Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/6fxaetkoM9pmsuvDlQlU1LEr2WQ.roa
File: 6fxaetkoM9pmsuvDlQlU1LEr2WQ.roa (raw, json)
Hash identifier: gpFo70oVyBE8wBxRf9lBuLw0b/oFyP/DUciMeG8ziOU=
Subject key identifier: E9:FC:5A:7A:D9:28:33:DA:66:B2:EB:C3:95:09:54:D4:B1:2B:D9:64
Certificate issuer: /CN=e37e5ff123ea7d2e83ce27520c987d037e649d03
Certificate serial: 02A6BA7E
Authority key identifier: E3:7E:5F:F1:23:EA:7D:2E:83:CE:27:52:0C:98:7D:03:7E:64:9D:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/6fxaetkoM9pmsuvDlQlU1LEr2WQ.roa
Signing time: Mon 04 Apr 2022 09:52:57 +0000
ROA not before: Mon 04 Apr 2022 09:52:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48927
IP address blocks: 178.215.228.0/22 maxlen: 24
178.215.231.0/24 maxlen: 24
178.215.230.0/24 maxlen: 24
2a0d:5440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44481150 (0x2a6ba7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37e5ff123ea7d2e83ce27520c987d037e649d03
Validity
Not Before: Apr 4 09:52:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9fc5a7ad92833da66b2ebc3950954d4b12bd964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9b:c8:0f:5e:eb:c3:e2:05:9c:83:6b:5f:3c:
c8:56:96:00:e6:79:95:33:73:ee:90:37:a7:0a:23:
c3:02:3b:9d:a9:1e:69:f3:fc:79:09:0f:23:25:c7:
e2:f7:a5:50:b7:16:91:28:a3:29:86:ff:69:9b:b2:
27:cd:ed:72:fd:5f:bc:40:86:d7:31:76:e6:c2:92:
90:a4:9f:fc:b8:43:28:00:46:7d:2b:7d:cc:d5:02:
e6:11:44:8e:15:eb:e0:5c:64:8c:25:02:63:df:d8:
32:1b:ce:5a:7d:b7:a3:07:49:eb:60:d7:92:bc:45:
3d:a9:6d:68:80:c7:cb:fc:b9:3f:2c:43:45:04:56:
7c:7e:32:ff:bf:b5:a6:5a:6c:ed:c9:09:60:e0:5e:
50:b0:50:d8:e7:84:d4:72:c6:b1:a5:43:b4:77:0b:
91:07:31:bf:23:5d:13:59:fc:1d:4d:c1:51:9f:e4:
00:f2:d6:81:3f:00:2e:72:dc:3b:64:47:2d:0f:37:
b2:e3:f1:a4:66:ba:19:68:f7:85:db:3a:44:cc:ce:
f9:a8:d0:cf:dc:f5:74:54:6a:70:b7:06:8f:9a:b5:
fc:8b:1a:68:94:ca:a9:67:9b:a8:0e:02:6b:d6:7f:
49:0e:b2:65:89:f1:b8:f0:38:ae:0c:ae:6e:01:c2:
c3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:FC:5A:7A:D9:28:33:DA:66:B2:EB:C3:95:09:54:D4:B1:2B:D9:64
X509v3 Authority Key Identifier:
keyid:E3:7E:5F:F1:23:EA:7D:2E:83:CE:27:52:0C:98:7D:03:7E:64:9D:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/6fxaetkoM9pmsuvDlQlU1LEr2WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/435f8SPqfS6DzidSDJh9A35knQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.215.228.0/22
IPv6:
2a0d:5440::/29
Signature Algorithm: sha256WithRSAEncryption
38:4a:1a:d3:05:b4:44:f8:12:4a:57:d8:a5:b2:65:27:dc:2d:
02:ac:44:79:b0:41:80:7e:8e:b2:6c:61:16:fc:07:dd:c2:97:
48:3e:20:24:7d:20:1f:a1:19:68:09:20:1b:73:00:fe:95:bd:
5f:7b:80:26:10:a1:89:97:34:63:00:48:d7:51:2b:ab:e6:59:
c8:38:8a:56:e1:58:15:9c:86:a5:e5:ab:45:84:00:c9:0c:4a:
f8:2c:bc:49:ed:cf:86:f4:4e:04:36:7f:3f:c1:cc:5c:68:6e:
58:a2:45:86:ec:68:b4:88:db:44:31:30:8e:81:a9:98:11:a7:
ab:ef:dc:dc:20:e8:20:38:9d:65:5e:d5:26:7b:1f:85:8e:ac:
3d:27:36:29:01:5d:b5:1e:01:ed:ce:56:c8:78:c3:e3:8b:b7:
8e:cb:33:40:12:a3:03:23:fe:70:86:b5:81:b2:de:1e:d0:d4:
68:d0:67:2a:a8:46:ac:fd:83:00:43:18:7c:6f:b4:01:b8:44:
1b:47:b8:85:51:3b:6b:d1:69:c3:70:8b:6b:30:79:f0:d1:30:
9c:26:33:e0:b8:ec:8f:15:06:db:65:51:3a:49:98:71:67:c6:
57:e5:8f:be:4b:fc:59:ea:9d:42:fc:43:ae:71:c3:e2:d1:78:
48:05:7f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-ams.rpki-client.org