Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/i6IX2LQgWBFpyWckpy_dUjkHYeE.roa
File: i6IX2LQgWBFpyWckpy_dUjkHYeE.roa (raw, json)
Hash identifier: ow4LQ93BnHFglEoUHuMxfbunQmHVfLklWZgVxMvj2so=
Subject key identifier: 8B:A2:17:D8:B4:20:58:11:69:C9:67:24:A7:2F:DD:52:39:07:61:E1
Certificate issuer: /CN=cbd41cc121e0cb60a3a98dbf72ba4dbd63eebe9f
Certificate serial: 0230DE
Authority key identifier: CB:D4:1C:C1:21:E0:CB:60:A3:A9:8D:BF:72:BA:4D:BD:63:EE:BE:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9QcwSHgy2CjqY2_crpNvWPuvp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/i6IX2LQgWBFpyWckpy_dUjkHYeE.roa
Signing time: Mon 17 Jan 2022 09:18:33 +0000
ROA not before: Mon 17 Jan 2022 09:18:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211559
IP address blocks: 213.178.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143582 (0x230de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd41cc121e0cb60a3a98dbf72ba4dbd63eebe9f
Validity
Not Before: Jan 17 09:18:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ba217d8b420581169c96724a72fdd52390761e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:61:86:7c:ec:ea:29:c9:c2:d1:79:aa:0a:ed:
4a:d3:81:5a:ab:eb:34:b1:2c:1a:da:14:f4:f7:d2:
a2:05:3c:5a:21:b8:50:74:c3:1e:50:b1:37:1d:fe:
d7:72:b0:ba:c2:0c:00:86:16:6d:fb:6a:0e:91:58:
32:a5:79:8a:ba:4d:f6:f5:79:5b:7e:ff:51:49:45:
0d:5d:37:38:27:9e:25:ee:b5:f3:df:c2:bb:44:8b:
5e:1f:22:19:d1:6e:ec:92:1c:25:ef:64:78:6c:79:
f3:61:b7:68:39:ec:c9:2b:88:bc:99:fb:b6:7d:8b:
bf:48:df:0d:88:e0:e2:88:cf:8c:39:51:81:8d:ae:
1f:40:1b:04:cc:26:34:b4:e5:c6:47:41:74:0e:bd:
8d:07:a1:b1:2b:79:02:bb:eb:7f:2a:a7:b6:52:9e:
68:58:10:11:b4:b2:78:a6:d7:dd:8b:79:35:9f:98:
ab:8f:2e:44:48:dd:d3:88:47:15:93:4a:73:4e:e6:
2a:5f:2d:57:39:01:7b:be:05:79:91:3e:0a:28:c9:
66:5b:df:ef:2b:41:fa:b6:09:d3:ed:45:75:8f:5e:
e8:3c:54:e8:cb:f8:c7:42:92:5f:5f:dd:15:87:4e:
6a:70:97:4c:62:18:40:f9:9c:96:f4:40:24:7f:d0:
61:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:A2:17:D8:B4:20:58:11:69:C9:67:24:A7:2F:DD:52:39:07:61:E1
X509v3 Authority Key Identifier:
keyid:CB:D4:1C:C1:21:E0:CB:60:A3:A9:8D:BF:72:BA:4D:BD:63:EE:BE:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9QcwSHgy2CjqY2_crpNvWPuvp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/i6IX2LQgWBFpyWckpy_dUjkHYeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/y9QcwSHgy2CjqY2_crpNvWPuvp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.178.136.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:b4:68:8f:ff:d5:36:6a:f8:6c:b4:1e:7f:ad:fb:fb:fd:98:
28:77:b2:96:eb:4d:a5:8c:43:6e:b7:b6:5b:22:1b:3a:44:83:
e3:db:0c:6f:ac:2c:11:4a:4d:ec:03:ce:a4:ee:6c:e6:68:d4:
05:6c:ae:3f:d1:21:b6:e4:92:1a:55:f4:9b:d9:a4:7f:78:38:
a7:f9:5f:20:f0:a4:39:a3:ad:9e:dc:ae:e6:44:93:09:6e:38:
81:4d:2b:e9:fd:32:fc:d0:10:1c:7a:e6:60:a2:60:69:02:ae:
01:5f:dc:e9:ce:44:cc:7f:e7:00:cd:a3:c2:c4:0e:23:66:23:
0c:ce:e4:e5:3d:a6:87:0d:38:8d:1f:ea:70:f4:ee:a1:d8:83:
29:0d:17:b6:c7:99:ae:cb:9c:e6:4c:89:c2:e1:d9:76:5b:58:
da:db:cb:fb:70:e0:2e:10:d9:a1:b3:d9:2e:e0:98:0e:8b:73:
61:b8:08:fb:fc:7b:67:88:6c:f6:6b:d1:1e:23:67:dd:06:49:
db:b5:46:d9:0a:fa:f8:b6:1d:60:77:0c:65:e2:3d:2b:3a:c6:
7a:85:25:a8:00:5d:b5:69:25:26:29:0b:48:65:d7:cb:09:3f:
87:ef:3b:a6:4a:28:70:05:f5:43:0e:38:7e:7c:86:ca:da:a4:
60:68:88:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:36 2024 by rpki-client on console-ams.rpki-client.org