Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/15fff4-966b-4e0a-abac-05d58f0cb88c/1/7ath9d-iJTTJEwF4O_156fVWYL8.roa
File: 7ath9d-iJTTJEwF4O_156fVWYL8.roa (raw, json)
Hash identifier: Q38ApS2dbEqJFJ9PkJDTB6+amAHLirflbEfNJf+/8sk=
Subject key identifier: ED:AB:61:F5:DF:A2:25:34:C9:13:01:78:3B:FD:79:E9:F5:56:60:BF
Certificate issuer: /CN=d93a54f02f49f45ad5d73e5551d096181bce3f6e
Certificate serial: 01853442B82E19566C531A8B84F293AB36D9
Authority key identifier: D9:3A:54:F0:2F:49:F4:5A:D5:D7:3E:55:51:D0:96:18:1B:CE:3F:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2TpU8C9J9FrV1z5VUdCWGBvOP24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/15fff4-966b-4e0a-abac-05d58f0cb88c/1/7ath9d-iJTTJEwF4O_156fVWYL8.roa
Signing time: Wed 21 Dec 2022 10:37:45 +0000
ROA not before: Wed 21 Dec 2022 10:37:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201194
IP address blocks: 178.20.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:42:b8:2e:19:56:6c:53:1a:8b:84:f2:93:ab:36:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93a54f02f49f45ad5d73e5551d096181bce3f6e
Validity
Not Before: Dec 21 10:37:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edab61f5dfa22534c91301783bfd79e9f55660bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:20:2d:3f:7c:0f:5c:f1:9b:a6:6f:26:75:12:
8e:ba:fc:08:d8:45:f7:ec:31:7b:38:55:b8:33:0d:
a7:5a:20:d2:86:16:aa:2a:56:39:20:a5:d0:b8:3e:
5d:8e:66:6b:fb:b7:7f:88:18:10:e2:cf:61:62:bb:
48:ba:da:94:b3:62:54:d7:6f:f6:93:ca:fe:48:d2:
83:33:01:63:03:d3:91:2f:f2:6a:66:64:7c:af:a1:
0d:d4:16:3d:00:7b:91:aa:d1:4e:d5:d7:5b:26:e2:
ca:69:76:b2:8b:5d:ee:b0:54:a3:d8:01:4b:14:c7:
6a:81:14:04:6c:d4:97:62:f8:dc:ff:c7:b3:3f:a2:
46:31:d6:0a:42:b0:de:26:c2:37:56:c8:6d:b9:1d:
a1:2a:18:91:ee:6b:b2:ce:51:bd:53:55:ad:36:1c:
c8:72:76:8f:33:63:c8:63:93:ec:af:61:ba:b1:45:
e8:e9:94:2d:64:80:11:a7:32:be:c7:5c:0b:b6:c1:
61:b7:f0:ff:be:d5:1f:27:90:15:38:d8:d6:f2:63:
12:0b:19:4c:de:a1:f9:c3:ff:b1:20:06:cc:75:45:
f0:2c:a3:98:e5:45:c3:67:d8:a4:b4:fc:0d:61:19:
8c:c6:23:ae:ca:62:52:35:71:a5:ef:79:0a:82:af:
a4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:AB:61:F5:DF:A2:25:34:C9:13:01:78:3B:FD:79:E9:F5:56:60:BF
X509v3 Authority Key Identifier:
keyid:D9:3A:54:F0:2F:49:F4:5A:D5:D7:3E:55:51:D0:96:18:1B:CE:3F:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2TpU8C9J9FrV1z5VUdCWGBvOP24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/15fff4-966b-4e0a-abac-05d58f0cb88c/1/7ath9d-iJTTJEwF4O_156fVWYL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/15fff4-966b-4e0a-abac-05d58f0cb88c/1/2TpU8C9J9FrV1z5VUdCWGBvOP24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.20.208.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:df:79:61:4c:14:ef:02:97:7e:cb:25:24:e9:02:99:d1:3d:
4b:64:6a:e1:0a:7b:5b:f1:ec:1a:72:f1:43:b2:26:f0:91:ad:
98:8a:69:4b:ad:04:c9:d2:71:9a:bb:a5:26:54:0f:eb:26:7a:
ee:94:4e:68:2a:11:69:d3:de:5a:b9:03:f9:8e:15:cc:56:78:
a6:39:9b:cc:19:f4:73:dd:9d:af:26:1c:57:76:42:d6:ce:6c:
52:57:fe:c8:34:cf:da:46:51:14:89:0b:39:d3:93:6e:65:34:
ef:c5:ce:89:f1:29:d8:f7:37:da:3e:99:bb:55:54:1f:7a:d3:
a6:6e:d2:5e:1e:5c:7e:d4:94:7a:9d:4f:6c:52:02:f9:01:d6:
64:4f:74:39:7a:0d:47:dd:e5:1b:46:ac:74:99:9c:18:3b:81:
74:98:1a:de:62:e0:80:18:f1:95:09:a9:14:06:06:6c:07:e1:
5f:a1:1f:40:f6:71:81:67:68:a2:fe:85:a0:da:2f:04:5c:0e:
63:e7:a1:59:a8:37:3f:66:06:db:57:96:50:2b:4a:41:d5:5b:
76:90:ce:d4:00:79:58:1b:a4:4b:01:6f:fc:72:c5:39:ba:d7:
b0:53:e6:39:5a:62:29:85:da:bf:4a:8f:c3:68:d5:fd:97:be:
1c:44:1a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:10 2023 by rpki-client on console-fra.rpki-client.org