Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/vebb5shz7YyvW3I107_5yLVMFuE.roa
File: vebb5shz7YyvW3I107_5yLVMFuE.roa (raw, json)
Hash identifier: tsbvIy2jjbzYFBceXZtLNHYLwPS5N9yscUALznpurbo=
Subject key identifier: BD:E6:DB:E6:C8:73:ED:8C:AF:5B:72:35:D3:BF:F9:C8:B5:4C:16:E1
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018471F83771C837D7C82770BF1931DAEA6B
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/vebb5shz7YyvW3I107_5yLVMFuE.roa
Signing time: Sun 13 Nov 2022 17:10:03 +0000
ROA not before: Sun 13 Nov 2022 17:10:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39521
IP address blocks: 178.253.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:71:f8:37:71:c8:37:d7:c8:27:70:bf:19:31:da:ea:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Nov 13 17:10:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bde6dbe6c873ed8caf5b7235d3bff9c8b54c16e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:90:f1:04:8d:f8:fd:7e:1d:a9:8c:22:6e:9e:
fc:c5:ad:7a:cd:a9:59:a5:e5:40:cd:b2:10:50:e2:
56:4d:b4:e2:a7:10:69:4f:c7:95:89:95:33:fb:1e:
cc:64:54:38:23:9a:71:dd:75:b7:86:86:5f:04:7b:
45:17:44:8b:e6:99:b0:58:6d:50:cf:d3:ca:25:17:
bd:6f:7a:20:8c:93:8c:a1:33:59:7a:27:eb:d6:5b:
3f:4f:16:f4:c8:07:74:2e:9c:ae:07:08:ee:c7:41:
30:7b:4f:0c:59:db:39:ac:5d:9a:9d:b0:4d:5f:8c:
80:74:2d:8d:50:b4:3d:23:7e:8a:74:e3:7f:80:f1:
3b:28:d4:84:bc:c9:8b:cf:7e:ee:3f:91:8b:74:24:
ed:e4:c7:95:4b:d8:a0:78:30:c4:5c:52:61:5d:4e:
5e:b9:fe:a8:70:b3:ed:94:71:1f:2e:94:b2:3d:32:
b8:2a:62:75:ea:ac:e3:c3:9b:2c:32:83:88:ab:19:
fa:0a:1b:85:b1:bb:4c:22:fa:53:4d:58:e1:7e:8c:
40:70:e9:ad:c8:51:91:3e:9b:8d:9c:93:a1:d3:39:
43:e2:22:62:1c:0f:9b:72:a2:6b:51:5b:16:ce:56:
79:75:b6:ce:dc:67:da:33:13:42:d0:e7:b4:82:3b:
c1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E6:DB:E6:C8:73:ED:8C:AF:5B:72:35:D3:BF:F9:C8:B5:4C:16:E1
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/vebb5shz7YyvW3I107_5yLVMFuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.235.0/24
Signature Algorithm: sha256WithRSAEncryption
23:b7:4e:77:51:70:bb:a2:6d:80:f9:f9:06:b9:15:18:99:c4:
49:d7:51:65:a0:ff:f3:5c:76:cc:ad:de:f7:83:ce:51:22:23:
32:74:5f:03:ab:33:40:cc:c7:ed:5a:46:42:3e:9e:00:bd:f0:
b4:94:87:19:a5:5d:65:37:a7:50:2f:b0:ae:f6:88:4d:09:f4:
14:ea:de:fb:24:94:f2:9c:9d:3a:c2:9c:43:cc:e5:4c:69:1e:
5b:96:f3:46:ef:2a:ab:f0:de:97:36:1f:12:9f:e7:b3:32:4c:
85:14:79:ee:ba:17:40:2e:bd:f2:9f:d4:58:3e:67:f7:86:59:
d9:8f:84:72:e4:8e:90:38:83:33:da:e7:fd:15:aa:ba:38:34:
84:f9:f8:00:80:d3:79:0c:d3:ff:f3:d5:cb:fe:6b:9b:3a:d1:
18:d3:b0:31:1b:f2:ad:c1:de:29:d3:e6:44:87:7d:6b:78:2d:
6b:30:c6:6d:0c:d2:b8:4f:f8:af:c2:bb:bb:9c:c5:a8:98:24:
17:4a:01:e1:bf:c5:94:99:e9:35:e9:1a:48:ab:4a:b7:6a:d7:
64:49:e2:31:0e:35:38:70:09:8a:ff:5e:9b:62:c0:8c:67:0d:
49:ac:60:76:0c:5d:89:67:51:76:b3:98:7c:ee:e7:30:80:22:
f2:d2:b9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org