Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d57969-ea5f-4518-92e1-53a0680f9710/1/t0UyaT85P4m4ls3ZAJI3F4--5lA.roa
File: t0UyaT85P4m4ls3ZAJI3F4--5lA.roa (raw, json)
Hash identifier: PTrodd3SPqfqsIJg5grS1FnoP287llx6Vrtg34L0X84=
Subject key identifier: B7:45:32:69:3F:39:3F:89:B8:96:CD:D9:00:92:37:17:8F:BE:E6:50
Certificate issuer: /CN=3c8dfe109de831d32fd78a58cc5c1d149a4553d2
Certificate serial: 01054778
Authority key identifier: 3C:8D:FE:10:9D:E8:31:D3:2F:D7:8A:58:CC:5C:1D:14:9A:45:53:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PI3-EJ3oMdMv14pYzFwdFJpFU9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/d57969-ea5f-4518-92e1-53a0680f9710/1/t0UyaT85P4m4ls3ZAJI3F4--5lA.roa
Signing time: Sat 01 Jan 2022 07:58:09 +0000
ROA not before: Sat 01 Jan 2022 07:58:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16279
IP address blocks: 193.178.176.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17123192 (0x1054778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c8dfe109de831d32fd78a58cc5c1d149a4553d2
Validity
Not Before: Jan 1 07:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b74532693f393f89b896cdd9009237178fbee650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7e:8f:ba:67:e8:aa:0c:70:a6:0a:94:66:0e:
0d:24:71:e5:16:b5:22:8f:99:a0:ff:66:59:4c:20:
2e:81:da:cf:46:bf:36:13:fd:d8:bd:3b:6e:e7:c2:
7b:97:fe:9f:ca:28:1b:38:2e:c7:d3:70:79:6d:2e:
7b:bd:b1:19:6d:76:9d:67:4d:4c:e7:8d:35:94:2a:
6c:85:e1:ea:91:a8:a8:ed:84:fc:ac:79:b7:b8:c9:
86:b6:1a:9f:8d:dd:86:db:d8:55:e9:85:6a:30:9a:
fc:d9:2f:54:f0:77:71:41:63:75:37:a2:97:3d:6b:
08:65:81:41:ad:8a:31:15:4d:ee:70:8a:06:1d:01:
f6:b7:80:ec:b9:5c:21:2d:cf:7d:7e:8b:9a:e1:49:
51:06:05:ac:bb:e6:89:ca:c8:30:d2:f7:eb:d4:72:
0c:bc:73:36:44:5f:59:78:a4:82:7c:ad:54:ac:8b:
2b:f5:63:62:74:98:7e:8a:c7:a9:81:54:e1:db:54:
ac:69:db:1c:93:d9:bd:98:27:e1:bb:b7:fb:a4:d1:
ad:7e:2b:79:b0:ef:83:c3:97:12:8e:a9:24:76:6d:
ea:b4:b5:b7:b3:5a:63:f9:e1:77:7d:ee:5c:0c:f8:
45:a8:2a:cf:06:ff:f9:fc:52:1e:65:0e:5e:62:9a:
be:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:45:32:69:3F:39:3F:89:B8:96:CD:D9:00:92:37:17:8F:BE:E6:50
X509v3 Authority Key Identifier:
keyid:3C:8D:FE:10:9D:E8:31:D3:2F:D7:8A:58:CC:5C:1D:14:9A:45:53:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PI3-EJ3oMdMv14pYzFwdFJpFU9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d57969-ea5f-4518-92e1-53a0680f9710/1/t0UyaT85P4m4ls3ZAJI3F4--5lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d57969-ea5f-4518-92e1-53a0680f9710/1/PI3-EJ3oMdMv14pYzFwdFJpFU9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.176.0/21
Signature Algorithm: sha256WithRSAEncryption
ac:d8:e4:d1:a5:22:23:3f:ca:6d:d0:da:26:87:0c:b4:2b:65:
ec:47:16:62:59:c4:68:68:65:3f:7c:1e:a7:81:80:36:66:ed:
9a:80:69:18:b1:a1:d6:d3:9e:28:d3:b4:e9:01:05:94:b3:2f:
d5:b7:73:07:ee:00:c6:82:70:20:f1:72:66:d7:87:ff:f2:98:
09:2a:74:04:f2:50:fa:56:b5:03:10:6b:d2:9a:78:63:24:70:
a8:d6:13:b0:c3:7d:b3:d7:5e:b5:b4:8c:06:0b:53:17:b1:5d:
ec:c8:1e:b0:cd:10:81:60:8e:aa:fa:ae:8d:23:c1:ac:8c:17:
6f:5c:9e:6b:60:f9:3d:6e:c7:97:5b:43:6a:b7:6a:e1:79:2b:
9a:7b:cf:c9:f2:4f:e6:57:a2:f3:52:ea:70:37:21:9f:a8:bf:
04:10:7c:b1:43:61:cc:22:63:52:80:9f:59:0f:2b:84:8e:f9:
38:b1:21:fa:72:63:2a:fb:f1:ed:21:c6:fd:12:7e:7f:75:01:
03:46:99:1d:1d:8e:95:49:bc:1e:85:49:36:a2:e7:9e:69:bc:
b8:c0:b1:05:06:7d:40:60:79:22:52:84:b3:51:ed:85:a6:98:
76:ed:d7:f0:ab:d8:b2:64:11:05:a7:68:0a:4b:2a:19:8c:71:
1c:f3:c7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:11 2024 by rpki-client on console-ams.rpki-client.org