Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/r2QdI7hubhz3xC69En4yzvPYZJU.roa
File: r2QdI7hubhz3xC69En4yzvPYZJU.roa (raw, json)
Hash identifier: iIIAHT5kqeXMei41ruVYHpXFSPBMGfyW54Ko0Y0TPr8=
Subject key identifier: AF:64:1D:23:B8:6E:6E:1C:F7:C4:2E:BD:12:7E:32:CE:F3:D8:64:95
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018530BA2E597492A1EB3A2007D6870D804F
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/r2QdI7hubhz3xC69En4yzvPYZJU.roa
Signing time: Tue 20 Dec 2022 18:09:46 +0000
ROA not before: Tue 20 Dec 2022 18:09:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 178.175.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:ba:2e:59:74:92:a1:eb:3a:20:07:d6:87:0d:80:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Dec 20 18:09:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af641d23b86e6e1cf7c42ebd127e32cef3d86495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:12:6e:cc:4c:52:b2:38:aa:24:d0:8d:fe:
8e:1f:a7:d7:fd:ee:5a:ce:b4:3d:ee:a6:5e:4e:33:
1e:20:ca:4d:d9:a5:83:66:11:b5:a2:08:63:55:f3:
b3:d0:13:04:09:c4:7a:de:38:de:53:ea:ed:f5:40:
08:9b:f9:2d:35:a2:40:d7:67:1d:27:f3:4c:d6:22:
42:b2:12:55:5b:37:70:63:3a:e5:2a:48:98:3d:39:
c0:05:d3:74:11:c2:77:2c:ee:d2:87:af:0c:4d:88:
6f:b0:24:2d:fd:c6:cb:2c:92:38:1a:ff:56:ce:6e:
12:af:53:f8:60:50:01:47:3a:04:dc:9c:9a:05:92:
2c:30:11:5a:ed:e9:63:f5:12:f8:2a:5e:f3:15:e0:
8b:3c:d2:4e:56:9a:35:79:78:54:b0:e4:82:7c:c9:
0f:12:bb:08:98:af:cf:36:6d:00:77:5a:d1:6f:1f:
55:e6:cc:d4:59:1a:c2:13:be:eb:d8:06:7f:0c:b7:
e8:c7:66:0a:ce:be:e8:31:53:e1:20:81:62:44:84:
c1:4c:ad:1d:06:e8:e9:11:66:67:70:e2:15:ea:5b:
07:c2:49:a5:b9:9d:35:ea:5b:d0:ae:a0:bb:67:f3:
3a:b6:89:d5:14:da:34:b6:dd:f4:26:17:67:18:64:
e3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:64:1D:23:B8:6E:6E:1C:F7:C4:2E:BD:12:7E:32:CE:F3:D8:64:95
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/r2QdI7hubhz3xC69En4yzvPYZJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.176.0/22
Signature Algorithm: sha256WithRSAEncryption
32:8b:14:85:98:05:22:31:78:1f:21:7a:1d:68:b3:d7:31:c3:
3d:5b:72:c7:9f:50:da:b4:bd:1f:02:e6:b2:31:e8:e5:b5:55:
d1:c5:f3:e2:17:27:5f:af:12:8c:34:6e:8b:4f:98:47:e9:b7:
e2:07:8f:82:50:15:67:06:2c:64:bd:1b:8d:3c:bf:fd:6f:d3:
b9:24:11:19:31:6e:f8:b0:9c:38:50:ee:1a:ac:02:12:51:33:
ce:46:c6:96:6b:b3:ab:d7:32:71:ca:1f:02:15:42:6f:69:8e:
cc:8a:30:09:82:03:09:e3:e2:29:23:ac:e8:3c:08:44:5f:ff:
a7:df:fb:29:9c:c8:7d:73:26:04:14:43:54:be:86:9f:81:29:
9d:63:60:df:9d:12:81:6b:32:e5:6d:14:bf:4a:42:cd:f1:29:
df:0c:fd:f6:6a:3a:54:c6:0c:39:41:15:31:96:1e:3b:19:55:
d5:f7:b5:97:7c:97:bb:f3:d7:3d:d6:18:d0:16:0e:18:24:d4:
86:f6:bd:c9:39:2f:ad:d3:54:4c:59:ec:78:8b:90:58:64:dd:
6e:65:ff:a1:63:97:03:93:82:7a:36:a4:b3:f6:96:7a:0d:9a:
73:15:d8:3f:48:c1:97:7d:02:92:3a:b7:70:44:83:62:aa:0e:
0a:f5:9c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:27 2024 by rpki-client on console-ams.rpki-client.org