Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/xmY0dbnZO_lHTMQlj3eQ_WTz030.roa
File: xmY0dbnZO_lHTMQlj3eQ_WTz030.roa (raw, json)
Hash identifier: paFLGXcXOx6+7U+GAI40eomzvFSEuAl2SBUZ/3DQk+w=
Subject key identifier: C6:66:34:75:B9:D9:3B:F9:47:4C:C4:25:8F:77:90:FD:64:F3:D3:7D
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 098E0A23
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/xmY0dbnZO_lHTMQlj3eQ_WTz030.roa
Signing time: Sat 01 Jan 2022 05:04:03 +0000
ROA not before: Sat 01 Jan 2022 05:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44717
IP address blocks: 78.136.66.0/23 maxlen: 23
151.237.204.0/23 maxlen: 23
93.119.30.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160303651 (0x98e0a23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jan 1 05:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6663475b9d93bf9474cc4258f7790fd64f3d37d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:12:03:84:18:8a:b5:2d:d0:cb:89:ec:58:c6:
52:fc:ed:a2:de:07:33:f2:9c:c8:7e:c9:9a:7d:8b:
c2:31:2f:ef:c0:1c:82:53:26:34:93:95:89:7a:5f:
38:4d:b7:59:21:2a:64:38:a2:bc:ab:7c:39:99:f9:
65:74:f1:60:c4:d9:0e:10:b4:e5:ee:43:c5:ae:f3:
66:e6:03:af:06:fa:2d:f7:eb:74:6a:41:a9:82:68:
68:48:25:91:f9:3d:6e:21:2d:ee:11:9e:f9:86:94:
68:34:91:ff:5f:23:4b:03:16:06:be:d5:5c:ef:9b:
3e:88:c8:a5:40:15:d8:df:d2:70:0a:d6:16:b7:96:
5c:e8:04:1e:79:d8:5e:fa:30:b7:01:80:f2:e4:8d:
3d:c7:01:7d:d8:71:65:72:98:f4:17:ab:9d:93:59:
31:b5:4f:df:20:8d:a3:88:71:80:16:f4:7d:a4:aa:
cc:83:30:7f:c4:08:68:a0:d3:c5:6b:fa:52:88:21:
67:e4:42:51:70:dc:6f:6b:24:d6:7a:7b:7e:54:3a:
d7:c7:3d:e1:80:e5:60:3b:53:2d:cd:4e:16:83:60:
44:0f:d3:b1:65:39:00:97:68:b3:86:ac:37:37:c1:
a7:d8:7b:39:c4:7f:bb:8d:3d:29:a3:9a:cf:77:76:
b2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:66:34:75:B9:D9:3B:F9:47:4C:C4:25:8F:77:90:FD:64:F3:D3:7D
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/xmY0dbnZO_lHTMQlj3eQ_WTz030.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.66.0/23
93.119.30.0/23
151.237.204.0/23
Signature Algorithm: sha256WithRSAEncryption
14:fc:f1:78:e5:c6:b4:55:86:a2:e4:27:37:75:0c:c0:1e:8d:
8f:de:6c:35:c4:d9:ee:15:22:86:6c:c0:25:bc:46:f4:62:7e:
84:31:fb:b5:c0:98:51:8c:ad:dc:09:c2:59:6b:ec:e2:14:d5:
ad:52:26:98:1b:0b:b6:10:9e:51:5a:91:f9:7d:e8:2e:9e:7b:
ac:27:11:3c:f5:eb:74:b6:fc:64:fa:55:ab:81:07:df:66:b1:
d7:ea:de:23:b7:74:da:c2:80:0f:d8:8d:db:12:83:8a:58:8c:
94:f8:20:2c:e1:5c:30:a9:c9:db:9e:3c:04:51:c4:f5:d4:9b:
a2:a7:71:1a:ab:06:e7:24:bf:ef:59:4d:16:83:6c:d6:0d:57:
e6:3b:93:17:5d:2c:01:85:1a:b5:6e:10:83:d1:89:4e:17:b7:
98:41:91:f5:ee:75:92:e4:1c:7e:4b:32:c4:fd:56:89:f3:d2:
ff:ca:1a:69:af:61:23:25:37:83:5b:5b:e6:56:ec:fa:ef:7a:
4b:d2:d6:ed:1f:6f:dd:04:0c:33:14:44:58:be:88:fc:91:61:
1d:a8:67:e6:1b:2d:1b:69:cf:90:bc:73:4c:2f:df:9d:45:bc:
fc:fe:bf:66:88:6c:98:5d:cf:71:26:42:24:29:86:0b:7d:45:
9f:64:59:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:20 2023 by rpki-client on console-fra.rpki-client.org