Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/a6831e-f3ae-455f-a395-5db851d6f086/1/iL32-Km26iXF5lILcuw-7B1h5js.roa
File: iL32-Km26iXF5lILcuw-7B1h5js.roa (raw, json)
Hash identifier: mv+0nqBBog2whWBPcC5om/kDUVDQgYHfuwfaPI8z0js=
Subject key identifier: 88:BD:F6:F8:A9:B6:EA:25:C5:E6:52:0B:72:EC:3E:EC:1D:61:E6:3B
Certificate issuer: /CN=a3ceb405987a3aa8bbe599d8ef4663c9242a34b8
Certificate serial: 03386644
Authority key identifier: A3:CE:B4:05:98:7A:3A:A8:BB:E5:99:D8:EF:46:63:C9:24:2A:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o860BZh6Oqi75ZnY70ZjySQqNLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/a6831e-f3ae-455f-a395-5db851d6f086/1/iL32-Km26iXF5lILcuw-7B1h5js.roa
Signing time: Sat 01 Jan 2022 06:54:53 +0000
ROA not before: Sat 01 Jan 2022 06:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43566
IP address blocks: 178.23.24.0/22 maxlen: 24
178.23.24.0/21 maxlen: 24
178.23.24.0/24 maxlen: 24
178.23.26.0/23 maxlen: 24
178.23.28.0/22 maxlen: 24
178.23.25.0/24 maxlen: 24
78.110.224.0/20 maxlen: 24
78.110.224.0/21 maxlen: 24
78.110.232.0/21 maxlen: 24
2a11:7f80::/32 maxlen: 36
2a11:7f80:8000::/33 maxlen: 36
2a11:7f80::/33 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54027844 (0x3386644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3ceb405987a3aa8bbe599d8ef4663c9242a34b8
Validity
Not Before: Jan 1 06:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88bdf6f8a9b6ea25c5e6520b72ec3eec1d61e63b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ef:ee:90:2e:88:c0:91:d6:ab:29:ea:6e:f0:
67:46:81:c1:a7:64:3d:f7:bd:e0:cb:ac:1d:a5:44:
57:c4:a1:c1:7c:a4:a2:21:4a:09:76:6d:06:04:36:
3c:0c:05:28:02:27:e8:f8:b6:c3:11:c0:8d:9a:32:
5a:62:ba:28:b4:ee:f9:a9:b7:40:bf:ca:7a:9c:68:
63:16:f0:5e:4d:19:f7:3a:08:9c:29:fd:d9:ae:d6:
5c:b6:9f:ea:7c:58:a0:40:1b:57:fc:97:8b:41:d7:
be:24:31:d0:f9:b6:9d:33:a0:8f:07:d1:df:c9:a9:
3e:46:9f:52:fa:fb:df:cc:e9:aa:9d:16:6d:b3:b8:
33:f8:15:bf:38:6a:94:85:f8:e0:2d:b1:9c:4c:a4:
33:b3:ea:cd:00:2d:f7:48:6f:43:f5:69:c7:ec:50:
b7:8f:22:af:87:40:71:c8:f1:8e:df:19:07:13:63:
12:23:fd:0a:d5:05:3c:d9:a8:67:7a:bc:9f:d0:48:
fc:b5:b2:40:fd:0a:4e:26:38:48:94:27:29:79:82:
39:2d:e8:26:b8:97:2f:a1:90:ad:46:41:ee:26:3d:
3f:7a:4d:74:d1:99:45:9e:ee:79:85:fa:fb:6f:11:
97:e1:8d:dc:68:28:80:a6:7c:18:56:00:10:5d:ee:
d4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:BD:F6:F8:A9:B6:EA:25:C5:E6:52:0B:72:EC:3E:EC:1D:61:E6:3B
X509v3 Authority Key Identifier:
keyid:A3:CE:B4:05:98:7A:3A:A8:BB:E5:99:D8:EF:46:63:C9:24:2A:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o860BZh6Oqi75ZnY70ZjySQqNLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/a6831e-f3ae-455f-a395-5db851d6f086/1/iL32-Km26iXF5lILcuw-7B1h5js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/a6831e-f3ae-455f-a395-5db851d6f086/1/o860BZh6Oqi75ZnY70ZjySQqNLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.110.224.0/20
