Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/g185CsYetnZuwO3kUX0k377fR2A.roa
File: g185CsYetnZuwO3kUX0k377fR2A.roa (raw, json)
Hash identifier: dUWEkCMNuyaWpW7V7scSpC4xMr313QEysLW+HGCtPsk=
Subject key identifier: 83:5F:39:0A:C6:1E:B6:76:6E:C0:ED:E4:51:7D:24:DF:BE:DF:47:60
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018415363B2930E56333DD4A4869329D9D50
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/g185CsYetnZuwO3kUX0k377fR2A.roa
Signing time: Wed 26 Oct 2022 16:53:06 +0000
ROA not before: Wed 26 Oct 2022 16:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150303
IP address blocks: 178.253.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:15:36:3b:29:30:e5:63:33:dd:4a:48:69:32:9d:9d:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Oct 26 16:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=835f390ac61eb6766ec0ede4517d24dfbedf4760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3b:ab:10:f7:ea:54:30:2d:9c:66:af:2c:01:
68:31:99:62:ba:25:ea:1d:6a:fa:c6:48:b1:66:e8:
8a:67:d4:37:e7:da:1d:cd:cd:96:46:e0:62:18:1a:
ae:90:67:14:25:6a:39:e6:1c:f3:30:6c:ec:48:a7:
16:c2:c5:d5:30:a7:9a:90:8b:77:8d:8b:e2:f4:2f:
54:41:17:0b:e4:a5:ca:99:a7:e5:1d:33:59:c5:ef:
5f:ec:52:c4:b0:81:9d:60:1d:f0:3e:5e:ca:95:94:
df:32:67:54:cd:d5:e1:45:45:40:8c:ba:c2:4b:6e:
6b:3b:9f:6b:b8:cd:e2:38:7f:22:91:f6:f1:4a:88:
15:f4:b1:c7:f6:b3:33:d6:72:d9:3d:ee:79:83:e1:
fa:0b:ae:29:d7:b6:77:bd:18:f8:47:ff:ed:5c:f7:
9b:59:b6:98:e2:82:4f:0b:43:4c:6d:82:35:97:3c:
17:c3:6d:b0:8d:c4:b7:48:1b:b0:71:a2:f2:06:33:
55:ed:60:e8:1f:fe:c0:fc:27:bf:0c:85:8e:d2:ed:
d8:6c:d1:c7:e5:b4:e8:0f:02:78:d0:de:43:7d:91:
27:a6:6c:c5:a8:57:f2:3b:4a:b1:56:f2:6b:5f:7f:
a2:45:39:d3:0c:d0:9c:6b:a9:e0:9a:5b:83:7d:93:
13:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5F:39:0A:C6:1E:B6:76:6E:C0:ED:E4:51:7D:24:DF:BE:DF:47:60
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/g185CsYetnZuwO3kUX0k377fR2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.243.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:70:76:b8:57:97:4e:62:88:09:c1:8c:19:c5:9e:75:43:b4:
a6:39:94:c1:7b:0d:0f:9a:7f:e7:97:d6:3d:4b:43:15:42:e4:
38:21:65:9c:1f:a2:c2:b0:de:09:3a:5d:2b:02:c8:52:ff:86:
d3:7d:55:85:fa:13:fb:20:89:38:f1:f3:1c:bc:e9:b8:95:36:
b5:ed:c8:39:1b:20:54:5a:2a:d1:03:90:eb:a8:82:68:82:d2:
d8:d0:c4:25:9f:e6:c1:e4:2f:ab:c0:64:85:d9:c3:a7:33:18:
81:7c:c9:14:7f:fd:b9:a9:68:2b:b6:52:a6:36:64:48:dc:bb:
b5:2b:40:5f:c4:1b:f7:43:13:df:33:1e:2b:9f:3d:93:81:4f:
a9:99:a0:0b:d3:cd:a4:2f:7f:78:7d:4e:88:bf:1d:c1:dc:2f:
7a:49:92:0f:9e:1c:a8:1e:c2:33:13:ff:46:ac:e7:b4:95:a2:
cc:e1:32:5c:07:b3:42:32:fb:a5:a9:7a:ab:6b:e6:0a:a6:1c:
b2:e9:77:ea:df:61:63:86:fb:85:ea:bf:42:6e:fb:64:b4:23:
ac:09:4a:91:20:91:4b:a8:23:39:0c:3a:86:08:b9:68:2a:d6:
ad:9b:7e:89:01:b3:a1:71:64:01:b0:3f:19:84:9d:69:c7:16:
2d:e7:8e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:05 2024 by rpki-client on console-ams.rpki-client.org