Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/VbjYHZoddTHRuOYwnJgXnswOC8I.roa
File: VbjYHZoddTHRuOYwnJgXnswOC8I.roa (raw, json)
Hash identifier: yIcBOsj1ynweDVzut0Q75nFjvOkXY53JxGl6pyuaD9g=
Subject key identifier: 55:B8:D8:1D:9A:1D:75:31:D1:B8:E6:30:9C:98:17:9E:CC:0E:0B:C2
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 39264347
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/VbjYHZoddTHRuOYwnJgXnswOC8I.roa
Signing time: Tue 19 Apr 2022 12:13:26 +0000
ROA not before: Tue 19 Apr 2022 12:13:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43289
IP address blocks: 178.175.128.0/19 maxlen: 24
178.17.160.0/20 maxlen: 32
103.197.148.0/22 maxlen: 24
2a00:1dc0::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 958808903 (0x39264347)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Apr 19 12:13:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55b8d81d9a1d7531d1b8e6309c98179ecc0e0bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:24:74:a4:f5:c5:15:66:cd:aa:38:d0:1c:36:
df:4f:0e:82:03:97:7a:81:e4:ca:0b:07:88:ce:1d:
b0:65:fa:7b:e5:9b:b1:5f:0f:44:21:98:c1:48:08:
b6:92:8d:26:05:de:a8:28:14:ce:d9:f8:29:75:f1:
f6:91:98:3b:e4:4b:88:3c:84:82:6f:2c:78:a4:d8:
d3:bd:d0:1b:15:b0:a0:93:ac:ae:4e:33:aa:61:34:
d8:28:26:85:7d:ea:58:13:f6:01:06:e8:54:19:d4:
5d:5b:f1:e4:9f:86:9f:5a:d9:df:7c:d9:2d:6b:d7:
ce:9f:1b:fe:01:15:66:b1:49:c2:1d:60:53:34:35:
cd:ae:e1:e2:4e:0e:53:d9:6d:e2:1e:18:37:58:da:
05:db:9f:e7:1e:a6:1c:15:fe:b4:e8:76:0d:e4:0f:
c7:ea:dd:8e:08:58:94:af:3c:c2:aa:d2:28:74:03:
4c:25:7c:a0:1a:a0:12:a9:fa:9b:56:72:04:5a:0d:
e8:78:4f:2e:4b:17:81:b9:5f:4d:4e:b0:79:96:67:
92:d6:98:47:c1:4a:9e:d0:3e:61:da:31:3e:5c:e3:
2b:a8:d1:8a:db:03:9e:6f:71:36:d9:0d:86:71:8b:
1e:70:ef:82:4f:78:ce:ce:c9:76:f0:32:e8:64:d8:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B8:D8:1D:9A:1D:75:31:D1:B8:E6:30:9C:98:17:9E:CC:0E:0B:C2
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/VbjYHZoddTHRuOYwnJgXnswOC8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.197.148.0/22
178.17.160.0/20
178.175.128.0/19
IPv6:
2a00:1dc0::/29
Signature Algorithm: sha256WithRSAEncryption
52:cb:c2:fa:a2:40:37:03:2f:53:8a:8b:fd:88:61:ed:8f:d8:
95:85:6f:cb:f2:68:53:93:20:96:cc:42:ce:c6:82:7c:0e:4f:
a2:b6:34:dc:68:88:c5:9c:78:e9:59:25:a0:b6:1b:6d:e6:c2:
79:16:60:cc:e5:30:f9:fa:3c:e8:9e:60:0d:b3:43:ef:5c:15:
59:d4:c5:ba:71:fd:f4:70:b4:27:00:5c:b5:e0:ce:ca:bf:32:
c8:79:3c:a4:5d:36:8f:ee:1b:b3:c3:05:01:02:e8:34:6d:c5:
1b:82:2d:26:5d:e8:b9:cf:d3:97:22:53:ed:23:4e:f1:5e:14:
5d:27:e2:76:48:8a:26:c8:2a:9e:8c:ed:8b:02:3b:f2:ab:a4:
d1:97:e4:dc:45:0f:eb:4b:31:bf:7d:88:97:a4:25:9d:a1:f4:
12:ea:61:43:a4:bf:bd:a1:82:0c:47:5a:25:7c:41:cf:d5:81:
1e:ed:96:be:9a:13:79:9f:3a:41:80:40:db:e7:39:66:05:da:
1b:99:b5:90:6d:30:2e:01:98:52:34:8a:cf:8b:4f:5f:75:40:
d1:78:b4:d7:9e:8a:2f:2d:ff:c8:c9:3f:b9:06:48:49:7b:ca:
ce:5a:14:fa:cf:ab:74:67:92:f7:ee:dc:6e:a6:2d:5f:1a:01:
91:41:64:f8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org