Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/FZ9vHbnjW5m8XfyZOpQIfMkddkY.roa
File: FZ9vHbnjW5m8XfyZOpQIfMkddkY.roa (raw, json)
Hash identifier: 8Wit5UvE7/BDHYKXrtYMSXTorAgEYv8IBWtbTQFL5ng=
Subject key identifier: 15:9F:6F:1D:B9:E3:5B:99:BC:5D:FC:99:3A:94:08:7C:C9:1D:76:46
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 01849AD70E9A1B746F67157FF8BCBF3C1DF0
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/FZ9vHbnjW5m8XfyZOpQIfMkddkY.roa
Signing time: Mon 21 Nov 2022 15:38:16 +0000
ROA not before: Mon 21 Nov 2022 15:38:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201416
IP address blocks: 178.211.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9a:d7:0e:9a:1b:74:6f:67:15:7f:f8:bc:bf:3c:1d:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Nov 21 15:38:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=159f6f1db9e35b99bc5dfc993a94087cc91d7646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:86:bd:f7:57:1a:9a:bb:8b:67:0b:68:ad:b4:
02:80:0f:4d:a7:97:c8:2c:43:2c:7f:1e:75:fb:6b:
cd:27:62:b6:a4:22:6e:c7:d4:ed:41:3b:9c:29:a7:
6c:31:6c:60:f9:74:e5:6d:07:db:1f:85:a9:62:88:
48:e9:9a:88:5e:3d:27:60:7d:49:c2:41:ec:1f:a5:
6e:18:87:ca:7c:61:a7:9f:73:31:a2:31:c3:e8:f3:
f3:4c:9c:02:4e:8e:b3:6c:12:d4:5b:27:70:ab:e1:
ed:b3:b8:74:63:de:11:19:5c:96:80:43:cd:c3:16:
8c:54:99:9c:32:2c:b2:e2:26:d1:1c:09:a5:dd:84:
f1:24:23:24:83:ff:3a:f9:bd:e6:75:7e:7c:a2:29:
39:b2:83:2a:33:b3:e5:3c:46:1c:22:c3:0a:33:b4:
a8:94:80:84:98:9f:ee:c7:47:0c:4d:3a:01:c2:cd:
70:0a:c9:40:a6:32:73:6e:54:11:e5:ad:b1:38:bb:
c2:69:0f:6a:96:eb:03:90:29:56:71:e4:ef:16:62:
31:f1:89:95:b1:8a:d5:97:f9:a4:83:ff:1a:70:9b:
a4:25:0e:a0:b0:f6:fb:93:06:75:8b:a3:82:93:c0:
3e:46:70:d6:b6:24:f0:d4:df:ae:40:5f:b8:12:a2:
86:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9F:6F:1D:B9:E3:5B:99:BC:5D:FC:99:3A:94:08:7C:C9:1D:76:46
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/FZ9vHbnjW5m8XfyZOpQIfMkddkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.152.0/24
Signature Algorithm: sha256WithRSAEncryption
10:d3:21:7e:69:d9:85:fb:7b:94:c1:9b:da:18:33:95:fc:13:
fa:2d:ab:09:78:82:24:40:20:d8:c1:88:59:6f:36:27:5f:84:
b5:10:9d:bf:0f:97:36:59:77:ba:38:ac:aa:36:73:cd:74:88:
94:da:33:2d:b8:08:fa:0c:a3:2a:e5:6a:4c:a6:0a:f1:85:67:
c2:81:f8:3f:9a:c6:0e:1f:0f:be:b5:ea:73:13:d6:92:71:dd:
b7:26:b8:95:64:75:43:e1:7c:01:a8:8d:f3:6b:81:0a:69:46:
37:31:da:f8:dd:d4:f5:d6:d9:5b:cb:0d:b5:3f:f1:a7:9a:18:
48:88:e3:4f:9d:e4:19:21:11:71:fe:7f:b2:64:c5:6c:54:e1:
f9:2d:37:00:19:05:d6:5f:cf:ed:89:80:85:dc:19:2a:74:7d:
eb:c4:91:a1:f5:e8:c3:50:79:05:a6:03:01:a4:76:c3:fe:c8:
e0:a7:80:f6:9f:59:79:d9:e6:c0:d1:04:06:37:d4:46:0e:f9:
b9:2d:fa:68:de:7b:1d:a7:3d:db:0b:c7:e3:57:42:5b:c7:be:
fa:97:26:59:83:02:88:ce:dc:f5:cd:ab:49:36:78:f2:91:d7:
88:a4:82:11:8a:b0:e3:09:36:7e:fb:d4:9c:5d:b0:42:79:ea:
66:47:da:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:04 2024 by rpki-client on console-ams.rpki-client.org