Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/7y9WL_6nqNltP0lvZy4d9XE_2wg.roa
File: 7y9WL_6nqNltP0lvZy4d9XE_2wg.roa (raw, json)
Hash identifier: jR2x9U3JOVtpBD7LlrBsoG9bCLHFbZbDba+JdP3H7i4=
Subject key identifier: EF:2F:56:2F:FE:A7:A8:D9:6D:3F:49:6F:67:2E:1D:F5:71:3F:DB:08
Certificate issuer: /CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Certificate serial: 03C1B290
Authority key identifier: D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/7y9WL_6nqNltP0lvZy4d9XE_2wg.roa
Signing time: Sat 01 Jan 2022 11:01:17 +0000
ROA not before: Sat 01 Jan 2022 11:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212093
IP address blocks: 178.237.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63025808 (0x3c1b290)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Validity
Not Before: Jan 1 11:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef2f562ffea7a8d96d3f496f672e1df5713fdb08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:84:dc:e2:d8:16:b1:fd:0e:7c:2f:86:4e:a0:
65:54:cc:75:bf:79:ee:fc:ba:dc:27:24:dc:e6:b2:
a3:49:57:3d:bc:81:1c:eb:7a:b5:23:88:ac:09:a3:
a3:f0:04:40:01:8f:1b:6b:db:32:95:9e:87:98:7e:
e7:6c:c4:ef:a2:e3:10:e0:10:34:8b:18:0c:db:8e:
d2:af:f4:75:38:75:cf:0d:ac:d1:ec:4a:78:ac:ba:
5f:6d:1e:87:96:8e:42:a2:d4:80:5d:14:8d:bf:1b:
d3:a0:c2:35:53:58:11:24:1d:9a:63:af:7f:d0:98:
07:3f:50:31:ff:e7:d5:4a:f1:14:9b:2e:b6:3b:d1:
25:0c:27:ae:95:ec:7f:a0:d0:9e:b7:6b:96:3a:4c:
e6:9d:1c:b8:48:1a:79:53:f9:a0:29:72:9d:ed:69:
02:71:70:bd:95:2b:85:a3:39:c0:d9:7c:14:2c:cc:
a4:c2:ea:ee:e3:33:8f:fa:60:fa:65:d0:c4:f1:43:
2d:a3:b1:2d:17:46:40:7b:fd:bc:bc:c1:e1:07:24:
2a:f7:22:38:57:1e:07:be:f2:4f:40:47:db:36:bb:
b2:fe:23:2f:86:f2:5f:85:c3:85:0c:ab:59:f5:b0:
8c:dd:d5:fc:bb:7d:80:00:35:4f:c4:7d:d4:42:62:
1a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2F:56:2F:FE:A7:A8:D9:6D:3F:49:6F:67:2E:1D:F5:71:3F:DB:08
X509v3 Authority Key Identifier:
keyid:D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/7y9WL_6nqNltP0lvZy4d9XE_2wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.237.205.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:fd:5f:9e:84:d2:dc:51:e8:a6:e0:80:d2:63:21:14:e2:f7:
26:f1:fe:6d:44:e2:2a:b1:fa:ec:0e:6a:03:4a:d4:34:5f:ab:
4d:23:35:ac:6e:d9:0e:98:f5:f4:0a:87:1b:63:6a:37:48:44:
68:0d:fd:a1:76:0c:dd:53:a6:df:27:91:c3:11:2a:f6:59:72:
41:ca:eb:7f:db:30:d0:03:0d:81:17:42:f7:77:4d:33:da:32:
28:c4:47:27:84:df:57:3b:80:ed:b5:b1:7f:9f:a9:a9:2e:94:
bc:7d:31:9b:60:81:0a:1b:ee:c5:b2:14:fb:c0:ac:76:09:7d:
74:99:50:74:b0:46:60:1e:18:ec:15:92:95:45:5b:5a:3a:b0:
ad:65:fc:60:a9:34:2d:be:75:28:18:90:43:52:29:3a:de:99:
fa:28:f7:df:08:0c:20:30:6c:d9:ee:09:05:96:5f:05:13:58:
de:9e:64:a6:30:48:5c:15:30:7e:98:0a:5e:1a:54:5e:ef:19:
74:f2:f3:81:fe:44:a6:a7:80:11:46:6c:db:fb:ee:a1:e8:44:
b4:43:87:01:82:ab:95:f6:f4:7d:5a:5e:a5:e5:32:6b:2a:a8:
31:6c:15:b6:c5:8f:9d:4f:a2:a8:7f:a1:09:e8:50:b3:6b:ba:
ea:a5:4d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:20 2023 by rpki-client on console-fra.rpki-client.org