Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/4N7Yt10Jtvp2k3F_mCBrEHGjDMU.roa
File: 4N7Yt10Jtvp2k3F_mCBrEHGjDMU.roa (raw, json)
Hash identifier: T1491N8azugwsjKHOYRx9nRDBzZLafTjDtJS+S3PyPs=
Subject key identifier: E0:DE:D8:B7:5D:09:B6:FA:76:93:71:7F:98:20:6B:10:71:A3:0C:C5
Certificate issuer: /CN=cbd41cc121e0cb60a3a98dbf72ba4dbd63eebe9f
Certificate serial: 01A62E
Authority key identifier: CB:D4:1C:C1:21:E0:CB:60:A3:A9:8D:BF:72:BA:4D:BD:63:EE:BE:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9QcwSHgy2CjqY2_crpNvWPuvp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/4N7Yt10Jtvp2k3F_mCBrEHGjDMU.roa
Signing time: Mon 17 Jan 2022 09:18:33 +0000
ROA not before: Mon 17 Jan 2022 09:18:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48728
IP address blocks: 213.178.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108078 (0x1a62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd41cc121e0cb60a3a98dbf72ba4dbd63eebe9f
Validity
Not Before: Jan 17 09:18:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0ded8b75d09b6fa7693717f98206b1071a30cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:91:63:72:33:42:47:4f:a9:66:79:e5:4a:8f:
3c:e9:95:18:8c:c7:47:11:3b:c1:a0:62:f1:71:30:
51:95:d4:98:7e:e5:bb:70:13:9f:c6:4f:d8:04:96:
72:69:10:43:d6:33:a2:6c:95:21:54:f0:b8:70:43:
59:b8:7e:86:c2:bc:d9:a7:8f:9a:c2:d9:76:de:9b:
f3:f8:a1:e3:c9:36:f0:9f:42:34:65:98:95:90:4c:
31:6b:31:a4:3b:ea:26:08:6f:c1:db:b9:b0:a5:1e:
ed:94:a1:b1:f3:38:e8:15:2d:a5:b5:4a:bc:8a:93:
90:ef:63:e3:f6:bc:19:40:40:7b:50:05:c0:4e:3c:
21:73:a9:b6:54:e5:3d:e1:e3:9a:5e:76:e1:ae:66:
53:3e:b1:c3:d7:58:77:32:8c:48:cb:ef:e5:d6:17:
20:ee:65:5d:cc:22:ec:00:79:a5:4e:88:81:d3:4c:
a1:92:8a:16:b4:21:7c:83:73:53:e3:04:85:cd:f3:
c4:60:27:81:f1:6c:a3:fb:1d:f2:d0:78:a7:f2:71:
39:45:57:33:8f:64:2b:f2:a3:41:49:fb:38:7c:a4:
69:96:1e:e6:23:1d:7f:c2:97:ff:34:cf:bc:94:ea:
df:f6:42:ce:b7:f7:d8:f1:d1:7c:35:a9:0b:88:6c:
9a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:DE:D8:B7:5D:09:B6:FA:76:93:71:7F:98:20:6B:10:71:A3:0C:C5
X509v3 Authority Key Identifier:
keyid:CB:D4:1C:C1:21:E0:CB:60:A3:A9:8D:BF:72:BA:4D:BD:63:EE:BE:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9QcwSHgy2CjqY2_crpNvWPuvp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/4N7Yt10Jtvp2k3F_mCBrEHGjDMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/y9QcwSHgy2CjqY2_crpNvWPuvp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.178.136.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:4a:33:43:e5:4e:dd:f5:fc:63:87:d6:40:e8:71:99:94:db:
f1:2d:1a:60:0a:2b:7f:eb:d8:ce:cd:4e:c5:20:59:38:38:90:
6f:ad:7e:58:eb:1b:7a:f1:34:51:66:17:a2:2b:ef:e8:5f:0d:
f9:6d:03:68:23:4c:01:22:d8:51:9f:33:db:05:ab:57:9a:41:
e9:ce:f2:b8:04:d4:b2:1e:6f:99:a5:10:b2:4e:72:62:a6:67:
da:75:54:ca:57:43:6a:d4:f2:7d:98:58:68:ee:d3:7f:e7:3a:
3e:0f:3b:cc:c9:d4:0a:1c:a5:e3:44:94:a7:6b:a7:6e:d3:7f:
4e:44:c4:e9:f8:37:3c:17:da:b9:cb:b8:2f:cb:c4:9b:f3:b6:
7a:85:78:70:7b:b4:8c:2c:ca:14:74:c9:b1:dc:23:54:3c:4f:
6e:61:31:aa:59:9f:b2:d5:10:d8:fa:b7:46:a7:e5:42:ad:f1:
1a:ab:ba:b7:2c:b3:8b:ca:2d:a3:a9:01:7a:0e:f6:91:80:4f:
35:aa:14:0b:80:16:d2:4d:01:25:3d:a7:8d:f0:66:de:8f:ab:
31:20:08:50:be:fb:44:08:69:52:bf:95:ec:eb:90:2d:08:52:
85:b4:ba:81:6e:6d:ff:e6:7a:dc:25:31:6a:42:b2:6a:93:e4:
2a:43:bd:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:49 2025 by rpki-client