Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/c1KFQ2XN7tgeH4XpbUJ-TD9oOtU.roa
File: c1KFQ2XN7tgeH4XpbUJ-TD9oOtU.roa (raw, json)
Hash identifier: tPjR1mjTcMdvDM7Zn9oJpCgBdEVhb6JJGAPzw4czSL0=
Subject key identifier: 73:52:85:43:65:CD:EE:D8:1E:1F:85:E9:6D:42:7E:4C:3F:68:3A:D5
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 39482691
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/c1KFQ2XN7tgeH4XpbUJ-TD9oOtU.roa
Signing time: Tue 03 May 2022 13:26:12 +0000
ROA not before: Tue 03 May 2022 13:26:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211504
IP address blocks: 178.175.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 961029777 (0x39482691)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: May 3 13:26:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7352854365cdeed81e1f85e96d427e4c3f683ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8b:3f:71:f3:0b:7d:cb:eb:04:f6:d8:22:1f:
a1:f5:2e:63:34:49:03:4b:c3:2d:29:37:7a:a0:fa:
97:01:a6:fb:74:d9:5b:ff:89:4f:e7:c3:3b:78:65:
9b:f7:00:11:cb:07:ac:65:05:b7:21:68:9d:88:f1:
f1:c8:74:50:0b:97:8b:70:70:74:f8:8e:a2:af:37:
7d:f3:cf:26:d8:92:8e:30:d4:52:a2:eb:f6:15:d4:
b2:59:60:b2:7c:ae:89:4f:c9:fc:7a:83:c7:45:d9:
32:05:83:35:4f:e7:77:0e:34:75:5e:fc:08:ab:ea:
09:e6:d8:f4:5a:34:69:db:6f:d1:b9:f6:56:8a:1d:
d5:c9:46:af:a4:04:96:6c:fb:c6:95:04:2e:9c:53:
e4:02:6a:eb:5c:92:e5:92:08:39:39:76:f0:ab:7d:
d2:4e:5c:e4:6b:19:c7:f2:44:25:42:37:23:a5:20:
85:8f:04:a2:17:a5:76:60:54:85:f4:ab:64:e5:b3:
d9:2e:f0:cb:4f:0c:7c:92:00:2c:2d:7c:03:7c:5b:
fe:57:13:a5:42:3e:12:18:08:98:56:d1:be:7d:5b:
c4:3c:2b:ab:bd:5d:5a:99:d6:32:33:56:d3:f7:f9:
58:b4:30:6f:8b:d2:52:a5:4f:4a:8d:86:3e:0c:76:
7c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:52:85:43:65:CD:EE:D8:1E:1F:85:E9:6D:42:7E:4C:3F:68:3A:D5
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/c1KFQ2XN7tgeH4XpbUJ-TD9oOtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.167.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:42:c5:df:85:63:d5:5f:14:74:8c:8b:13:93:62:02:35:20:
3a:f7:0c:85:bf:f4:ff:04:3d:a2:86:69:d9:33:fe:bf:a9:c9:
09:70:5b:da:e1:db:52:3d:b7:f7:91:0f:be:19:4f:d3:08:cc:
6d:7e:60:c6:95:35:92:45:a7:d0:7b:6a:43:ec:c4:88:5c:f3:
b4:09:c7:8c:1b:cd:98:da:f3:e2:7f:cb:83:f7:a1:6d:90:75:
1b:b6:3d:95:99:d8:0e:8e:e8:27:e8:d0:8d:66:9c:c8:e6:74:
5f:32:3a:b1:b6:b1:2b:f9:69:9d:b7:58:9f:fb:91:85:f8:85:
d1:ea:ef:0e:35:00:d6:ff:26:03:92:83:69:ae:cf:57:c2:e0:
81:23:51:0e:10:fb:2e:32:c5:85:64:9d:f8:ca:de:69:8f:46:
67:05:f4:3a:f5:29:f1:88:f1:d9:d0:98:10:d9:eb:24:9d:08:
70:33:45:db:f3:3d:3c:5f:af:cf:70:08:08:3d:27:c9:7d:26:
a7:6f:bb:59:1c:21:58:39:3b:1b:95:d2:96:64:41:34:03:28:
67:35:80:c0:97:7a:e0:b8:b8:75:a8:d3:51:97:6d:c3:bf:c4:
ca:ad:e3:1a:ff:86:53:ad:d1:fc:d1:f1:2e:1c:bd:f6:cc:23:
ee:77:5d:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:29 2023 by rpki-client on console-fra.rpki-client.org