Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/1pW4ktjECyZzIrxHvDx5BV5mDoY.roa
File: 1pW4ktjECyZzIrxHvDx5BV5mDoY.roa (raw, json)
Hash identifier: LehtmC/uQqiiAJl44ZO92TwIsCijpJOjXJzWjSMRw+Y=
Subject key identifier: D6:95:B8:92:D8:C4:0B:26:73:22:BC:47:BC:3C:79:05:5E:66:0E:86
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03E4E050
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/1pW4ktjECyZzIrxHvDx5BV5mDoY.roa
Signing time: Sat 01 Jan 2022 13:04:11 +0000
ROA not before: Sat 01 Jan 2022 13:04:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207766
IP address blocks: 178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65331280 (0x3e4e050)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d695b892d8c40b267322bc47bc3c79055e660e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:20:5d:cf:b0:ee:b2:da:88:d4:40:aa:e2:01:
b4:12:fa:e1:0d:fe:7c:c0:33:65:ad:fb:bc:1d:4f:
e7:11:8d:0a:ce:ec:fe:f9:a1:b8:ac:ca:86:4c:aa:
9a:1a:84:b9:42:33:0d:82:09:19:7f:82:b9:0a:61:
a9:4f:3f:71:c8:aa:c8:1d:97:05:9b:ea:c3:9a:37:
a0:87:c2:ea:fb:2c:f7:ba:ab:a8:9b:9a:d5:46:c8:
39:36:92:bc:28:6c:8a:fc:40:f0:0f:cf:dd:12:c1:
98:12:17:8d:cf:d2:91:a9:5d:c7:18:b8:e6:09:66:
a0:10:8c:ea:e7:37:44:4d:38:9d:fe:3d:de:1e:b1:
34:f7:8a:b7:7a:2f:6e:9f:e9:7c:b6:bf:c0:fa:df:
26:05:e9:83:e4:fd:cb:dc:2f:78:8a:a5:a1:97:b3:
d5:db:df:8f:00:37:3c:c7:01:54:9f:2d:6c:b3:1d:
c1:1c:c0:c2:ce:f8:a6:a6:10:0c:66:3c:f9:93:6c:
09:5a:e7:24:6e:30:7d:fd:5a:fc:cd:d2:b8:71:3a:
ff:a9:33:aa:e4:a7:b2:24:96:e4:70:00:f2:6e:77:
cc:d1:b1:36:29:bc:14:2c:f1:fd:15:8f:5f:fb:d5:
57:6b:2f:17:e6:bd:02:34:8e:7e:cd:bf:54:2f:27:
6d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:95:B8:92:D8:C4:0B:26:73:22:BC:47:BC:3C:79:05:5E:66:0E:86
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/1pW4ktjECyZzIrxHvDx5BV5mDoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.19.32.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:62:cf:1b:c4:f9:19:14:0a:99:2e:e8:97:41:d6:0e:0e:70:
2d:7e:8c:8f:68:d5:7f:f4:32:f3:4c:8e:a6:c6:b5:4b:9b:60:
a6:24:a9:b2:48:55:16:11:05:82:23:cb:59:94:1b:01:f5:1c:
60:c3:e1:52:f7:5c:41:5b:6a:32:9b:f0:63:4c:67:cc:92:30:
4a:cc:b8:bd:50:28:c4:b8:e6:44:26:69:c8:c5:ce:ff:f6:3f:
6f:ef:4c:9d:4e:07:48:23:75:2b:d9:e2:8d:52:62:2a:2e:2c:
96:fc:3a:e8:88:02:e1:19:b2:f1:b8:94:12:93:73:fe:71:9d:
d3:4e:9f:c7:53:98:f5:30:c0:c5:dd:84:62:1b:46:69:9a:4c:
71:fc:56:05:f6:69:7f:e4:a6:5c:59:06:ba:0b:fe:1a:d2:9e:
fd:b2:07:06:1a:15:88:00:e6:b0:e1:06:83:0b:11:a1:a2:2a:
09:fb:3b:9e:44:3b:70:6e:7e:d6:44:1a:48:a3:e9:df:40:5e:
1a:02:3e:cd:4a:38:93:ac:af:e7:f1:0b:3a:fd:35:7f:0c:d9:
b0:4d:cc:68:9c:8b:c2:1d:15:5a:82:25:4d:44:d2:13:f9:03:
f2:f5:e9:fc:34:bf:14:cf:08:01:41:80:e7:4c:9b:a4:ee:1e:
60:04:71:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org