Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/_C8SGdG27U4_avBKRFDdV-4yiJo.roa
File: _C8SGdG27U4_avBKRFDdV-4yiJo.roa (raw, json)
Hash identifier: iZwTQC39PRqxwSJriKLk0k58HjDuAbZNu7YeCdA/Kd0=
Subject key identifier: FC:2F:12:19:D1:B6:ED:4E:3F:6A:F0:4A:44:50:DD:57:EE:32:88:9A
Certificate issuer: /CN=73e157b2918cadca8a5a9fbc66e977608a6df5e1
Certificate serial: 01850749C41E7330C82745FD88CF44E42DAC
Authority key identifier: 73:E1:57:B2:91:8C:AD:CA:8A:5A:9F:BC:66:E9:77:60:8A:6D:F5:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c-FXspGMrcqKWp-8Zul3YIpt9eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/_C8SGdG27U4_avBKRFDdV-4yiJo.roa
Signing time: Mon 12 Dec 2022 17:02:32 +0000
ROA not before: Mon 12 Dec 2022 17:02:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 178.21.144.0/24 maxlen: 24
178.21.145.0/24 maxlen: 24
2a02:2c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:07:49:c4:1e:73:30:c8:27:45:fd:88:cf:44:e4:2d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73e157b2918cadca8a5a9fbc66e977608a6df5e1
Validity
Not Before: Dec 12 17:02:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc2f1219d1b6ed4e3f6af04a4450dd57ee32889a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7e:56:9d:f8:8f:6b:e2:19:fe:86:bc:fe:d3:
1a:04:69:08:78:bf:47:a9:6f:c6:04:18:80:f2:4d:
35:18:25:89:18:45:72:57:8d:cf:b3:cc:aa:d3:36:
e7:ee:1b:04:cd:56:1c:97:9c:88:e6:1e:ff:31:04:
c2:97:9e:c8:60:80:f4:79:0c:65:ee:23:9f:64:d1:
e8:b1:e8:9c:90:90:d2:cb:fb:41:4a:52:64:ad:47:
ce:30:1b:eb:e6:1b:e1:41:8c:5d:da:0c:96:28:92:
88:09:7c:d2:16:8c:56:c2:c9:3c:a9:51:e5:fe:ae:
35:3c:50:19:60:0e:36:9c:90:cb:8d:35:25:bd:be:
db:2c:f5:d9:28:c1:9a:47:4b:42:b7:6b:a7:85:e9:
c3:48:a0:40:34:cc:f0:b3:43:6f:77:de:ed:f1:64:
62:57:93:f4:b1:31:8f:ef:4b:7a:27:15:61:21:29:
1a:2b:db:1d:9a:b2:20:5f:11:b0:49:44:7b:ba:e9:
48:c8:07:25:0b:c4:3d:79:24:af:fb:98:bb:5d:54:
cc:1b:c1:b8:12:44:99:49:c8:ad:0d:09:2a:0e:2b:
bf:84:7b:0d:00:84:76:d3:c2:16:e8:9c:07:6d:22:
36:c6:43:c9:4e:51:e6:25:4c:12:a2:71:1e:67:b0:
97:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:2F:12:19:D1:B6:ED:4E:3F:6A:F0:4A:44:50:DD:57:EE:32:88:9A
X509v3 Authority Key Identifier:
keyid:73:E1:57:B2:91:8C:AD:CA:8A:5A:9F:BC:66:E9:77:60:8A:6D:F5:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c-FXspGMrcqKWp-8Zul3YIpt9eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/_C8SGdG27U4_avBKRFDdV-4yiJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/c-FXspGMrcqKWp-8Zul3YIpt9eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.21.144.0/23
IPv6:
2a02:2c0::/48
Signature Algorithm: sha256WithRSAEncryption
