Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/yOj_cm3Ii_S1BeVKwWuR_C60M2I.roa
File: yOj_cm3Ii_S1BeVKwWuR_C60M2I.roa (raw, json)
Hash identifier: Bk1KeDcsGRLYgyxqJnW3sNOEt2C+gzJGn7HOAN4OKLk=
Subject key identifier: C8:E8:FF:72:6D:C8:8B:F4:B5:05:E5:4A:C1:6B:91:FC:2E:B4:33:62
Certificate issuer: /CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Certificate serial: 03C9438D
Authority key identifier: B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/yOj_cm3Ii_S1BeVKwWuR_C60M2I.roa
Signing time: Fri 11 Mar 2022 21:41:01 +0000
ROA not before: Fri 11 Mar 2022 21:41:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 178.159.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63521677 (0x3c9438d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b82e7b8068c4ae9ae4ca4c3a6b2096199a741ff2
Validity
Not Before: Mar 11 21:41:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8e8ff726dc88bf4b505e54ac16b91fc2eb43362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3c:f0:99:37:23:cf:9b:da:f7:cb:41:a4:7f:
32:26:58:dc:32:12:93:d5:e7:c0:0d:51:94:6f:d8:
d6:a0:69:d1:87:41:2a:8e:79:03:88:02:da:7b:06:
10:b3:56:30:68:f6:62:d1:f7:da:48:28:55:9c:22:
b7:07:6f:1b:c4:2e:25:b0:4f:ae:d2:28:cb:de:36:
75:89:04:3c:e4:eb:56:6b:4d:60:fd:45:26:96:29:
c4:4e:15:9f:bf:4e:e4:82:c0:cb:e4:05:8b:4b:c9:
7b:e5:60:94:8e:40:1b:1f:c2:4e:89:ee:8a:77:ed:
99:31:66:86:04:c8:7b:ec:92:78:8e:c1:d3:8d:9a:
d2:b0:93:8d:21:d5:4e:80:52:00:80:df:9b:86:a0:
e2:87:49:0c:39:85:bd:13:8f:07:03:1d:6d:17:c5:
e1:1b:e1:9f:e4:43:ba:f6:a8:59:a4:83:13:39:2c:
9f:cf:f1:2c:44:a7:3a:81:14:9c:ac:9c:03:22:1f:
fd:d5:3c:81:43:f0:ba:96:11:17:9d:e7:f3:44:5b:
95:2d:ce:72:e2:0f:d8:bb:84:74:c1:33:32:dc:48:
84:df:3e:91:ca:db:be:97:ec:53:bd:8d:1c:1f:50:
f0:af:5b:8d:46:c9:81:7c:f9:86:91:f7:e2:d1:88:
8b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E8:FF:72:6D:C8:8B:F4:B5:05:E5:4A:C1:6B:91:FC:2E:B4:33:62
X509v3 Authority Key Identifier:
keyid:B8:2E:7B:80:68:C4:AE:9A:E4:CA:4C:3A:6B:20:96:19:9A:74:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uC57gGjErprkykw6ayCWGZp0H_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/yOj_cm3Ii_S1BeVKwWuR_C60M2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29c915-2cbc-4768-840c-aadfa9c06742/1/uC57gGjErprkykw6ayCWGZp0H_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.107.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:50:82:32:ea:8a:e6:99:a1:18:c7:ee:10:9b:84:69:14:e9:
a6:5f:46:0d:67:fe:db:4b:b3:1b:7c:90:56:f5:9d:62:bf:dd:
b3:e0:5d:a6:30:8e:c0:bd:2f:b6:95:a4:19:d7:f5:52:2d:44:
17:99:6d:48:5b:06:01:57:b5:d3:f4:00:23:fc:8a:35:dd:50:
72:c8:a8:e2:65:a9:b2:d2:28:5b:8e:68:e9:d0:26:51:87:e4:
66:07:5d:48:30:7b:06:19:69:f6:03:63:ec:e2:e3:b8:b0:03:
b5:47:5e:05:96:4b:39:26:4e:e0:1f:17:7f:45:ec:54:bb:f3:
26:54:ce:07:1d:06:08:82:5f:01:c8:40:6f:3f:04:52:28:29:
f1:f3:5f:d8:60:e5:ec:6a:bd:06:8e:1c:77:8b:c1:a5:da:b7:
37:d0:99:6c:74:fc:32:c8:96:54:d3:77:e5:eb:bc:3d:99:8f:
5e:39:08:93:d6:b3:2b:93:af:42:da:89:9a:0f:51:e2:f8:26:
24:22:32:7f:4c:45:dc:ec:94:51:55:11:4a:94:65:99:d5:f6:
9d:9c:96:19:9a:72:1f:59:dc:3d:93:f9:48:29:f1:d1:80:a9:
ca:ed:f8:fc:a3:f0:5d:49:ed:58:63:f2:89:72:54:73:aa:46:
83:85:4a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:24 2023 by rpki-client on console-fra.rpki-client.org