178.23.24.0/21
IPv6:
2a11:7f80::/32
Signature Algorithm: sha256WithRSAEncryption
b7:72:c2:f2:f7:b5:6f:c5:8e:c0:c6:37:93:d8:72:36:3d:a6:
40:ec:6d:16:f0:7c:0a:ac:99:12:c8:35:61:31:54:ec:68:87:
92:4a:16:36:39:5e:79:c4:40:57:17:6b:9d:3b:c5:2c:68:fa:
9f:7f:42:af:64:f0:6a:14:1b:f4:55:ac:a0:ff:d2:e9:c0:d7:
13:cd:6c:e2:5d:94:78:10:63:2e:b5:42:64:66:26:82:33:ff:
6f:22:97:a9:3c:37:dc:e9:94:e3:47:f6:3a:c3:66:b8:7b:b4:
f5:48:ab:54:13:63:1c:74:41:3f:a4:4b:91:22:21:b4:27:f6:
f2:94:86:fd:90:c3:d5:28:9a:22:05:87:c4:56:4b:9a:90:c9:
8c:a7:e1:05:79:1a:08:01:53:31:fe:cf:49:8f:e6:8e:18:a0:
78:18:0f:f9:3d:43:95:10:e0:8c:66:bd:38:ef:15:b2:fd:08:
dd:7c:e8:d0:46:f4:5e:25:21:cf:0f:e7:3d:75:c9:ab:6f:33:
bb:e6:4c:e8:f2:5c:ee:db:b5:9c:fa:54:05:7b:42:3a:39:e4:
10:74:98:a4:15:52:59:22:20:ed:7d:d3:8d:cd:bb:b8:c3:20:
10:41:03:32:13:b8:1a:65:86:2e:55:97:2e:96:ee:7b:94:e7:
28:e5:d4:c5
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEAzhmRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
M2NlYjQwNTk4N2EzYWE4YmJlNTk5ZDhlZjQ2NjNjOTI0MmEzNGI4MB4XDTIyMDEw
MTA2NTQ1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODhiZGY2ZjhhOWI2
ZWEyNWM1ZTY1MjBiNzJlYzNlZWMxZDYxZTYzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOXv7pAuiMCR1qsp6m7wZ0aBwadkPfe94MusHaVEV8ShwXyk
oiFKCXZtBgQ2PAwFKAIn6Pi2wxHAjZoyWmK6KLTu+am3QL/KepxoYxbwXk0Z9zoI
nCn92a7WXLaf6nxYoEAbV/yXi0HXviQx0Pm2nTOgjwfR38mpPkafUvr738zpqp0W
bbO4M/gVvzhqlIX44C2xnEykM7PqzQAt90hvQ/Vpx+xQt48ir4dAccjxjt8ZBxNj
EiP9CtUFPNmoZ3q8n9BI/LWyQP0KTiY4SJQnKXmCOS3oJriXL6GQrUZB7iY9P3pN
dNGZRZ7ueYX6+28Rl+GN3GgogKZ8GFYAEF3u1IsCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSIvfb4qbbqJcXmUgty7D7sHWHmOzAfBgNVHSMEGDAWgBSjzrQFmHo6qLvl
mdjvRmPJJCo0uDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L284NjBCWmg2T3FpNzVablk3MFpqeVNRcU5MZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvYTY4MzFlLWYzYWUtNDU1Zi1hMzk1LTVkYjg1MWQ2ZjA4Ni8x
L2lMMzItS20yNmlYRjVsSUxjdXctN0IxaDVqcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
YTY4MzFlLWYzYWUtNDU1Zi1hMzk1LTVkYjg1MWQ2ZjA4Ni8xL284NjBCWmg2T3Fp
NzVablk3MFpqeVNRcU5MZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEBE5u4AMEA7IXGDANBAIAAjAHAwUA
KhF/gDANBgkqhkiG9w0BAQsFAAOCAQEAt3LC8ve1b8WOwMY3k9hyNj2mQOxtFvB8
CqyZEsg1YTFU7GiHkkoWNjleecRAVxdrnTvFLGj6n39Cr2TwahQb9FWsoP/S6cDX
E81s4l2UeBBjLrVCZGYmgjP/byKXqTw33OmU40f2OsNmuHu09UirVBNjHHRBP6RL
kSIhtCf28pSG/ZDD1SiaIgWHxFZLmpDJjKfhBXkaCAFTMf7PSY/mjhigeBgP+T1D
lRDgjGa9OO8Vsv0I3Xzo0Eb0XiUhzw/nPXXJq28zu+ZM6PJc7tu1nPpUBXtCOjnk
EHSYpBVSWSIg7X3Tjc27uMMgEEEDMhO4GmWGLlWXLpbue5TnKOXUxQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:55 2024 by rpki-client on console-fra.rpki-client.org