Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/nEFes7sHMmEIqB2aNEGDJW2q_m4.roa
File: nEFes7sHMmEIqB2aNEGDJW2q_m4.roa (raw, json)
Hash identifier: 8fhYJ0ea8kDNQd4QiLBYuwObr4UzUJcVLLrW8KI6tCA=
Subject key identifier: 9C:41:5E:B3:BB:07:32:61:08:A8:1D:9A:34:41:83:25:6D:AA:FE:6E
Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Certificate serial: 371DA1B2
Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/nEFes7sHMmEIqB2aNEGDJW2q_m4.roa
Signing time: Sat 01 Jan 2022 14:07:47 +0000
ROA not before: Sat 01 Jan 2022 14:07:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 131171
IP address blocks: 178.255.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 924688818 (0x371da1b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Validity
Not Before: Jan 1 14:07:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c415eb3bb07326108a81d9a344183256daafe6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f2:44:9c:d4:c0:eb:d7:6c:8f:54:57:3a:fc:
4e:22:2b:f2:08:3d:bc:a5:04:31:cc:c4:e6:f8:03:
d5:1a:73:8b:cf:ff:cf:e0:11:0e:7b:d1:a4:a0:4b:
73:32:d5:03:de:5e:e1:17:00:10:68:c4:66:56:50:
59:7c:3b:33:c5:b7:d0:32:f4:4d:df:7a:bd:04:23:
e1:ee:9b:af:31:cc:fe:d3:20:e3:03:d1:b5:dc:00:
0f:9c:0c:01:00:22:d0:41:e3:22:c5:d3:b4:56:90:
fd:b4:a6:00:58:0e:e7:50:f6:2c:17:e6:52:1f:05:
6d:e7:dc:b6:1d:48:1d:6e:34:4b:7b:be:0e:8c:92:
e8:b9:eb:c2:f9:55:3a:82:fb:95:36:f2:4a:b3:f4:
7e:c3:41:a8:2b:f2:5b:b2:cd:a0:15:96:3d:d9:f8:
c4:5f:ce:fb:4b:ab:2f:7b:ef:aa:52:95:b7:84:45:
e1:46:1e:18:e9:f3:99:db:36:39:d3:64:c8:9b:df:
3e:7b:89:ea:d5:f1:b4:62:3b:09:e0:f0:9e:b4:d8:
e2:a9:4c:d3:a1:59:f6:2f:f4:b5:97:50:62:52:e9:
f1:5c:ec:fd:d5:36:46:7c:c1:fa:53:fc:aa:64:5f:
b4:1b:9d:13:ee:ef:22:2e:9a:ae:19:17:2e:f2:fe:
98:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:41:5E:B3:BB:07:32:61:08:A8:1D:9A:34:41:83:25:6D:AA:FE:6E
X509v3 Authority Key Identifier:
keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/nEFes7sHMmEIqB2aNEGDJW2q_m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.10.0/24
Signature Algorithm: sha256WithRSAEncryption
78:06:4c:c6:e2:90:d4:2d:f6:8f:f5:33:d8:15:bb:3d:a3:43:
41:7d:1a:5d:23:6d:79:ec:54:a0:08:fb:72:b0:2e:be:a8:2e:
65:86:47:97:d0:e0:5e:37:22:a3:b7:b7:9c:fb:1a:7f:cb:9a:
8f:8a:85:75:d1:dd:4e:a9:7b:a9:94:34:92:57:4a:b6:84:9e:
bf:c4:0b:5a:23:90:68:9a:99:be:65:b9:7f:5e:cd:ea:9b:b4:
9e:e2:5c:61:cc:01:dd:b4:88:8d:06:c6:e0:7e:12:9e:89:d4:
a8:cb:77:81:7b:da:e4:c8:aa:db:ea:48:f0:d0:4e:d9:d2:9f:
18:69:35:2d:03:a5:d0:b0:6b:b5:5e:75:fd:b4:9a:62:a6:de:
7b:28:8e:98:ff:24:51:e5:3b:02:df:8b:53:34:ee:50:ec:2a:
8c:d3:97:9b:32:30:47:34:cd:1f:b5:fb:b9:59:aa:75:e0:d5:
a1:55:1e:5c:ec:f1:fd:98:2b:3b:75:7d:2e:01:2c:fa:5b:74:
f8:20:d4:79:4a:d5:c7:38:0a:8a:e1:54:54:16:c2:02:3b:c7:
94:28:aa:8e:13:40:94:7e:d2:19:3e:bc:58:49:b2:40:bc:c9:
13:ad:66:30:ba:b4:2e:1b:28:24:f3:4a:31:6a:16:dd:97:b4:
66:60:e7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:10 2024 by rpki-client on console-ams.rpki-client.org