Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/jFfO7YfeSEwFOJy24a-58VmPr9w.roa
File: jFfO7YfeSEwFOJy24a-58VmPr9w.roa (raw, json)
Hash identifier: sIfI3T0eJwMG+m7OJRZZ7GArwTAwTC7kDkoC9H5kyuE=
Subject key identifier: 8C:57:CE:ED:87:DE:48:4C:05:38:9C:B6:E1:AF:B9:F1:59:8F:AF:DC
Certificate issuer: /CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f
Certificate serial: 32BE51DE
Authority key identifier: AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/jFfO7YfeSEwFOJy24a-58VmPr9w.roa
Signing time: Sat 01 Jan 2022 16:07:31 +0000
ROA not before: Sat 01 Jan 2022 16:07:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134679
IP address blocks: 178.237.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 851333598 (0x32be51de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f
Validity
Not Before: Jan 1 16:07:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c57ceed87de484c05389cb6e1afb9f1598fafdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7b:57:34:00:e7:9e:6d:67:d4:24:28:79:e5:
04:97:ee:8d:f7:3d:54:95:e0:cb:da:0e:14:6e:be:
71:c9:f9:ad:ee:8e:70:d2:04:37:6e:7d:16:eb:ad:
a8:3e:ba:6d:c6:40:45:25:b4:bd:ea:46:bb:c7:6f:
fd:7b:ad:10:17:a5:9e:f4:1e:83:10:f3:06:e0:74:
ba:0c:99:f2:1f:3f:bc:40:d4:ce:50:17:9c:8f:fd:
96:a6:49:3a:b8:3d:a1:52:bb:e6:7a:f1:57:c5:a0:
f8:c9:bf:9d:71:65:68:a4:20:f9:18:09:fb:36:2b:
84:7f:ea:86:fc:2a:08:28:f5:04:bc:78:3d:d1:7b:
12:9a:fe:64:41:d6:c1:66:e4:e4:ad:a4:bc:d2:f7:
9e:7e:ec:34:b2:36:b6:bd:77:31:4d:5b:9d:85:72:
5b:64:17:79:80:57:e5:1f:33:79:88:0a:30:3c:dc:
65:e7:81:a0:60:58:6a:09:3b:d6:df:59:23:29:ab:
12:f3:da:c0:8b:61:76:fd:5d:57:dc:a6:45:96:a9:
e8:c1:90:34:4e:48:b9:36:68:df:33:16:3e:4b:e0:
09:5d:d3:73:be:57:1c:16:c8:71:be:55:64:87:a1:
3b:21:af:19:1f:f2:ef:cc:cf:b9:c2:05:33:ee:72:
cf:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:57:CE:ED:87:DE:48:4C:05:38:9C:B6:E1:AF:B9:F1:59:8F:AF:DC
X509v3 Authority Key Identifier:
keyid:AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/jFfO7YfeSEwFOJy24a-58VmPr9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.237.168.0/24
Signature Algorithm: sha256WithRSAEncryption
18:d2:ad:3c:83:33:7d:38:d0:91:d9:b3:db:5d:57:e6:bd:92:
bc:6b:e4:5b:06:25:f5:a4:50:7b:b9:3e:2d:0c:79:8b:cc:92:
67:b0:0e:c0:e6:5f:ad:ec:4a:1e:cc:e6:27:2a:31:ce:9f:cc:
ed:d7:46:e5:05:ab:14:1f:b1:aa:08:1f:aa:21:ee:4b:12:fe:
02:b3:b9:ff:dc:af:c1:df:d6:f8:2e:0c:42:c0:0f:d2:4c:1a:
c3:bd:72:07:fe:f2:3c:32:5a:a2:f0:df:e9:7c:59:1a:ff:b3:
b8:cc:96:8c:10:25:fd:4a:ad:e6:49:de:b7:11:06:a8:53:d4:
db:96:6f:2a:9b:f1:c6:bb:b6:7d:89:64:af:3b:9f:69:ad:fd:
fb:41:91:79:05:08:23:a0:a5:49:31:ff:8a:52:f4:37:34:4e:
df:17:8c:a4:68:77:18:7f:f6:6e:d8:9f:e2:03:fb:45:51:27:
4c:39:60:7e:cf:a7:ff:4f:ca:11:b4:b4:65:ad:7f:1e:ee:66:
39:25:99:b9:df:f3:c7:83:c3:ab:ea:ad:31:ce:1d:46:fb:4a:
2b:8b:36:2c:8d:05:5c:a0:5f:df:9b:7c:2f:6b:f5:a2:46:31:
43:de:23:86:b5:cf:eb:44:72:7f:97:70:55:15:24:df:61:a8:
60:fc:ea:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:58 2023 by rpki-client on console-ams.rpki-client.org