Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/e7lpdgtlm_rDf6mSlMLCCi8RzlA.roa
File: e7lpdgtlm_rDf6mSlMLCCi8RzlA.roa (raw, json)
Hash identifier: S4QbaOm9oIrMlhc/5o7R5zz7BkOujdo1d7ZBFDuh42I=
Subject key identifier: 7B:B9:69:76:0B:65:9B:FA:C3:7F:A9:92:94:C2:C2:0A:2F:11:CE:50
Certificate issuer: /CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Certificate serial: 018C40D1BA0EF309A77BEF897EE99FA3662D
Authority key identifier: AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/e7lpdgtlm_rDf6mSlMLCCi8RzlA.roa
Signing time: Wed 06 Dec 2023 20:28:55 +0000
ROA not before: Wed 06 Dec 2023 20:28:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29497
IP address blocks: 178.155.4.0/24 maxlen: 24
178.155.7.0/24 maxlen: 24
178.155.5.0/24 maxlen: 24
2a00:1fa1:4e00::/40 maxlen: 40
2a00:1fa1:e00::/40 maxlen: 40
2a00:1fa1::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:40:d1:ba:0e:f3:09:a7:7b:ef:89:7e:e9:9f:a3:66:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Validity
Not Before: Dec 6 20:28:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bb969760b659bfac37fa99294c2c20a2f11ce50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a1:4c:be:8d:c2:5c:4c:36:69:33:e2:ee:d8:
7d:11:c0:87:e6:f1:c7:24:47:6f:73:b8:71:84:ac:
b0:7f:5d:41:18:ed:a7:52:1e:bf:65:11:2f:c0:88:
81:bd:63:6f:d8:01:d2:df:12:1d:3c:6c:fa:83:a8:
cf:1d:41:af:69:f3:48:80:ff:83:19:d5:94:24:06:
e0:62:55:48:5d:48:76:63:fe:55:18:d6:20:5e:a2:
00:85:c2:7f:b9:dd:dc:a7:95:69:11:40:0a:05:a6:
5d:33:e8:9a:16:99:25:97:6b:a1:45:fd:ea:5c:75:
a6:a9:29:2a:81:2f:78:2e:b0:c7:0a:e5:ea:a2:82:
17:1a:d9:d0:a8:25:ba:48:e1:3e:c6:75:98:7c:02:
51:f2:de:b9:1f:d8:9b:1c:e5:54:7b:a1:25:c6:05:
bf:9e:3b:e0:c9:97:d6:c2:5c:dd:92:c5:27:28:a3:
f0:94:40:7c:9a:5f:8e:d6:aa:2a:1c:f6:fb:99:06:
f2:75:9e:5c:d6:f4:69:84:39:f9:c2:60:36:7f:d7:
0d:b0:55:e1:a8:de:9e:9b:db:28:28:f8:58:cd:92:
38:8c:60:d4:4a:9d:c4:77:07:73:4a:a9:8d:95:3d:
b4:1f:52:25:e9:1d:97:eb:13:62:c8:81:9d:48:00:
ed:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B9:69:76:0B:65:9B:FA:C3:7F:A9:92:94:C2:C2:0A:2F:11:CE:50
X509v3 Authority Key Identifier:
keyid:AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/e7lpdgtlm_rDf6mSlMLCCi8RzlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.155.4.0/23
178.155.7.0/24
IPv6:
2a00:1fa1::/33
Signature Algorithm: sha256WithRSAEncryption
7d:71:12:3f:c1:47:f8:03:9b:24:22:a8:db:37:99:e9:9f:a8:
f6:04:3a:04:1a:68:d0:fc:90:5f:d5:76:61:8a:8d:27:cd:c5:
