Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/Znz0b5y7_JWyeLPlc0oVs72whvI.roa
File: Znz0b5y7_JWyeLPlc0oVs72whvI.roa (raw, json)
Hash identifier: g9j6dPO4Kv+iT92+1iZ/MzXQpf1bf1j6IzxEWEc9mBQ=
Subject key identifier: 66:7C:F4:6F:9C:BB:FC:95:B2:78:B3:E5:73:4A:15:B3:BD:B0:86:F2
Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Certificate serial: 08225AF6
Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/Znz0b5y7_JWyeLPlc0oVs72whvI.roa
Signing time: Sat 01 Jan 2022 06:03:19 +0000
ROA not before: Sat 01 Jan 2022 06:03:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42775
IP address blocks: 178.236.136.0/23 maxlen: 23
185.39.192.0/22 maxlen: 22
2a02:1710:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136469238 (0x8225af6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Validity
Not Before: Jan 1 06:03:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=667cf46f9cbbfc95b278b3e5734a15b3bdb086f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6c:40:c1:23:50:d5:bd:3d:60:77:49:c7:58:
ec:38:c0:71:3f:82:38:1d:7f:7d:3e:52:68:23:0b:
37:b4:49:1f:41:a1:ca:b9:d6:3d:10:b7:67:32:7c:
30:78:16:3f:d8:cb:01:10:2d:6e:ee:04:ef:af:37:
f1:59:0a:82:f6:ea:35:d6:10:73:02:89:2f:5f:af:
dd:e5:5b:4e:48:51:79:25:9a:08:07:ba:76:9c:36:
b8:eb:d4:20:b5:c7:c7:33:3b:5d:d4:af:67:42:0a:
fd:82:e3:f4:cf:55:89:87:2b:9d:6d:3e:b0:e3:37:
89:f3:41:d4:af:33:4e:83:9c:e4:8e:59:d9:e6:92:
70:c4:cf:97:5b:0f:02:fd:45:53:36:e5:10:2f:3f:
b5:08:59:c4:08:ca:8b:fe:f6:6a:4f:70:38:f6:73:
5e:bc:f1:1b:a5:d2:83:71:77:88:8c:ad:32:91:bb:
c3:b2:be:78:b6:fe:24:65:b7:50:38:d8:3b:0d:fd:
2e:b4:9b:27:e9:36:a8:3d:27:3c:8b:2f:88:6d:2f:
b6:50:e6:d5:c6:86:e8:43:1f:bf:fb:71:15:4c:3d:
78:a6:69:d6:27:17:58:16:b2:8d:cf:e0:74:8d:b0:
61:ca:63:c5:59:f2:85:fa:f9:81:ff:92:f6:da:54:
2c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7C:F4:6F:9C:BB:FC:95:B2:78:B3:E5:73:4A:15:B3:BD:B0:86:F2
X509v3 Authority Key Identifier:
keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/Znz0b5y7_JWyeLPlc0oVs72whvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.136.0/23
185.39.192.0/22
IPv6:
2a02:1710:2::/48
Signature Algorithm: sha256WithRSAEncryption
1f:da:1d:f3:00:b5:7b:05:64:91:ea:19:b2:60:6b:c2:60:af:
00:64:1f:31:b6:63:57:04:61:76:09:5c:ab:f7:15:03:44:92:
a7:4c:fc:85:fc:01:e8:5b:28:b4:f8:b6:5b:ca:8e:43:5b:a8:
a8:8a:20:b5:d3:62:3d:69:ab:ff:45:8f:a9:2e:56:fd:10:0f:
75:09:7e:01:37:35:92:39:72:96:b0:ce:3e:ae:f7:47:4a:bf:
66:ad:c4:5e:44:72:03:19:07:23:ef:9d:48:10:af:24:00:7f:
20:59:a3:0d:b3:4d:bd:92:45:4c:8d:3d:4e:bf:59:9f:d4:00:
d0:50:e7:b5:72:05:f5:a2:bf:20:47:3c:aa:44:cf:ca:6b:1e:
62:d5:fc:27:1d:3d:c2:ec:4c:65:59:27:d0:a9:f5:81:07:b3:
a4:67:26:22:99:8c:d3:07:64:35:53:5b:14:f4:a9:77:af:c2:
f0:8f:91:68:8f:3f:8a:99:ea:ba:2d:63:78:48:85:20:9b:d9:
56:0a:f2:ec:07:86:00:7b:fc:39:f7:40:2c:2f:bd:78:ff:69:
c5:f1:57:5e:87:1d:28:06:bd:09:6f:9b:9f:9d:c1:e6:ff:22:
49:fe:3a:d6:b1:29:3b:59:15:df:5a:11:c3:60:bf:59:2f:9b:
3a:8c:47:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:14 2024 by rpki-client on console-fra.rpki-client.org