Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/M8x9pIzyzYftpF8-_1h6gVSYcPc.roa
File: M8x9pIzyzYftpF8-_1h6gVSYcPc.roa (raw, json)
Hash identifier: ebJODChlUMo4zKqqNGGjkUAdFTjQuw6kX261EyUEVhQ=
Subject key identifier: 33:CC:7D:A4:8C:F2:CD:87:ED:A4:5F:3E:FF:58:7A:81:54:98:70:F7
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 02AF3171
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/M8x9pIzyzYftpF8-_1h6gVSYcPc.roa
Signing time: Thu 14 Apr 2022 14:43:09 +0000
ROA not before: Thu 14 Apr 2022 14:43:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53356
IP address blocks: 178.212.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45035889 (0x2af3171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: Apr 14 14:43:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33cc7da48cf2cd87eda45f3eff587a81549870f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5e:60:bc:27:10:1b:c2:98:3e:78:fd:63:05:
15:27:19:ed:a2:aa:5c:85:99:48:07:2c:cf:3b:1a:
f3:70:e6:c4:29:6c:47:a2:bd:54:bd:75:2d:f9:9d:
66:24:92:5b:55:d9:dd:03:0a:9d:6b:1b:44:64:b6:
ac:37:56:56:77:4f:22:d1:0a:1c:3d:34:8c:3d:66:
31:bd:d0:ed:cd:d6:59:7c:6a:ec:89:e8:e9:be:d0:
e3:65:4d:96:1e:cc:6d:a7:9e:77:7d:08:8c:18:aa:
1d:51:22:7f:9a:0e:31:f5:ca:5e:e3:98:05:82:6c:
2c:4f:53:48:0c:46:f9:5b:c5:63:c2:50:f0:07:d7:
1a:63:81:b3:ca:41:f2:4f:fc:21:81:00:1e:61:15:
1c:99:df:be:4c:2d:80:73:26:75:58:93:9f:c3:6a:
a9:5c:61:ff:aa:67:b0:38:7d:ef:86:dc:08:23:83:
c6:31:ff:ed:de:72:68:36:ad:ca:b1:86:40:03:34:
b3:ba:36:d8:b8:c8:0b:de:2e:e9:ec:5b:c3:ef:f8:
e7:1e:05:46:52:ca:a4:39:cc:7e:31:6f:93:49:ac:
a8:1c:51:af:4d:0d:b7:aa:53:59:82:e6:aa:df:c9:
14:ef:47:19:51:dc:6c:3a:b3:6f:81:50:c8:3c:00:
19:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CC:7D:A4:8C:F2:CD:87:ED:A4:5F:3E:FF:58:7A:81:54:98:70:F7
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/M8x9pIzyzYftpF8-_1h6gVSYcPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.59.0/24
Signature Algorithm: sha256WithRSAEncryption
02:cd:86:0c:38:2f:8f:64:75:ab:89:86:69:ae:fc:44:31:3f:
3f:b9:fe:88:ed:3b:19:a4:e2:ab:ba:a8:e0:02:0d:32:e2:b5:
45:3e:d1:c6:97:c6:e7:45:21:38:b8:8f:42:c8:65:b7:bf:e3:
6d:97:b5:48:ed:08:18:55:5c:5f:1f:f8:1f:2c:1f:be:a9:fd:
80:ea:25:60:67:08:e7:53:a9:15:25:cc:4e:df:dc:83:e0:7b:
74:e3:f0:37:d8:34:b5:50:85:05:7f:ed:44:13:10:59:7e:9a:
fd:5a:8c:bb:93:97:d6:cb:a5:ad:92:b9:33:e3:bf:c7:0f:0f:
43:e0:e2:a0:ad:5f:b4:41:87:db:bf:ba:e3:5a:48:41:da:6d:
88:28:d5:53:68:3d:66:ad:6d:6e:9c:22:a1:80:4b:9e:7c:f3:
e1:aa:1d:06:b0:25:e2:5b:da:f5:79:c4:89:c9:0c:51:2e:53:
27:05:33:9e:63:61:f2:c3:25:de:51:17:00:70:b9:6e:67:85:
1b:d2:9f:06:d4:ea:04:9c:c8:3b:75:56:b6:89:75:9f:64:64:
5f:40:22:a0:89:e2:e0:16:d4:5f:5d:a5:42:95:01:3b:27:73:
95:4f:2d:b7:8b:ae:bc:ed:ed:c0:ee:b9:b9:40:99:f5:e7:a1:
8e:ec:db:93
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAq8xcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZGJlNmUwYWRhZThiYjQ3ODM5M2FhYjE3NWI2Mzg2NDRjNzRjY2I3MB4XDTIyMDQx
NDE0NDMwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzNjYzdkYTQ4Y2Yy
Y2Q4N2VkYTQ1ZjNlZmY1ODdhODE1NDk4NzBmNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMdeYLwnEBvCmD54/WMFFScZ7aKqXIWZSAcszzsa83DmxCls
R6K9VL11LfmdZiSSW1XZ3QMKnWsbRGS2rDdWVndPItEKHD00jD1mMb3Q7c3WWXxq
7Ino6b7Q42VNlh7Mbaeed30IjBiqHVEif5oOMfXKXuOYBYJsLE9TSAxG+VvFY8JQ
8AfXGmOBs8pB8k/8IYEAHmEVHJnfvkwtgHMmdViTn8NqqVxh/6pnsDh974bcCCOD
xjH/7d5yaDatyrGGQAM0s7o22LjIC94u6exbw+/45x4FRlLKpDnMfjFvk0msqBxR
r00Nt6pTWYLmqt/JFO9HGVHcbDqzb4FQyDwAGYMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQzzH2kjPLNh+2kXz7/WHqBVJhw9zAfBgNVHSMEGDAWgBTdvm4K2ui7R4OT
qrF1tjhkTHTMtzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNiNXVDdHJvdTBlRGs2cXhkYlk0WkV4MHpMYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvYTY3Yjc4LTU4YzgtNDMxMS05ZTY5LTZiYWEzYjU0OGQyMy8x
L004eDlwSXp5ellmdHBGOC1fMWg2Z1ZTWWNQYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
YTY3Yjc4LTU4YzgtNDMxMS05ZTY5LTZiYWEzYjU0OGQyMy8xLzNiNXVDdHJvdTBl
RGs2cXhkYlk0WkV4MHpMYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALLUOzANBgkqhkiG9w0BAQsFAAOC
AQEAAs2GDDgvj2R1q4mGaa78RDE/P7n+iO07GaTiq7qo4AINMuK1RT7RxpfG50Uh
OLiPQshlt7/jbZe1SO0IGFVcXx/4Hywfvqn9gOolYGcI51OpFSXMTt/cg+B7dOPw
N9g0tVCFBX/tRBMQWX6a/VqMu5OX1sulrZK5M+O/xw8PQ+DioK1ftEGH27+641pI
QdptiCjVU2g9Zq1tbpwioYBLnnzz4aodBrAl4lva9XnEickMUS5TJwUznmNh8sMl
3lEXAHC5bmeFG9KfBtTqBJzIO3VWtol1n2RkX0AioIni4BbUX12lQpUBOydzlU8t
t4uuvO3twO65uUCZ9eehjuzbkw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org