Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/O9Ebqy8nx0O6bMDhoPaUhO5XAXQ.roa
File: O9Ebqy8nx0O6bMDhoPaUhO5XAXQ.roa (raw, json)
Hash identifier: 2fR9B00YYO/k85F4QvLUEWgkdl1bvRPPWhOvBjjwxN4=
Subject key identifier: 3B:D1:1B:AB:2F:27:C7:43:BA:6C:C0:E1:A0:F6:94:84:EE:57:01:74
Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Certificate serial: 0827D2FF
Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/O9Ebqy8nx0O6bMDhoPaUhO5XAXQ.roa
Signing time: Sat 01 Jan 2022 06:03:22 +0000
ROA not before: Sat 01 Jan 2022 06:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207168
IP address blocks: 178.236.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136827647 (0x827d2ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Validity
Not Before: Jan 1 06:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bd11bab2f27c743ba6cc0e1a0f69484ee570174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:62:f0:6c:51:b5:15:ee:c1:10:cf:da:30:7c:
99:2c:a3:84:68:a9:3f:fc:9e:ce:8b:78:da:15:13:
75:53:d5:22:6a:85:c1:ec:70:cb:61:20:dd:31:f6:
3e:57:d4:a4:0c:48:59:2c:66:6b:5c:38:a9:39:2c:
db:26:75:a5:1e:6a:63:41:73:2c:f2:e1:6b:50:eb:
fa:9b:65:12:ca:42:f4:7e:ad:4d:4a:27:04:a8:0b:
02:05:e7:90:06:b5:42:fd:b9:90:e7:a8:2e:f0:0d:
25:54:47:a6:d3:ba:1b:7a:61:8c:20:bd:07:5f:b0:
5d:e4:98:9b:5c:aa:a7:a8:e5:d0:6b:72:ae:51:b5:
fb:68:19:1b:85:18:23:ab:70:b5:75:5c:01:04:de:
53:a0:49:50:3f:24:80:45:af:76:99:11:d8:db:1e:
e3:17:e9:19:45:aa:e9:ea:f3:76:5c:82:14:d3:74:
45:de:b2:26:ec:17:55:75:cd:a5:f8:80:64:e3:ef:
03:8e:56:a7:cc:6f:d5:8c:85:bc:63:a6:54:ca:1d:
04:35:91:70:cb:e0:a6:1f:fa:d1:b3:7e:ad:93:de:
aa:cc:b1:82:94:8e:a9:4c:e6:7f:2c:fd:01:4b:f1:
62:5f:6f:56:3e:6d:ce:a2:c9:6c:d7:61:f8:d9:c7:
1d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D1:1B:AB:2F:27:C7:43:BA:6C:C0:E1:A0:F6:94:84:EE:57:01:74
X509v3 Authority Key Identifier:
keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/O9Ebqy8nx0O6bMDhoPaUhO5XAXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.139.0/24
Signature Algorithm: sha256WithRSAEncryption
31:f3:b9:5c:08:fc:be:4f:ae:b2:17:07:f6:a8:ee:d7:ea:05:
7a:33:52:67:b4:06:66:52:ab:4a:44:47:08:bd:ae:0f:16:e3:
0b:15:ed:75:74:40:1a:b3:1f:4d:d6:ab:07:41:60:b8:f2:69:
04:dd:c2:13:85:ee:32:0f:b6:2a:e4:c8:0e:38:38:11:d6:98:
cc:1b:19:97:80:63:23:f3:99:e0:b9:1c:ff:4f:d0:b4:d9:fc:
ea:43:b3:10:db:0c:f1:d5:84:47:84:0a:61:2b:86:6e:3d:9c:
a4:83:db:e2:fd:39:8f:7a:99:8d:54:eb:a5:1c:58:29:8a:72:
d3:51:bd:8d:3b:95:6a:8f:e2:d9:9b:0d:4e:61:d2:82:12:a0:
9a:12:24:fb:56:49:e9:ba:f0:1a:0c:56:36:aa:68:27:37:48:
86:c1:ae:28:e9:3d:f1:10:4e:fb:35:6d:54:69:2f:c1:4c:f1:
0b:8b:f7:fb:16:2c:7a:00:7a:ea:d8:e5:ba:eb:7e:1b:49:00:
f1:bf:47:ee:27:13:53:54:66:4c:b7:6b:c9:4f:b8:2b:89:80:
a9:34:7c:dd:33:cf:81:14:5e:21:dd:6e:30:e9:a1:6c:1e:f4:
40:8c:2a:8c:66:33:55:de:3e:6e:cf:42:e0:36:27:f6:00:01:
03:df:4a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:35 2024 by rpki-client on console-ams.rpki-client.org