Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/da57c9-e135-4367-8be6-2c0cf23b423e/1/1-st0RMrx46TEj_02ywW4IN86OLQ.roa
File: 1-st0RMrx46TEj_02ywW4IN86OLQ.roa (raw, json)
Hash identifier: neRhvR/5iy5VB6lWxF7+IpWOCKkWvkIqS2m0PfLmRR4=
Subject key identifier: FA:CB:74:44:CA:F1:E3:A4:C4:8F:FD:36:CB:05:B8:20:DF:3A:38:B4
Certificate issuer: /CN=df7eac4fa313a2e792e54263cc605ff319f35c19
Certificate serial: 036EB978
Authority key identifier: DF:7E:AC:4F:A3:13:A2:E7:92:E5:42:63:CC:60:5F:F3:19:F3:5C:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/336sT6MToueS5UJjzGBf8xnzXBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/da57c9-e135-4367-8be6-2c0cf23b423e/1/1-st0RMrx46TEj_02ywW4IN86OLQ.roa
Signing time: Sat 01 Jan 2022 15:07:36 +0000
ROA not before: Sat 01 Jan 2022 15:07:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57906
IP address blocks: 178.213.78.0/24 maxlen: 24
193.238.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57588088 (0x36eb978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df7eac4fa313a2e792e54263cc605ff319f35c19
Validity
Not Before: Jan 1 15:07:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=facb7444caf1e3a4c48ffd36cb05b820df3a38b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:31:8c:1f:63:1e:37:20:5c:3d:8f:78:ca:49:
bb:91:1f:fc:75:b9:bf:38:d6:af:5a:d9:75:2e:1a:
00:8b:a3:29:dc:56:78:fb:c6:8c:f4:c5:80:9a:2a:
ac:d8:f8:07:06:d8:99:b4:39:61:c0:ab:93:db:a6:
3e:a7:bc:87:af:0b:bf:b0:59:5d:99:71:39:c6:a5:
5a:38:d3:17:76:f9:83:c8:43:59:b9:ab:b0:88:16:
56:e4:a9:50:ba:55:39:20:82:c0:ce:b7:1b:45:5c:
a5:30:c1:32:16:cd:3b:69:f4:88:43:4c:c5:3d:82:
ce:d9:af:1e:50:16:51:43:d5:d7:c6:ac:bb:17:10:
02:00:fb:2a:2f:cb:d8:b4:a8:1d:86:bd:f0:3b:10:
58:fd:68:56:5a:35:94:0b:32:4d:1b:99:29:4d:ab:
d8:fd:29:3b:31:8a:5d:1a:9f:57:81:2b:cf:38:90:
ac:2f:8a:1b:3b:b8:07:60:00:0c:92:33:9e:d2:d5:
0e:6c:d5:50:57:38:e8:96:ac:fd:5b:12:93:33:96:
1d:13:8e:08:1f:f5:d0:71:09:df:5d:8d:55:75:6c:
2b:3d:1a:69:ef:a0:8b:ae:17:1a:17:f5:70:d3:dd:
f3:7d:83:7e:f0:dc:75:c7:04:e4:16:21:df:68:33:
ca:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CB:74:44:CA:F1:E3:A4:C4:8F:FD:36:CB:05:B8:20:DF:3A:38:B4
X509v3 Authority Key Identifier:
keyid:DF:7E:AC:4F:A3:13:A2:E7:92:E5:42:63:CC:60:5F:F3:19:F3:5C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/336sT6MToueS5UJjzGBf8xnzXBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/da57c9-e135-4367-8be6-2c0cf23b423e/1/1-st0RMrx46TEj_02ywW4IN86OLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/da57c9-e135-4367-8be6-2c0cf23b423e/1/336sT6MToueS5UJjzGBf8xnzXBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.213.78.0/24
193.238.119.0/24
Signature Algorithm: sha256WithRSAEncryption
20:61:fe:4e:d5:3e:94:b9:d6:9f:72:6e:c1:86:a3:06:d2:63:
17:b5:c4:b9:0a:69:f2:e7:af:96:89:03:92:d3:0e:26:aa:2f:
b8:8b:0b:2e:f5:bb:8d:1e:ba:5c:73:e9:04:20:47:b0:8e:0c:
fa:14:79:d9:ca:a9:3e:b3:f8:84:cd:fa:ad:d3:93:4c:6a:e0:
9d:93:86:9d:02:3a:e6:5b:eb:e7:83:d6:a5:d3:04:a3:15:34:
97:1f:dc:77:4c:b2:cf:c2:b6:cc:93:58:41:c8:04:18:ae:3b:
ae:70:2a:9e:0d:aa:be:91:6c:6e:ea:a3:fc:54:d8:b3:32:c3:
a0:9c:69:38:ad:ba:7c:d3:d1:83:f0:22:84:4a:46:34:e5:53:
7b:d8:1d:fd:53:3a:25:81:33:e8:e5:3c:4c:4f:e1:1e:29:18:
4d:bf:3f:ba:0a:56:e3:e5:d9:7e:a2:2a:26:34:12:a7:72:ca:
0a:db:ce:12:7e:4e:eb:ea:5f:32:be:e5:07:03:43:b8:19:2c:
27:3d:0e:00:5f:54:97:33:a3:6d:d7:1d:43:a4:31:63:c5:ec:
05:a7:a2:40:90:92:15:2d:d9:8c:cd:64:cf:56:4f:97:d8:f1:
f0:ac:b9:4d:9a:29:2b:2c:52:ef:93:47:f6:c5:86:6b:a8:a8:
0e:b6:1d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org