Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/SWnXqyj-w-ipQcG2-stvFrc-6vU.roa
File: SWnXqyj-w-ipQcG2-stvFrc-6vU.roa (raw, json)
Hash identifier: UZbd+yN3plhJkmWU/uyV2gVgb1l2/BWF1F+hAAeFyPE=
Subject key identifier: 49:69:D7:AB:28:FE:C3:E8:A9:41:C1:B6:FA:CB:6F:16:B7:3E:EA:F5
Certificate issuer: /CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Certificate serial: 018200E95D71EBF29127295DC284EB55644B
Authority key identifier: D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/SWnXqyj-w-ipQcG2-stvFrc-6vU.roa
Signing time: Fri 15 Jul 2022 08:11:09 +0000
ROA not before: Fri 15 Jul 2022 08:11:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211347
IP address blocks: 178.237.207.0/24 maxlen: 24
2a04:7e00:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:00:e9:5d:71:eb:f2:91:27:29:5d:c2:84:eb:55:64:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d49922ca8d139a4d03d6d57cbc8177dc05feb9ec
Validity
Not Before: Jul 15 08:11:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4969d7ab28fec3e8a941c1b6facb6f16b73eeaf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c5:94:75:54:1c:98:44:04:74:c9:61:31:16:
da:f5:81:cc:f0:b7:ee:e8:0d:cf:fb:4a:d7:66:32:
9c:3b:9c:74:24:12:15:31:e2:b0:a0:c5:3a:79:75:
c0:de:43:0d:3b:b8:b9:b1:e4:31:6b:dc:c0:d1:76:
60:5f:28:c3:4f:34:65:54:9d:21:e6:d4:36:f8:75:
a0:ff:3c:9c:35:f2:29:f1:c3:a9:a2:7c:a2:ab:2a:
41:4e:4d:17:82:de:f5:15:12:07:a8:fb:11:3e:8b:
f6:28:e7:73:9e:84:a8:6c:13:af:4d:f2:6c:23:cc:
95:72:34:d3:a7:e4:e1:33:24:de:74:25:13:bf:e1:
5d:fc:2f:c2:6c:86:10:d1:16:40:ee:7a:3b:14:16:
18:44:b3:de:a8:f0:e3:75:97:ac:fd:bd:07:62:10:
cc:f7:8b:d1:57:50:28:a3:4f:6d:49:24:f5:b1:9f:
fd:94:aa:da:c5:d9:7f:29:c7:73:e7:70:f5:da:4b:
1d:b2:fd:d1:95:c4:49:a3:fd:73:3d:84:89:2b:ae:
e0:56:16:0c:83:83:23:8f:27:01:37:f2:7f:b6:f1:
69:52:0c:e2:df:d7:4c:a4:4c:7d:db:e7:49:73:a1:
a8:3c:4a:4b:4e:de:33:21:65:c1:e0:2b:91:ed:7c:
2c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:69:D7:AB:28:FE:C3:E8:A9:41:C1:B6:FA:CB:6F:16:B7:3E:EA:F5
X509v3 Authority Key Identifier:
keyid:D4:99:22:CA:8D:13:9A:4D:03:D6:D5:7C:BC:81:77:DC:05:FE:B9:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Jkiyo0Tmk0D1tV8vIF33AX-uew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/SWnXqyj-w-ipQcG2-stvFrc-6vU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/5cecc0-2a53-4500-85ae-e8b60a2dd6b4/1/1Jkiyo0Tmk0D1tV8vIF33AX-uew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.237.207.0/24
IPv6:
2a04:7e00:1::/48
Signature Algorithm: sha256WithRSAEncryption
07:d2:08:f9:ea:3e:72:62:0d:11:cb:00:d6:3d:48:24:d1:70:
2c:5f:e7:8c:56:ee:16:78:13:01:91:41:e8:a0:c3:c5:5d:f9:
3a:b9:93:9b:60:c3:e5:2e:ba:3b:b8:45:b9:98:c8:1f:3a:f1:
34:26:80:18:bb:c2:22:27:24:f2:15:59:3b:60:93:85:01:95:
43:97:15:9e:01:ae:1f:67:dc:bf:f1:6c:17:74:81:77:f5:64:
fc:54:34:6d:72:2a:b1:07:c3:19:33:5e:85:66:ef:ce:be:5e:
6a:d1:5a:08:9d:ea:01:e9:df:10:a7:43:84:c9:68:c2:fa:a1:
7e:2e:b7:66:08:3c:d6:64:e7:96:4f:df:32:30:0f:6c:4b:e5:
0c:fc:7b:87:b5:a4:c3:df:32:a9:9e:e4:e6:93:8f:3e:ab:fd:
a5:29:c9:bc:8c:77:0a:a9:09:87:c7:87:0b:a5:c3:a2:cd:5f:
86:26:a4:80:a3:ab:a3:70:35:d0:df:d3:c3:8e:65:6f:a2:68:
aa:23:dd:b8:97:6c:27:91:89:b4:8a:bd:9d:1f:96:4c:21:a0:
bd:8b:20:3c:1e:86:da:04:49:f5:78:2e:e5:9f:78:c0:89:a2:
47:29:0b:3d:56:34:74:af:21:09:ee:48:13:4d:5e:6f:91:04:
71:67:c6:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:20 2023 by rpki-client on console-fra.rpki-client.org