Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/KTEyWxMdDE1ANLftOICRk4qRYEk.roa
File: KTEyWxMdDE1ANLftOICRk4qRYEk.roa (raw, json)
Hash identifier: Mk/mbHTVBZ1mpd6+7Jacgo3A4vrglsddvKcGb0VMgH4=
Subject key identifier: 29:31:32:5B:13:1D:0C:4D:40:34:B7:ED:38:80:91:93:8A:91:60:49
Certificate issuer: /CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Certificate serial: 03C0874D
Authority key identifier: D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/KTEyWxMdDE1ANLftOICRk4qRYEk.roa
Signing time: Sat 01 Jan 2022 11:01:17 +0000
ROA not before: Sat 01 Jan 2022 11:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211515
IP address blocks: 178.237.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62949197 (0x3c0874d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Validity
Not Before: Jan 1 11:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2931325b131d0c4d4034b7ed388091938a916049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e8:45:44:a2:7f:05:d4:f1:73:cd:ed:49:1f:
32:64:39:5a:27:7b:d5:20:b8:b6:69:20:90:ad:12:
55:ec:a1:3c:79:81:8d:d4:88:51:88:54:12:ff:ea:
53:06:db:77:62:23:db:b4:f6:66:4e:e4:0b:cf:19:
8f:9c:01:c5:f6:06:1d:9e:4b:42:fb:67:80:1a:ee:
bf:e3:22:0c:ef:3d:05:2a:fb:b4:43:df:bc:2a:20:
3d:98:75:c0:2a:0c:a9:4c:4f:4e:3e:b7:fb:30:2a:
b7:07:23:d6:18:cd:c6:83:2d:11:ce:80:c7:0c:dc:
23:af:7b:1b:29:53:19:62:12:dc:8a:80:fe:9b:ac:
49:9a:7f:64:3e:c6:73:cf:34:3b:e5:35:30:5e:7c:
cd:21:21:93:77:5e:14:18:a5:2a:b6:ef:c7:52:2c:
d6:07:68:32:fa:86:66:e0:2c:63:cb:f4:e1:9d:3c:
a8:76:46:6c:2b:b8:85:6a:59:96:f8:6f:95:32:dc:
a7:05:a1:2c:83:8e:af:4f:d0:29:e7:80:4c:af:26:
6e:eb:50:22:14:f7:be:c3:71:05:cf:d6:2b:48:38:
4a:41:ce:dc:bd:a4:ab:a0:e6:96:b4:c5:0c:82:f5:
8f:12:26:fa:cf:bb:07:d1:b0:b6:c1:66:12:86:0a:
f2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:31:32:5B:13:1D:0C:4D:40:34:B7:ED:38:80:91:93:8A:91:60:49
X509v3 Authority Key Identifier:
keyid:D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/KTEyWxMdDE1ANLftOICRk4qRYEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.237.204.0/24
Signature Algorithm: sha256WithRSAEncryption
09:14:52:0c:01:2a:28:ce:b7:c6:e1:5a:a6:ff:30:9e:fe:f8:
43:11:5f:95:d7:0c:ef:1d:52:43:5d:d9:41:a5:04:bd:2e:e3:
dd:39:58:8c:70:3b:93:23:45:b9:72:ed:47:21:2c:a3:b2:77:
88:a0:85:b1:8a:ad:e0:62:ca:27:67:ea:ef:69:3c:dd:39:1a:
62:d4:c6:a6:6c:75:75:08:86:88:df:7b:bb:31:ea:cd:f4:42:
56:f8:83:cd:3d:32:13:54:3f:97:da:b3:35:df:bc:34:9b:ce:
88:20:eb:e6:59:5b:89:d5:64:1c:c9:79:88:5e:c4:35:39:d9:
e3:17:20:d5:d1:b6:c2:c6:fd:97:0e:ab:cc:e5:af:5b:44:a0:
68:89:a4:39:1d:a6:be:f3:bc:30:e5:d7:4c:e4:4a:10:f5:b3:
61:93:08:2f:b9:5f:3c:43:df:88:23:26:3d:53:02:c2:d1:83:
89:7f:f3:b8:3b:88:48:37:18:a9:fd:b6:02:ea:4d:e7:47:50:
a5:2c:f6:f8:b6:4c:50:f4:d2:ca:d2:1c:91:03:40:9e:05:85:
0d:76:dd:7f:85:24:51:8c:91:36:fb:f6:32:b3:c7:29:71:f4:
c9:aa:14:04:1f:59:fb:51:f6:2f:0d:64:75:72:41:a4:75:2e:
ea:ad:1a:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:20 2023 by rpki-client on console-fra.rpki-client.org