Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/_wecVCMZ0Evd7tVHtIb7hISOD8Y.roa
File: _wecVCMZ0Evd7tVHtIb7hISOD8Y.roa (raw, json)
Hash identifier: R0JHJvHYqvz0b35p10JLCdFQyeVreZajtTaQkwk1cfI=
Subject key identifier: FF:07:9C:54:23:19:D0:4B:DD:EE:D5:47:B4:86:FB:84:84:8E:0F:C6
Certificate issuer: /CN=73e157b2918cadca8a5a9fbc66e977608a6df5e1
Certificate serial: 0185255610A98CDEF434E141FD81698747B9
Authority key identifier: 73:E1:57:B2:91:8C:AD:CA:8A:5A:9F:BC:66:E9:77:60:8A:6D:F5:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c-FXspGMrcqKWp-8Zul3YIpt9eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/_wecVCMZ0Evd7tVHtIb7hISOD8Y.roa
Signing time: Sun 18 Dec 2022 13:04:35 +0000
ROA not before: Sun 18 Dec 2022 13:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 178.21.145.0/24 maxlen: 24
178.21.144.0/24 maxlen: 24
178.21.147.0/24 maxlen: 24
178.21.146.0/24 maxlen: 24
2a02:2c0:3::/48 maxlen: 48
2a02:2c0:1::/48 maxlen: 48
2a02:2c0:2::/48 maxlen: 48
2a02:2c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:25:56:10:a9:8c:de:f4:34:e1:41:fd:81:69:87:47:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73e157b2918cadca8a5a9fbc66e977608a6df5e1
Validity
Not Before: Dec 18 13:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff079c542319d04bddeed547b486fb84848e0fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:19:af:48:a5:db:cb:93:14:e9:62:46:6f:80:
ae:74:d6:28:5a:42:c0:3d:7c:76:f8:da:03:c8:ae:
c8:f4:b5:33:62:54:55:4f:85:3a:c8:8c:e0:d9:8f:
5c:34:6e:72:fe:c5:ba:ec:ea:bf:5b:c1:38:b4:96:
92:bf:39:7f:b9:5f:3f:f1:c7:62:35:c4:a1:da:ac:
ae:49:44:3d:7e:6a:9e:98:ec:90:1b:9b:38:af:52:
2d:e6:6e:af:5f:7b:7e:29:f4:58:8d:61:ec:c7:db:
a8:4a:d0:df:b7:36:75:30:14:e5:05:84:c1:81:81:
cf:94:a9:8a:82:92:04:41:20:19:bf:2f:7e:e0:ab:
5a:38:d2:2c:83:93:28:c6:59:4e:82:f4:a3:20:5c:
d1:6c:4e:6d:9c:c0:14:cd:4d:f3:de:b8:87:c3:77:
64:ee:85:18:16:86:f7:c1:35:6c:cc:ab:38:4e:6d:
20:f2:a4:b9:74:ac:62:93:03:fd:44:a4:11:1d:8f:
d6:04:b5:13:23:14:11:77:55:22:2c:f7:9c:85:8f:
65:7c:9b:28:d2:00:97:e6:db:8b:50:ca:10:33:59:
97:77:14:79:73:7e:4a:ab:33:74:9e:e3:06:70:5d:
a6:76:d0:54:5c:fc:f5:8c:89:fd:8d:8e:9b:36:49:
92:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:07:9C:54:23:19:D0:4B:DD:EE:D5:47:B4:86:FB:84:84:8E:0F:C6
X509v3 Authority Key Identifier:
keyid:73:E1:57:B2:91:8C:AD:CA:8A:5A:9F:BC:66:E9:77:60:8A:6D:F5:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c-FXspGMrcqKWp-8Zul3YIpt9eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/_wecVCMZ0Evd7tVHtIb7hISOD8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/bbcd53-c4f8-4245-bb90-00a154b8ecb1/1/c-FXspGMrcqKWp-8Zul3YIpt9eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.21.144.0/22
IPv6:
2a02:2c0::/46
Signature Algorithm: sha256WithRSAEncryption
1c:f3:6d:24:df:07:81:8e:d2:8c:07:97:47:e8:81:be:0d:44:
45:0a:9a:3d:a1:b8:6b:10:23:ed:34:57:11:3c:49:d0:48:de:
a8:14:af:cc:35:ce:f7:66:cd:df:66:30:c9:14:3b:ae:26:86:
44:91:67:e5:cf:31:60:ea:1f:1f:27:6c:46:92:2c:2a:d2:9a:
80:ad:41:7b:47:e8:d9:6c:27:99:ad:f6:63:1c:d1:b4:6d:3a:
49:30:52:b6:8a:04:6e:4c:8d:94:a5:a3:55:95:ab:5d:89:3e:
c2:85:b6:13:6f:ce:9b:0c:dc:64:69:c2:0a:3e:ab:15:f5:57:
d3:15:45:85:bd:49:e3:50:53:8f:c5:fc:2f:11:14:7b:77:58:
ed:4f:89:29:82:fb:ca:f2:aa:9c:2b:3e:11:24:ee:b2:53:e5:
3f:da:31:79:35:9b:be:53:cb:1e:4a:88:c5:e7:40:e8:3d:24:
03:41:91:0a:49:0a:ac:55:09:d6:4b:5e:88:a4:8e:d8:4a:08:
b8:d6:77:0c:dc:14:d3:b1:44:60:b7:e4:37:3b:9a:56:b2:b1:
0e:b4:77:ef:32:59:19:f1:8a:ff:b7:8a:2a:66:a8:d3:05:5d:
d3:55:46:a5:8a:00:89:2e:08:fb:4a:16:21:4e:d4:a3:ac:72:
17:77:61:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-ams.rpki-client.org