Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/umPTmAKSh6BVZ43kelWmkuQuZgY.roa
File: umPTmAKSh6BVZ43kelWmkuQuZgY.roa (raw, json)
Hash identifier: zgLbCBkcaPjoGkazfWlZsug67PpeAgoOFMGj7DVOWsk=
Subject key identifier: BA:63:D3:98:02:92:87:A0:55:67:8D:E4:7A:55:A6:92:E4:2E:66:06
Certificate issuer: /CN=20f638107abb84ae6fb03cc1db2cfd1bc4487f8d
Certificate serial: 029DDF56
Authority key identifier: 20:F6:38:10:7A:BB:84:AE:6F:B0:3C:C1:DB:2C:FD:1B:C4:48:7F:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPY4EHq7hK5vsDzB2yz9G8RIf40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/umPTmAKSh6BVZ43kelWmkuQuZgY.roa
Signing time: Wed 15 Jun 2022 11:17:46 +0000
ROA not before: Wed 15 Jun 2022 11:17:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50987
IP address blocks: 178.219.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43900758 (0x29ddf56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f638107abb84ae6fb03cc1db2cfd1bc4487f8d
Validity
Not Before: Jun 15 11:17:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba63d398029287a055678de47a55a692e42e6606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:eb:69:6d:18:7c:03:ed:d2:8f:37:80:20:4a:
3a:73:d2:19:a8:29:ce:6f:dd:be:56:fd:ba:71:f1:
7a:85:c4:7d:1f:24:70:05:e6:2d:ae:2e:d5:2a:5a:
9c:69:c6:89:d2:75:e7:02:c9:db:6a:53:70:42:c6:
75:07:6c:03:93:a9:18:63:c5:68:10:ce:fe:3c:1a:
68:ec:27:88:d6:32:63:d2:25:df:16:97:af:18:a6:
e2:b6:8f:cc:68:b6:47:df:57:54:b1:65:5e:be:85:
dc:a7:1e:99:83:88:2a:92:2e:d9:7e:5d:c0:3b:ed:
a9:25:72:dd:ca:7f:98:60:91:ac:87:68:b2:c2:4d:
d5:74:00:17:ef:47:59:89:57:ce:e8:07:7a:58:49:
40:3b:3a:91:2d:59:70:b5:d9:e3:46:69:81:b1:23:
8e:5c:8b:30:d8:5c:9f:d5:09:24:bd:a0:e0:4c:6f:
9e:57:8f:69:6f:f6:79:07:51:ae:28:3f:80:c5:ad:
e9:2b:98:7b:57:d9:32:cf:bd:5a:52:ad:d3:65:49:
63:9f:67:db:f1:d4:b7:fe:af:68:0d:36:2a:1c:89:
91:3d:ef:71:d9:34:51:c8:35:33:43:42:28:b5:bc:
0c:b5:e2:8e:22:57:d7:17:5e:d3:81:7e:5c:13:eb:
05:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:63:D3:98:02:92:87:A0:55:67:8D:E4:7A:55:A6:92:E4:2E:66:06
X509v3 Authority Key Identifier:
keyid:20:F6:38:10:7A:BB:84:AE:6F:B0:3C:C1:DB:2C:FD:1B:C4:48:7F:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPY4EHq7hK5vsDzB2yz9G8RIf40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/umPTmAKSh6BVZ43kelWmkuQuZgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/IPY4EHq7hK5vsDzB2yz9G8RIf40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.16.0/24
Signature Algorithm: sha256WithRSAEncryption
15:58:71:94:d1:d8:6e:ae:63:07:ff:05:03:26:5e:75:c2:23:
21:1d:50:22:f1:bd:f4:a4:43:7f:35:5b:6a:1f:21:a1:77:fb:
77:0c:84:7d:83:ff:da:8c:da:e7:d9:8f:6f:10:08:78:6c:6d:
69:13:3d:28:63:60:19:0a:b2:96:00:d1:a8:d8:56:1b:d4:c9:
2d:86:85:a7:ef:e9:a0:07:da:b3:96:bb:d0:81:89:88:f3:bb:
ea:6a:91:9c:65:56:95:6a:d6:87:aa:d5:9e:bd:88:01:68:05:
51:0e:c3:ec:ce:13:43:f1:b7:b7:2e:80:92:ce:b3:f6:21:42:
da:bb:ba:a1:cd:22:fa:5b:f1:5b:a4:ec:4d:31:1e:5c:99:34:
53:9d:d7:d2:66:2f:61:57:6f:cd:9b:ab:26:b3:17:23:e9:e3:
83:fb:fd:8c:b0:a9:ae:55:b6:13:3b:d4:88:4f:10:e3:6d:06:
c9:86:1b:54:ed:8f:41:da:c7:ff:ff:b0:20:6f:b6:f8:e1:3d:
68:cc:88:d6:64:f7:e7:28:8a:0f:b5:fd:3f:f0:a1:4c:80:0c:
e4:52:86:d8:99:43:2e:f7:75:b3:60:8e:68:60:ef:91:53:11:
fe:b7:93:86:c1:0a:94:b5:2f:25:67:75:a5:fe:c8:f6:62:4b:
aa:61:46:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:29 2025 by rpki-client