77:e0:e9:2d:09:b2:fc:6f:42:45:6c:db:a0:85:1d:8b:e4:5b:
64:d3:1a:62:cd:ce:a3:c9:0c:ac:a3:af:79:72:d0:e2:11:97:
b8:9e:91:f9:d0:7e:7c:04:74:a0:59:58:79:77:e8:ee:c5:5e:
ac:d9:7d:a0:2d:65:21:a8:2e:29:12:15:8b:80:2c:38:bd:70:
b9:83:df:6a:2c:4f:76:8c:4f:67:18:95:7f:e4:52:10:b6:ce:
09:42:06:be:02:83:07:43:72:a8:c3:e8:c8:82:16:c4:c3:f4:
72:ab:47:cb:02:2d:99:aa:48:61:0f:19:a5:ac:67:18:6e:37:
bd:25:05:93:fa:e0:4f:e1:ec:8b:67:5d:9f:17:9a:8d:15:e2:
b8:3b:75:71:1b:bc:38:24:72:7f:2e:d2:ef:88:ce:1f:6d:ef:
1d:ac:db:33:6a:25:08:44:fa:13:ac:24:89:a1:3f:68:4b:4f:
76:4b:65:e1:a7:5f:47:d3:7a:e8:03:fd:bf:45:ff:af:ff:87:
f9:8a:45:18:18:c4:3a:31:40:e2:d7:7c:cf:1d:ac:63:63:e1:
75:74:a0:5d
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAYxA0boO8wmne++Jfumfo2YtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlZmUxYzg1OTQwOWFjNWRlNzQxNGM0OGY4NjczOTkxM2Jl
NmI3ZTUwHhcNMjMxMjA2MjAyODU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YmI5Njk3NjBiNjU5YmZhYzM3ZmE5OTI5NGMyYzIwYTJmMTFjZTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqFMvo3CXEw2aTPi7th9EcCH5vHH
JEdvc7hxhKywf11BGO2nUh6/ZREvwIiBvWNv2AHS3xIdPGz6g6jPHUGvafNIgP+D
GdWUJAbgYlVIXUh2Y/5VGNYgXqIAhcJ/ud3cp5VpEUAKBaZdM+iaFpkll2uhRf3q
XHWmqSkqgS94LrDHCuXqooIXGtnQqCW6SOE+xnWYfAJR8t65H9ibHOVUe6ElxgW/
njvgyZfWwlzdksUnKKPwlEB8ml+O1qoqHPb7mQbydZ5c1vRphDn5wmA2f9cNsFXh
qN6em9soKPhYzZI4jGDUSp3EdwdzSqmNlT20H1Il6R2X6xNiyIGdSADt+QIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFHu5aXYLZZv6w3+pkpTCwgovEc5QMB8GA1UdIwQY
MBaAFK7+HIWUCaxd50FMSPhnOZE75rflMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnY0Y2haUUpyRjNuUVV4SS1HYzVrVHZtdC1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS80NTFmMDQtZTNjOS00NGVhLWE2YTEt
NDI4NDU4Njc5Y2U0LzEvZTdscGRndGxtX3JEZjZtU2xNTENDaThSemxBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS80NTFmMDQtZTNjOS00NGVhLWE2YTEtNDI4NDU4Njc5Y2U0
LzEvcnY0Y2haUUpyRjNuUVV4SS1HYzVrVHZtdC1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDASBAIAATAMAwQBspsEAwQA
spsHMA4EAgACMAgDBgcqAB+hADANBgkqhkiG9w0BAQsFAAOCAQEAfXESP8FH+AOb
JCKo2zeZ6Z+o9gQ6BBpo0PyQX9V2YYqNJ83Fd+DpLQmy/G9CRWzboIUdi+RbZNMa
Ys3Oo8kMrKOveXLQ4hGXuJ6R+dB+fAR0oFlYeXfo7sVerNl9oC1lIaguKRIVi4As
OL1wuYPfaixPdoxPZxiVf+RSELbOCUIGvgKDB0NyqMPoyIIWxMP0cqtHywItmapI
YQ8ZpaxnGG43vSUFk/rgT+Hsi2ddnxeajRXiuDt1cRu8OCRyfy7S74jOH23vHazb
M2olCET6E6wkiaE/aEtPdktl4adfR9N66AP9v0X/r/+H+YpFGBjEOjFA4td8zx2s
Y2PhdXSgXQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:00 2025 by rpki-client