Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/e9YAEQXuTKo87HME6H0NxmbryYE.roa
File: e9YAEQXuTKo87HME6H0NxmbryYE.roa (raw, json)
Hash identifier: p4ml14potBEc9jU4b9lCALIbClUhXdaMdE519cdN0SE=
Subject key identifier: 7B:D6:00:11:05:EE:4C:AA:3C:EC:73:04:E8:7D:0D:C6:66:EB:C9:81
Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Certificate serial: 08239380
Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/e9YAEQXuTKo87HME6H0NxmbryYE.roa
Signing time: Sat 01 Jan 2022 06:03:20 +0000
ROA not before: Sat 01 Jan 2022 06:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56724
IP address blocks: 178.236.140.0/23 maxlen: 23
178.236.140.0/22 maxlen: 22
178.236.142.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136549248 (0x8239380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Validity
Not Before: Jan 1 06:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bd6001105ee4caa3cec7304e87d0dc666ebc981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:bf:7c:dc:be:8c:66:a7:58:c4:c4:5b:92:7d:
9b:f3:e9:5c:2b:16:c7:ed:5f:3d:e4:f8:16:10:a1:
8b:70:ba:13:4c:cf:19:73:f9:4f:28:f8:eb:57:86:
76:d9:76:51:fe:f1:ad:41:eb:01:6e:83:69:c0:7f:
12:fa:23:e7:85:ea:25:3e:83:87:8b:3d:a3:5b:fc:
fb:b1:b1:ce:26:13:ab:b0:c8:8d:43:96:0f:28:2a:
bf:08:9a:15:ce:18:e3:eb:77:b3:76:ce:2d:80:ed:
81:db:e8:f0:8a:15:eb:d0:62:e6:38:11:d9:8f:5c:
4c:f7:64:6b:52:42:2a:f9:98:5d:f8:57:9f:67:33:
8c:07:75:b8:67:78:dc:0e:c4:8d:86:ca:02:c1:b2:
e5:7a:18:13:74:df:8a:5c:84:1e:42:39:8f:93:2a:
4c:97:ff:8f:9b:ac:65:9c:df:00:bf:57:9b:e0:ec:
9a:b8:f9:73:50:5d:df:63:65:9a:ef:d2:85:36:ad:
67:3e:ef:32:05:fc:47:f5:83:3f:87:d0:40:80:04:
87:b3:73:3f:cb:e2:c6:f0:46:37:a3:a8:1b:26:39:
70:67:0d:46:fe:44:97:92:3b:8f:18:81:3c:eb:44:
a0:35:6e:b3:b9:02:67:59:9d:ea:41:c9:b8:2e:1d:
5a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D6:00:11:05:EE:4C:AA:3C:EC:73:04:E8:7D:0D:C6:66:EB:C9:81
X509v3 Authority Key Identifier:
keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/e9YAEQXuTKo87HME6H0NxmbryYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.140.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:83:df:04:e7:d5:6a:d6:18:77:43:1e:de:ac:55:26:60:11:
3d:b0:0b:01:8d:16:d7:52:90:bd:32:7e:c6:51:4d:a0:de:f0:
0e:bd:1e:5d:ae:a2:49:fb:62:ae:65:5c:81:4a:63:cc:51:86:
03:24:a4:b1:67:35:3a:9b:0e:47:06:01:aa:36:06:5e:64:86:
01:90:8a:47:bc:47:58:5a:5d:a1:0f:42:f3:1b:b4:df:c1:d3:
b7:fc:14:23:33:cd:72:32:d3:08:63:b3:78:9f:ea:4d:fe:be:
24:d0:67:d5:18:34:59:5b:cf:ca:fc:04:2a:9f:3f:21:4b:34:
bb:e2:90:de:62:f5:1d:fa:5c:8d:c7:7a:24:3d:b8:05:44:a4:
83:42:32:86:d4:77:77:73:58:87:2c:1c:1c:4d:c8:7b:61:fd:
e3:ee:6d:a5:d0:8f:cf:67:5e:0a:c3:41:92:b3:0d:c4:af:5a:
60:90:83:1a:64:87:00:e6:65:b8:41:2d:03:53:b4:49:bb:21:
20:e6:c0:29:80:6d:56:22:72:97:92:90:75:bf:8c:f6:21:9d:
4e:de:a7:36:13:57:8e:e0:c4:27:2d:6b:4f:7b:e4:d2:45:26:
d5:e3:a5:ba:76:b6:a3:41:db:da:6c:0f:f9:3f:6d:85:d2:c9:
f3:a2:57:de
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECCOTgDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NzI1ODhjMDBlZWY3MTU4MDllYjVmZGQ2ZDY3MTdjYzI4YzBkZmFjMB4XDTIyMDEw
MTA2MDMyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2JkNjAwMTEwNWVl
NGNhYTNjZWM3MzA0ZTg3ZDBkYzY2NmViYzk4MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIO/fNy+jGanWMTEW5J9m/PpXCsWx+1fPeT4FhChi3C6E0zP
GXP5Tyj461eGdtl2Uf7xrUHrAW6DacB/Evoj54XqJT6Dh4s9o1v8+7GxziYTq7DI
jUOWDygqvwiaFc4Y4+t3s3bOLYDtgdvo8IoV69Bi5jgR2Y9cTPdka1JCKvmYXfhX
n2czjAd1uGd43A7EjYbKAsGy5XoYE3TfilyEHkI5j5MqTJf/j5usZZzfAL9Xm+Ds
mrj5c1Bd32Nlmu/ShTatZz7vMgX8R/WDP4fQQIAEh7NzP8vixvBGN6OoGyY5cGcN
Rv5El5I7jxiBPOtEoDVus7kCZ1md6kHJuC4dWvcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR71gARBe5MqjzscwTofQ3GZuvJgTAfBgNVHSMEGDAWgBS3JYjADu9xWAnr
X91tZxfMKMDfrDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3R5V0l3QTd2Y1ZnSjYxX2RiV2NYekNqQTM2dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjgvZWJiYWM5LWZlZTctNGYzYi04Y2Q1LTdhNDEyNTRlYWFjYS8x
L2U5WUFFUVh1VEtvODdITUU2SDBOeG1icnlZRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjgv
ZWJiYWM5LWZlZTctNGYzYi04Y2Q1LTdhNDEyNTRlYWFjYS8xL3R5V0l3QTd2Y1Zn
SjYxX2RiV2NYekNqQTM2dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArLsjDANBgkqhkiG9w0BAQsFAAOC
AQEAOoPfBOfVatYYd0Me3qxVJmARPbALAY0W11KQvTJ+xlFNoN7wDr0eXa6iSfti
rmVcgUpjzFGGAySksWc1OpsORwYBqjYGXmSGAZCKR7xHWFpdoQ9C8xu038HTt/wU
IzPNcjLTCGOzeJ/qTf6+JNBn1Rg0WVvPyvwEKp8/IUs0u+KQ3mL1Hfpcjcd6JD24
BUSkg0IyhtR3d3NYhywcHE3Ie2H94+5tpdCPz2deCsNBkrMNxK9aYJCDGmSHAOZl
uEEtA1O0SbshIObAKYBtViJyl5KQdb+M9iGdTt6nNhNXjuDEJy1rT3vk0kUm1eOl
una2o0Hb2mwP+T9thdLJ86JX3g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:35 2024 by rpki-client on console-ams.rpki-client.org