Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rmasucL7ERrWRHVw3NFVgvmKqbo.roa
File: rmasucL7ERrWRHVw3NFVgvmKqbo.roa (raw, json)
Hash identifier: 6G3HXyOiOgADy/HoM7W6hCN4Sb9J0EnXtVYr/n5igWI=
Subject key identifier: AE:66:AC:B9:C2:FB:11:1A:D6:44:75:70:DC:D1:55:82:F9:8A:A9:BA
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 08FC3933
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rmasucL7ERrWRHVw3NFVgvmKqbo.roa
Signing time: Sat 01 Jan 2022 16:00:22 +0000
ROA not before: Sat 01 Jan 2022 16:00:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30475
IP address blocks: 178.218.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150747443 (0x8fc3933)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae66acb9c2fb111ad6447570dcd15582f98aa9ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:34:ac:22:52:09:2d:13:96:d6:6a:d4:7c:2d:
58:10:13:98:b2:d2:b2:75:cb:58:aa:53:52:23:a7:
22:e6:90:35:5f:4b:1b:86:e6:d7:a5:c6:20:e7:81:
45:ec:dc:36:19:14:57:f9:a3:5a:6e:2f:ed:06:f6:
a8:69:72:4a:fc:e9:f4:9f:6b:4b:23:c3:44:f6:43:
4a:c7:d6:92:25:90:0e:4b:e0:ef:73:a6:c4:ec:f6:
0c:fa:07:68:22:1b:9e:65:27:d4:9b:79:84:cb:bf:
4c:09:30:bd:19:d6:31:cc:11:0f:b5:26:b5:c6:4f:
3c:d9:77:f0:86:a5:e5:a5:e5:d3:a7:61:a5:30:70:
9e:c8:b7:d8:c0:a6:68:30:e0:f0:cd:e0:00:0c:51:
5f:54:41:c2:7a:d1:27:27:06:f1:d5:80:3e:c5:8f:
b4:05:61:bb:20:68:ec:c9:94:32:8a:f5:03:a5:71:
26:bf:5d:89:00:78:3f:cb:64:70:63:2a:4e:fd:7a:
93:77:8d:c1:ef:aa:04:35:ca:b2:30:98:53:19:29:
71:ee:ae:f1:d5:cf:3b:ff:7b:67:2c:71:21:2a:45:
05:33:a8:56:1f:8e:1f:3b:93:fe:1d:51:b4:d2:90:
8e:93:12:83:59:75:fb:4c:65:10:6c:a9:9d:54:96:
c8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:66:AC:B9:C2:FB:11:1A:D6:44:75:70:DC:D1:55:82:F9:8A:A9:BA
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rmasucL7ERrWRHVw3NFVgvmKqbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.218.146.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:32:b7:3b:18:c1:9b:9b:59:64:d8:07:05:49:5a:f4:cc:4b:
9d:9a:b7:96:d6:5a:ce:8a:c2:ad:67:d1:dd:8c:0d:9d:e8:36:
f5:4b:b4:9b:06:56:d0:47:9c:15:b2:9f:44:a0:3a:06:ce:2f:
44:51:ab:63:45:01:5f:cc:a3:5c:21:9e:76:9b:d0:ad:6f:9e:
30:9f:c3:a6:f6:95:36:5a:12:cd:ee:3e:35:96:b0:3c:a8:30:
44:b2:ba:0b:ec:83:64:db:f7:18:25:f7:a7:45:0f:ac:63:5c:
b7:6c:64:55:2a:0b:e2:81:6f:30:55:ac:31:22:c1:4d:21:1d:
86:6f:aa:46:64:e4:ab:da:42:74:b7:a5:b2:58:77:36:7f:16:
d4:ad:19:69:86:01:58:d8:d7:e6:a8:88:b1:cf:7d:a7:02:a1:
db:19:47:ff:85:02:46:ba:07:65:b1:73:f4:f5:41:e6:80:74:
ef:d1:28:c8:3d:1f:c7:3c:7e:50:b5:6f:f0:ad:86:93:b3:99:
37:6a:86:ef:e6:a1:7e:93:19:3e:33:63:be:c2:83:aa:83:df:
41:77:2f:2a:49:0a:b0:84:fb:2e:0b:92:9b:9e:cf:6a:62:52:
03:5c:58:51:b3:f1:dc:bb:c4:2b:3e:05:d2:03:99:ea:96:f1:
08:11:47:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org