Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/1Lje4A8dt0_LOykqJe5GHkXMp1M.roa
File: 1Lje4A8dt0_LOykqJe5GHkXMp1M.roa (raw, json)
Hash identifier: uDSUANNhM7gaMqylPF14rjmE32cfesLAL6XJcehh1zw=
Subject key identifier: D4:B8:DE:E0:0F:1D:B7:4F:CB:3B:29:2A:25:EE:46:1E:45:CC:A7:53
Certificate issuer: /CN=2c9dec8ecd012596869b51483c20e94dd9b41fc4
Certificate serial: 0103251E
Authority key identifier: 2C:9D:EC:8E:CD:01:25:96:86:9B:51:48:3C:20:E9:4D:D9:B4:1F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJ3sjs0BJZaGm1FIPCDpTdm0H8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/1Lje4A8dt0_LOykqJe5GHkXMp1M.roa
Signing time: Sat 01 Jan 2022 08:04:36 +0000
ROA not before: Sat 01 Jan 2022 08:04:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 178.23.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16983326 (0x103251e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c9dec8ecd012596869b51483c20e94dd9b41fc4
Validity
Not Before: Jan 1 08:04:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4b8dee00f1db74fcb3b292a25ee461e45cca753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ea:5a:1c:50:11:cf:bd:84:ea:6a:cc:4e:04:
6a:7e:1d:e5:92:1e:f3:f2:77:2b:a7:73:3a:e7:a1:
35:18:bf:95:21:ba:a1:54:c1:cd:41:a9:e1:19:59:
16:80:b6:a1:a0:31:1b:b1:cb:96:93:f8:9c:6a:51:
eb:dc:d1:58:f0:58:eb:51:88:44:5b:d7:78:c5:9c:
2f:ab:24:00:5a:b8:c8:c7:e8:c4:89:71:44:36:a3:
42:43:bb:1e:30:cd:cf:38:e4:c9:17:4e:ee:0d:2d:
c3:4c:6b:f8:a2:f4:4f:1f:06:d3:b9:1b:a0:32:3f:
1b:0b:c5:18:cd:e0:61:39:47:42:9c:e1:fb:07:7b:
42:f7:7a:82:d2:b3:b4:e8:2d:9d:c7:a7:a8:d3:fc:
cf:3f:30:27:7f:16:37:5e:d6:62:a8:85:f1:46:fc:
54:c4:1e:12:4f:a3:fd:f5:c7:db:f8:71:b4:95:c6:
96:76:71:5f:81:7a:15:aa:b4:e0:f5:18:03:3c:14:
82:e0:3e:46:b3:3a:81:c6:74:3e:15:b8:44:c4:21:
19:cc:36:21:fb:6e:e1:c4:06:d0:81:79:93:9e:34:
d7:92:bb:65:43:9b:20:5c:a3:46:27:f2:8c:4a:ff:
51:fc:2a:de:8f:c9:73:d9:74:1a:d8:ec:c8:7d:b9:
9e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B8:DE:E0:0F:1D:B7:4F:CB:3B:29:2A:25:EE:46:1E:45:CC:A7:53
X509v3 Authority Key Identifier:
keyid:2C:9D:EC:8E:CD:01:25:96:86:9B:51:48:3C:20:E9:4D:D9:B4:1F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJ3sjs0BJZaGm1FIPCDpTdm0H8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/1Lje4A8dt0_LOykqJe5GHkXMp1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/LJ3sjs0BJZaGm1FIPCDpTdm0H8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.23.191.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:3e:ef:1f:9a:da:de:81:d0:c2:53:1a:7d:6e:8d:a3:f6:ed:
76:13:19:fa:fc:e7:8d:15:82:9c:b3:8a:7f:0d:bc:20:5c:94:
36:ec:85:6a:08:43:2d:9d:b7:26:f9:29:25:7d:b0:88:d6:60:
18:7b:d1:b8:e2:aa:e6:9d:df:54:04:7b:ae:1b:dd:b0:8b:57:
2a:2c:19:cb:71:b2:59:bb:cf:0f:08:36:86:43:4b:42:b9:49:
e3:53:a9:62:70:0f:7f:96:32:ff:b1:f1:c1:08:ec:a2:71:6a:
c9:e7:e0:91:b9:f2:b8:de:ca:b3:18:6f:02:81:c7:4d:dc:ac:
56:c8:b9:df:5f:c0:0b:90:ea:22:ce:d8:43:90:c7:31:5f:ad:
84:d2:c5:7c:07:9f:ad:73:f9:5c:69:38:8d:fe:d3:0d:9b:9d:
af:b4:af:d8:a1:96:08:03:78:43:3a:dc:45:7a:92:40:e5:5f:
f8:e4:e1:a9:6e:5b:f1:ac:8f:74:d4:47:2d:6d:75:23:9b:95:
c7:4b:21:f7:4a:9c:10:36:4f:d7:10:c5:89:43:c2:a9:b1:72:
c9:b6:4e:bc:d5:a3:5e:bf:11:85:82:71:0b:b9:58:70:91:ea:
c6:cb:35:2f:45:b1:9e:be:cc:23:2f:1b:2f:2d:48:75:09:5c:
3f:cc:ca:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:16 2023 by rpki-client on console-fra.rpki-client.org