17:ca:58:4e:
17:b0:6e:81:20:a4:2d:8e:88:f8:0e:a9:fd:b1:7c:
ea:5c:22:af:b3:1c:f2:0d:19:fa:60:e7:3f:ad:b7:
8e:de:03:f0:f0:df:83:ed:ba:e4:cc:69:58:70:19:
57:80:e3:06:4c:03:a5:72:c5:80:9d:e8:ff:9d:bf:
d0:55:7e:c3:b7:22:f6:2f:ec:d7:7c:e3:c2:42:38:
50:89:86:9e:cf:6a:1c:c4:78:4e:f6:d9:cc:95:ac:
29:8f:2f:04:5f:8a:cf:8e:96:aa:63:6f:ab:3f:e1:
bf:da:21:4f:18:e9:db:c9:56:12:ca:8c:16:7c:94:
a3:29:9c:89:ef:4b:53:d2:88:7d:52:16:4c:92:d9:
7b:5b:00:69:06:0a:a6:c9:82:3c:f8:fc:ad:8c:83:
e5:b7:5d:50:44:e7:fc:29:2f:82:7d:94:c8:13:05:
79:96:d6:63:ac:ae:e5:37:6f:1d:5d:83:40:30:17:
5f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A7:EA:49:32:85:1C:D4:2C:EB:EA:C3:AF:C3:6F:22:9E:8C:65:4D
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/3afqSTKFHNQs6-rDr8NvIp6MZU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.160.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:53:60:b9:ec:49:15:80:34:e1:cc:27:39:43:1a:54:e0:5e:
21:37:1d:af:d5:31:ed:b8:a8:e8:2c:b2:28:af:e7:92:85:60:
a3:80:03:6e:b7:e7:f3:7f:3b:dd:d0:c8:5c:68:8a:9c:0c:58:
55:65:4a:b5:31:99:7e:5d:75:c5:0b:ba:60:e9:71:f5:96:be:
6f:38:3a:91:51:55:16:48:40:d9:2a:c0:c9:73:e1:0d:0d:30:
16:ff:11:c2:a0:d0:1e:94:5d:8b:59:a1:ec:10:ca:8f:d6:37:
3e:6b:0b:7f:99:fa:61:24:66:b3:08:43:31:67:2e:c9:9e:0e:
9f:97:3c:06:26:b2:f3:4e:5b:96:fc:83:be:d4:fa:01:f7:40:
3e:12:3b:86:c5:e5:78:fb:5c:ec:ff:ad:83:91:9a:ef:a6:f8:
36:70:ae:7b:0b:d4:94:98:ea:50:a9:99:cb:66:43:b7:bc:2c:
97:ea:b2:61:aa:11:d0:85:05:bc:a8:2d:c5:33:68:8a:aa:83:
22:2b:c3:ad:46:43:53:60:fc:d3:7d:03:1e:b7:a1:f0:09:da:
e5:c8:c3:44:6b:17:90:df:fa:df:4d:ee:5f:64:04:1d:bc:a3:
46:a3:8b:dc:4d:e5:ae:75:01:c7:ab:87:61:4e:7c:20:0d:9e:
ba:fa:27:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-ams.rpki-client.org