Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/118e24-742b-4392-8dfa-071518e0573e/1/7cYWTP7aOBFlKM3s_sZbSK1k6E0.roa
File: 7cYWTP7aOBFlKM3s_sZbSK1k6E0.roa (raw, json)
Hash identifier: 1mVtjSccFLpzAXmmuQlOQo+6EX3677UdDu4Zx4iwweQ=
Subject key identifier: ED:C6:16:4C:FE:DA:38:11:65:28:CD:EC:FE:C6:5B:48:AD:64:E8:4D
Certificate issuer: /CN=69f7352d07135623e33f5a7e62925d4bab722fc6
Certificate serial: 01047AF1
Authority key identifier: 69:F7:35:2D:07:13:56:23:E3:3F:5A:7E:62:92:5D:4B:AB:72:2F:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afc1LQcTViPjP1p-YpJdS6tyL8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/118e24-742b-4392-8dfa-071518e0573e/1/7cYWTP7aOBFlKM3s_sZbSK1k6E0.roa
Signing time: Sat 01 Jan 2022 08:03:40 +0000
ROA not before: Sat 01 Jan 2022 08:03:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210094
IP address blocks: 178.251.20.0/22 maxlen: 22
2a0d:5d40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17070833 (0x1047af1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f7352d07135623e33f5a7e62925d4bab722fc6
Validity
Not Before: Jan 1 08:03:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edc6164cfeda38116528cdecfec65b48ad64e84d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e3:a3:b0:24:f8:d2:46:38:c7:77:19:a6:da:
bd:af:48:6a:66:cf:48:76:4e:8f:40:27:c5:a7:51:
ed:ea:c1:1d:ab:3e:91:2e:23:e5:fe:e6:11:ad:39:
d4:b9:6f:3b:bf:05:25:1d:b2:84:49:21:90:c9:79:
29:50:86:d7:5f:33:4f:47:76:1b:e2:fa:5a:19:75:
5b:21:00:e9:b2:35:81:63:eb:df:89:48:03:aa:61:
2e:f7:2b:2d:38:c8:50:b0:9c:47:cb:67:fa:d1:cf:
d1:30:3d:47:7b:ac:3f:f0:2f:cb:cb:28:ff:f2:70:
63:7b:61:79:cc:0e:cc:08:76:ea:da:48:75:59:09:
8c:9b:f6:d8:8f:92:4f:32:6b:bc:61:37:73:20:06:
94:0f:23:b5:e5:c4:b2:c2:04:8c:45:46:ee:8f:37:
c6:8f:c3:9e:31:95:b3:cf:bb:0a:9e:15:9f:4f:81:
5a:f1:33:43:aa:68:5d:f5:45:6c:24:5b:92:c9:8d:
ae:69:5d:a7:90:74:d3:a0:72:7b:43:2b:04:ca:93:
a0:34:13:2d:dd:ff:cf:40:e0:ac:84:d4:ab:cf:32:
c4:9e:d0:c8:10:79:ab:c2:1c:5f:12:86:82:eb:e4:
90:04:e1:52:cc:d3:20:ca:d7:53:66:99:a4:68:4a:
13:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C6:16:4C:FE:DA:38:11:65:28:CD:EC:FE:C6:5B:48:AD:64:E8:4D
X509v3 Authority Key Identifier:
keyid:69:F7:35:2D:07:13:56:23:E3:3F:5A:7E:62:92:5D:4B:AB:72:2F:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afc1LQcTViPjP1p-YpJdS6tyL8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/118e24-742b-4392-8dfa-071518e0573e/1/7cYWTP7aOBFlKM3s_sZbSK1k6E0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/118e24-742b-4392-8dfa-071518e0573e/1/afc1LQcTViPjP1p-YpJdS6tyL8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.20.0/22
IPv6:
2a0d:5d40::/32
Signature Algorithm: sha256WithRSAEncryption
b9:d7:92:66:2e:67:35:72:8c:f1:e9:ce:50:c3:90:09:90:83:
79:aa:2c:fb:cf:99:57:60:18:af:7c:ca:74:b1:0d:66:aa:b5:
6d:2e:a0:1d:5b:55:e0:74:a3:78:d1:ae:e5:b6:57:8f:4d:8f:
01:f2:a3:6b:2f:d7:97:98:0d:59:7b:39:9c:70:de:33:41:a0:
d8:e7:73:d1:c0:25:b1:9e:3b:85:5b:a2:26:77:3e:17:23:f3:
ad:ca:c3:d5:21:40:1c:9b:12:3e:2a:3e:f3:84:66:30:a4:48:
ea:7c:95:80:68:86:25:8b:fe:a8:a1:20:32:48:93:4f:45:c1:
3e:06:66:ba:3d:25:05:de:ab:ff:83:99:59:e4:75:d3:e6:b9:
56:67:3d:40:06:fa:36:1d:6f:07:97:ac:0d:75:3e:ee:3e:95:
b0:00:e4:f6:94:63:6d:ca:d5:31:26:f1:35:fa:b9:42:23:0a:
31:e7:37:df:d0:cf:ff:35:37:e0:51:3a:8b:00:98:4c:ba:1d:
fe:00:e8:bd:1f:8f:82:92:a1:47:14:40:0d:c3:24:f4:ef:d3:
e7:ef:13:1c:f2:2d:8f:13:c9:72:06:b6:ef:b6:26:bc:ed:81:
e6:e9:46:a3:67:78:90:c1:4c:3a:25:06:df:14:5e:c7:6d:37:
9b:4b:ea:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:18 2024 by rpki-client on console-ams.rpki-client.org