Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/xEYO00sUi5E2tmGTOr_HTrQ0Pmg.roa
File: xEYO00sUi5E2tmGTOr_HTrQ0Pmg.roa (raw, json)
Hash identifier: Bf0xffEZtXg7K8FrwUVmsGxAuWUMclT8aBcfO9g/D5A=
Subject key identifier: C4:46:0E:D3:4B:14:8B:91:36:B6:61:93:3A:BF:C7:4E:B4:34:3E:68
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 0184CD0B9AB423A289E5313FEF81BE6CB50D
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/xEYO00sUi5E2tmGTOr_HTrQ0Pmg.roa
Signing time: Thu 01 Dec 2022 09:36:40 +0000
ROA not before: Thu 01 Dec 2022 09:36:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35534
IP address blocks: 178.175.162.0/23 maxlen: 24
178.175.160.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cd:0b:9a:b4:23:a2:89:e5:31:3f:ef:81:be:6c:b5:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Dec 1 09:36:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4460ed34b148b9136b661933abfc74eb4343e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e8:6c:a2:69:dd:07:a8:d1:7e:a5:b9:e7:5a:
3e:db:1f:b9:c9:05:4d:14:49:b5:1b:05:b7:78:0f:
56:54:a4:1d:44:c9:78:05:30:64:21:ad:1d:fe:be:
93:c8:3b:70:f9:af:80:6b:76:0d:c1:7f:00:97:56:
b6:64:f4:a9:86:4c:e9:96:35:59:40:22:f8:c5:38:
03:55:f6:7e:c0:6e:16:66:7b:d8:3d:57:c9:2f:d4:
f2:8f:23:68:8b:97:b8:41:19:38:be:82:62:53:57:
ae:52:ac:5c:b2:d0:2b:90:73:04:35:0c:e0:8b:14:
c5:83:03:d1:51:b0:11:90:b2:9b:60:4e:8a:3a:6f:
ed:40:35:d0:07:81:5b:8b:43:fb:37:60:74:76:f6:
7b:b7:dc:99:ce:48:67:90:e4:36:3e:d2:e7:f9:24:
15:31:35:db:48:cf:ac:41:d2:82:c9:32:8d:f3:a2:
35:7b:b7:60:91:3d:17:fa:9b:63:a9:e6:54:49:a9:
dc:d7:20:2a:37:f8:34:30:96:b1:92:6b:91:8d:81:
2a:56:60:c9:13:a8:81:8b:f9:a4:00:9c:60:c1:b8:
9f:99:e3:44:b6:0a:a3:f2:75:1d:95:77:7a:ad:2a:
6f:0f:92:07:f5:5b:d7:5e:f5:b5:56:96:74:59:39:
f4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:46:0E:D3:4B:14:8B:91:36:B6:61:93:3A:BF:C7:4E:B4:34:3E:68
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/xEYO00sUi5E2tmGTOr_HTrQ0Pmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.160.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:b0:40:02:d2:54:e7:95:33:39:11:c6:87:65:0e:90:01:fc:
6f:4e:4e:ad:c1:36:72:fa:eb:ee:81:9b:1d:d3:b8:0f:98:33:
8e:8e:10:47:0f:6e:dc:83:61:64:fd:9e:0f:ec:b4:a0:95:e0:
cc:15:28:97:ad:7a:95:3a:04:20:6d:39:fe:87:09:fe:e3:21:
ec:59:02:ad:bd:af:9a:61:42:77:2e:af:ff:53:dc:b5:d9:a7:
2c:ad:b7:da:38:99:0e:07:64:04:5b:07:8b:34:8d:e9:ec:70:
17:0b:5c:6b:c0:82:bd:9e:38:4f:24:a0:cb:2e:f8:39:dc:cd:
e1:87:92:0e:b5:ed:3d:64:fe:a7:91:89:0a:de:32:42:f5:de:
9c:8c:5c:fa:49:41:82:75:c2:cd:94:2b:5c:94:cb:6f:a0:2c:
03:2a:30:60:9f:bb:d2:8f:84:0d:d3:62:77:ee:53:0d:af:e2:
33:b0:7a:93:82:f1:1b:b7:1c:78:2b:c3:ca:62:ba:42:98:2f:
cf:75:31:9b:39:6e:66:97:de:82:c4:96:47:59:73:78:e1:71:
56:a8:b9:a3:9f:f4:ef:2e:ac:25:f3:9f:a4:39:5b:16:06:59:
22:50:1d:ed:7b:15:01:a4:c3:12:e4:c9:08:ed:2b:ac:70:67:
1e:c2:41:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-ams.rpki-client.org