Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/Sa9KRidN5vEId7DmbCbtpKA-PNk.roa
File: Sa9KRidN5vEId7DmbCbtpKA-PNk.roa (raw, json)
Hash identifier: wJJq0nvGlOS/rK6qUZld7SVA/8+68/cejNMqHZGrqoE=
Subject key identifier: 49:AF:4A:46:27:4D:E6:F1:08:77:B0:E6:6C:26:ED:A4:A0:3E:3C:D9
Certificate issuer: /CN=73e157b2918cadca8a5a9fbc66e977608a6df5e1
Certificate serial: 018505992427AB974DF092AE8F7D18B399A7
Authority key identifier: 73:E1:57:B2:91:8C:AD:CA:8A:5A:9F:BC:66:E9:77:60:8A:6D:F5:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c-FXspGMrcqKWp-8Zul3YIpt9eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/Sa9KRidN5vEId7DmbCbtpKA-PNk.roa
Signing time: Mon 12 Dec 2022 09:10:00 +0000
ROA not before: Mon 12 Dec 2022 09:10:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 178.21.144.0/23 maxlen: 23
2a02:2c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:99:24:27:ab:97:4d:f0:92:ae:8f:7d:18:b3:99:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73e157b2918cadca8a5a9fbc66e977608a6df5e1
Validity
Not Before: Dec 12 09:10:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49af4a46274de6f10877b0e66c26eda4a03e3cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:20:5d:85:7d:56:55:7b:83:90:b9:fa:c4:be:
c1:2b:8e:13:95:7d:54:dd:3d:1d:cb:73:9f:bb:89:
cc:69:f3:6e:7a:ef:e8:17:94:38:1a:7e:57:d9:da:
4d:26:5d:ca:3f:77:9e:a2:9c:a2:d2:a3:3b:86:63:
b2:3d:7c:74:3f:41:39:b4:96:79:81:33:72:f6:88:
c9:95:66:59:69:d4:f2:d3:08:20:82:14:03:c0:b4:
83:6e:a4:24:3d:1f:5f:60:46:ff:1c:50:bd:c2:a5:
32:00:53:0b:ad:ff:88:4a:b2:a6:f2:79:60:b1:2f:
50:a4:38:90:39:7b:36:f8:ab:69:2d:ef:89:ae:b8:
c5:3b:f8:ed:77:93:f7:56:2c:0e:fb:67:d1:d5:5b:
8c:1a:33:62:22:13:db:6f:99:e9:42:2c:af:15:ae:
67:d4:48:05:62:82:f1:f5:e7:6a:4f:41:75:e2:d8:
16:49:f2:28:ce:8d:bc:b5:99:b7:0c:7c:58:dd:50:
ba:ca:6a:34:17:39:7c:48:52:50:f1:ed:07:90:9e:
ba:71:2a:fc:5a:04:2d:0d:1a:8a:07:13:bf:4a:89:
70:62:f7:93:fa:f4:f7:37:20:30:3f:b7:04:3d:f7:
38:7e:68:6f:8b:2a:3a:74:43:4d:43:e6:c0:5d:90:
b1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:AF:4A:46:27:4D:E6:F1:08:77:B0:E6:6C:26:ED:A4:A0:3E:3C:D9
X509v3 Authority Key Identifier:
keyid:73:E1:57:B2:91:8C:AD:CA:8A:5A:9F:BC:66:E9:77:60:8A:6D:F5:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c-FXspGMrcqKWp-8Zul3YIpt9eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/Sa9KRidN5vEId7DmbCbtpKA-PNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/c-FXspGMrcqKWp-8Zul3YIpt9eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.21.144.0/23
IPv6:
2a02:2c0::/48
Signature Algorithm: sha256WithRSAEncryption
63:41:fc:a2:c1:18:bd:10:f7:fe:10:62:fc:02:71:62:ac:c6:
84:11:4b:83:dd:d6:53:4d:b2:ea:97:85:65:77:d8:c0:88:f0:
e9:86:f3:30:f2:8c:4e:a7:66:60:18:08:cc:08:58:18:93:28:
db:f4:1a:6f:d3:95:66:08:4b:53:ae:eb:8f:4b:ca:ad:a8:76:
bd:d5:19:b2:1e:73:7d:ec:3f:a6:dc:eb:00:58:5d:ef:a5:47:
57:16:e5:c7:97:c7:0e:34:a7:bf:9a:16:51:98:ab:14:10:4a:
2d:34:21:46:c6:f1:33:71:01:7f:ce:89:c6:92:e7:16:76:aa:
e2:00:76:f1:b5:f4:28:2c:88:fb:d8:ed:30:82:24:b1:b8:6e:
0a:9f:bc:70:f2:af:b1:b2:fa:95:74:ea:c7:66:b2:d7:fe:c5:
06:43:9c:90:0e:7d:1c:f4:4e:de:9c:84:f1:98:fa:47:2f:a0:
0b:38:64:30:de:43:10:a6:39:44:36:05:29:20:2e:0a:32:ed:
9b:6d:24:64:d8:a9:ac:b2:5c:cc:6d:ff:37:1a:dd:70:98:10:
fa:93:54:fc:78:0f:16:f7:9f:37:af:5f:c2:52:06:5c:a9:25:
89:34:24:12:10:32:eb:1f:c6:3b:95:89:2a:aa:cf:4c:85:85:
60:b0:38:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-ams.rpki-client.org