Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/cIYjhB_7jd3_WDOVdJ_SE0yBGOw.roa
File: cIYjhB_7jd3_WDOVdJ_SE0yBGOw.roa (raw, json)
Hash identifier: 0z3CNpr55nX11FhWjViNOO/ZISExb+m0iL7NWgQp0hY=
Subject key identifier: 70:86:23:84:1F:FB:8D:DD:FF:58:33:95:74:9F:D2:13:4C:81:18:EC
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0181F8B350B4A5635DDAFE0371C895744FEF
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/cIYjhB_7jd3_WDOVdJ_SE0yBGOw.roa
Signing time: Wed 13 Jul 2022 17:55:10 +0000
ROA not before: Wed 13 Jul 2022 17:55:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212097
IP address blocks: 178.19.39.0/24 maxlen: 24
185.227.102.0/24 maxlen: 24
178.19.36.0/22 maxlen: 22
178.19.36.0/24 maxlen: 24
178.19.37.0/24 maxlen: 24
178.19.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f8:b3:50:b4:a5:63:5d:da:fe:03:71:c8:95:74:4f:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 13 17:55:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=708623841ffb8dddff583395749fd2134c8118ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0d:5e:5c:c8:5d:64:06:4d:6d:50:28:8b:39:
bb:cf:47:c2:26:17:21:c1:cf:22:97:ed:bf:48:56:
1b:76:38:0a:c1:7a:93:5c:41:3a:67:99:12:ef:f5:
19:7b:ff:dc:ad:98:ae:49:11:2a:2f:96:b2:64:e6:
e2:a6:fc:3f:64:bb:08:cb:7a:0b:9f:f0:20:a4:be:
b3:2f:20:9b:c3:c0:7e:12:1e:f0:62:a0:81:81:49:
b2:f6:d0:f4:a4:68:21:56:fe:c8:52:40:77:2b:93:
29:f4:d8:2f:0c:51:f9:37:0b:dd:39:8f:7a:65:69:
df:ef:71:ab:37:86:bc:5d:39:5c:fa:26:c6:8c:b0:
32:02:37:35:09:db:29:38:36:eb:7c:57:16:d6:4d:
4f:51:27:34:ee:03:ed:df:2b:a6:29:08:19:4f:ae:
20:b4:00:2b:69:56:fb:c9:fd:39:d8:17:5c:dd:d3:
c4:ab:98:e3:8f:1a:74:4c:be:55:a9:36:c0:11:77:
2b:c9:fe:65:46:27:13:a1:6e:3c:73:32:cd:7b:a8:
89:57:0e:a2:17:8c:cc:04:67:4d:ba:e9:d5:5f:05:
eb:84:88:66:d8:25:2d:e2:63:89:2e:30:82:35:f2:
0e:b3:4e:1b:2d:6d:e3:96:3c:ef:8b:f7:b1:e2:67:
ba:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:86:23:84:1F:FB:8D:DD:FF:58:33:95:74:9F:D2:13:4C:81:18:EC
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/cIYjhB_7jd3_WDOVdJ_SE0yBGOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.19.36.0/22
185.227.102.0/24
Signature Algorithm: sha256WithRSAEncryption
01:69:08:df:19:48:b7:15:fa:56:c5:ff:20:d9:4e:56:44:09:
94:5b:ca:b0:ef:83:2f:9a:03:fb:4d:07:36:af:bd:93:45:32:
03:eb:47:a7:a7:f4:05:5c:f9:c4:80:4a:20:f8:02:87:c9:7e:
49:f9:51:da:41:88:84:fb:97:cd:3f:40:4c:ac:c7:39:97:4a:
88:7d:ba:4d:ad:a8:19:2c:fd:42:6b:7d:b5:ca:7f:45:1a:de:
cd:a5:2a:9e:cf:fb:de:74:c0:bd:e6:95:38:40:0f:70:30:25:
c5:99:38:7e:57:4e:e0:d3:86:6a:d3:33:41:c0:d0:f9:59:48:
00:ea:9a:cb:ac:9c:9a:01:80:08:95:a9:39:85:95:25:93:2c:
8e:fc:02:1c:7f:25:7c:2c:1d:90:da:c0:ab:b1:f4:7d:7a:f3:
0c:65:2d:70:e6:9b:4d:28:65:03:dc:4e:d3:68:83:75:82:cb:
74:2e:4d:d8:bc:d4:71:60:57:19:93:74:7d:9b:43:82:92:1a:
e8:0b:e8:47:fa:7a:d4:67:4a:4e:35:78:67:97:34:52:94:69:
51:23:c3:53:73:45:6a:5b:09:62:97:d2:dd:19:4f:c8:54:b3:
cf:aa:4a:c3:b6:a5:5c:2e:e2:ac:86:00:4f:08:eb:c2:cd:dc:
87:3e:93:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org