Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/7aGJo7xIifmkGzM5ss6ZUZ9VYrY.roa
File: 7aGJo7xIifmkGzM5ss6ZUZ9VYrY.roa (raw, json)
Hash identifier: 0G0DIS822KJXJwThgma9ahtCUYZA1g4uYnQujLgKTAY=
Subject key identifier: ED:A1:89:A3:BC:48:89:F9:A4:1B:33:39:B2:CE:99:51:9F:55:62:B6
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 381EB3EE
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/7aGJo7xIifmkGzM5ss6ZUZ9VYrY.roa
Signing time: Sat 01 Jan 2022 09:59:28 +0000
ROA not before: Sat 01 Jan 2022 09:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202931
IP address blocks: 178.175.172.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941536238 (0x381eb3ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 1 09:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eda189a3bc4889f9a41b3339b2ce99519f5562b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:74:28:86:da:b7:b9:40:b2:9c:68:b7:a5:98:
0a:50:2b:66:72:3d:af:7d:c7:00:80:b2:59:01:d9:
29:84:54:38:cf:94:6c:b3:40:91:32:77:c2:49:35:
4e:56:da:8c:8b:8e:a2:92:e6:72:3c:58:de:91:cb:
9f:ba:65:45:23:74:9c:af:d3:ae:40:bf:bb:f6:58:
25:69:09:02:1c:b6:41:5f:16:92:0f:4d:c9:a2:91:
a2:f8:fb:1a:f0:ea:ad:e6:6a:98:5a:23:63:9b:4f:
12:c2:66:d5:0f:4d:53:c7:3f:d1:4b:2f:b7:1c:e0:
02:52:f3:81:80:a9:b7:08:4c:e6:9c:ff:8f:c8:a8:
fc:e4:ea:54:a9:c5:98:ca:be:d7:62:09:3e:18:cf:
c8:70:f0:50:bf:01:11:d8:ea:31:a7:c2:f7:a6:d9:
0b:5d:54:9c:34:77:88:2c:00:0e:e9:4a:c1:42:1e:
12:de:6f:65:c5:1b:cc:4d:54:b2:b4:24:10:72:27:
d0:4b:dc:56:08:f9:56:2e:0e:6d:8d:7a:96:34:a9:
d5:d6:95:e6:14:ef:a5:6d:88:00:ce:80:6c:19:2d:
20:b1:91:a5:a5:dc:0c:9c:d4:2d:f7:75:4e:c3:58:
ce:d1:13:56:98:18:6c:26:7f:b3:7c:af:0d:c4:21:
50:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:A1:89:A3:BC:48:89:F9:A4:1B:33:39:B2:CE:99:51:9F:55:62:B6
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/7aGJo7xIifmkGzM5ss6ZUZ9VYrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.172.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:92:32:7d:ef:79:12:cc:c2:28:b7:34:3e:da:1b:2b:c7:ee:
08:2c:8d:d9:e3:f5:f9:8f:71:ed:a5:7d:cb:0f:0b:7f:c3:dc:
af:fd:d0:64:e5:b9:85:92:4c:e6:61:41:cc:92:e9:19:6d:c0:
9b:96:40:c1:8d:34:f9:47:fd:01:44:76:b5:d6:fa:e0:cf:74:
b7:e7:19:9c:f7:d2:c5:25:51:25:32:a1:94:22:1e:19:33:d7:
77:ae:22:59:67:48:36:30:a7:0a:a5:7e:a9:ef:c6:e1:49:f0:
53:e0:8a:c5:c0:91:60:da:d2:e0:88:2d:69:16:e1:6f:49:5c:
18:08:dc:7a:d1:61:23:e7:17:15:43:39:42:ce:dc:f7:59:c2:
0c:a4:b0:45:5a:2b:44:d3:3f:f6:1a:ac:e0:6d:ff:71:a0:1a:
d4:00:a1:01:32:68:3f:82:f4:eb:35:73:09:81:f9:e8:51:c7:
ad:1a:5a:fd:7c:3a:bb:3d:82:2b:e7:99:fd:27:7b:06:b2:8a:
ae:42:ed:1b:1f:d2:9d:9e:b6:9b:a9:fd:d7:33:56:9b:30:e0:
58:f4:07:be:50:8e:fb:f6:cf:ed:0b:70:79:75:05:dd:0b:d4:
5e:4d:52:f7:c9:16:8e:90:5d:84:c5:52:df:9e:44:64:c4:23:
8d:5e:26:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org