48:98:02:1c:1d:08:85:eb:4f:e6:e5:bb:1a:71:65:86:53:c0:
18:9f:b2:3a:41:20:94:a4:f3:d6:cd:f2:3b:c7:51:13:a4:68:
52:06:46:f7:1a:63:a2:9e:13:09:ee:5d:05:0e:6a:35:32:23:
f3:f6:cc:4e:b4:a2:41:8d:59:84:ad:4e:b8:af:c7:f5:81:df:
55:ba:ce:cc:6c:be:74:f4:85:9d:3f:f3:57:3f:1b:ea:22:48:
1f:58:8e:1d:bb:72:70:39:64:a2:e0:58:b9:e5:19:fc:87:40:
2b:f6:b3:1f:47:ca:1f:20:fe:66:c5:eb:ea:9a:6e:3e:0d:25:
1e:a6:a3:60:09:43:15:62:e2:fa:26:1d:0f:d2:e8:78:0a:d9:
e3:81:3e:03:bc:07:56:79:89:ca:a3:6c:ff:cd:40:1a:6a:16:
c7:d0:f9:d3:7f:93:59:56:4e:f6:5c:44:4f:75:f0:fb:8d:75:
f3:bc:3e:91:44:bb:6f:22:f0:68:2e:06:18:03:d2:e3:ad:72:
c8:10:18:fb:23:cb:76:12:ab:8a:3e:be:1c:12:44:81:83:ce:
20:91:60:95:2f:6a:3a:c3:00:f8:5b:7c:f9:a4:14:42:87:d0:
48:a7:37:0f:ec:48:7f:d8:49:94:ea:00:b4:9f:64:52:f0:f8:
91:75:0a:1f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYUHScQeczDIJ0X9iM9E5C2sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZTE1N2IyOTE4Y2FkY2E4YTVhOWZiYzY2ZTk3NzYwOGE2
ZGY1ZTEwHhcNMjIxMjEyMTcwMjMyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzJmMTIxOWQxYjZlZDRlM2Y2YWYwNGE0NDUwZGQ1N2VlMzI4ODlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiH5WnfiPa+IZ/oa8/tMaBGkIeL9H
qW/GBBiA8k01GCWJGEVyV43Ps8yq0zbn7hsEzVYcl5yI5h7/MQTCl57IYID0eQxl
7iOfZNHoseickJDSy/tBSlJkrUfOMBvr5hvhQYxd2gyWKJKICXzSFoxWwsk8qVHl
/q41PFAZYA42nJDLjTUlvb7bLPXZKMGaR0tCt2unhenDSKBANMzws0Nvd97t8WRi
V5P0sTGP70t6JxVhISkaK9sdmrIgXxGwSUR7uulIyAclC8Q9eSSv+5i7XVTMG8G4
EkSZScitDQkqDiu/hHsNAIR208IW6JwHbSI2xkPJTlHmJUwSonEeZ7CXpwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFPwvEhnRtu1OP2rwSkRQ3VfuMoiaMB8GA1UdIwQY
MBaAFHPhV7KRjK3KilqfvGbpd2CKbfXhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYy1GWHNwR01yY3FLV3AtOFp1bDNZSXB0OWVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9iYmNkNTMtYzRmOC00MjQ1LWJiOTAt
MDBhMTU0YjhlY2IxLzEvX0M4U0dkRzI3VTRfYXZCS1JGRGRWLTR5aUpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS9iYmNkNTMtYzRmOC00MjQ1LWJiOTAtMDBhMTU0YjhlY2Ix
LzEvYy1GWHNwR01yY3FLV3AtOFp1bDNZSXB0OWVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBshWQMA8E
AgACMAkDBwAqAgLAAAAwDQYJKoZIhvcNAQELBQADggEBAEiYAhwdCIXrT+bluxpx
ZYZTwBifsjpBIJSk89bN8jvHUROkaFIGRvcaY6KeEwnuXQUOajUyI/P2zE60okGN
WYStTrivx/WB31W6zsxsvnT0hZ0/81c/G+oiSB9Yjh27cnA5ZKLgWLnlGfyHQCv2
sx9Hyh8g/mbF6+qabj4NJR6mo2AJQxVi4vomHQ/S6HgK2eOBPgO8B1Z5icqjbP/N
QBpqFsfQ+dN/k1lWTvZcRE918PuNdfO8PpFEu28i8GguBhgD0uOtcsgQGPsjy3YS
q4o+vhwSRIGDziCRYJUvajrDAPhbfPmkFEKH0EinNw/sSH/YSZTqALSfZFLw+JF1
Ch8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:14 2023 by rpki-client on console-fra.rpki-client.org