Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/8OLNFZ1CIGAxqImAOyIfgxsYv7E.roa
File: 8OLNFZ1CIGAxqImAOyIfgxsYv7E.roa (raw, json)
Hash identifier: IG60lwv0vm4coBQ6QDWcjRDsOyaawGAzrJR48QlINJ0=
Subject key identifier: F0:E2:CD:15:9D:42:20:60:31:A8:89:80:3B:22:1F:83:1B:18:BF:B1
Certificate issuer: /CN=e37e5ff123ea7d2e83ce27520c987d037e649d03
Certificate serial: 023DF183
Authority key identifier: E3:7E:5F:F1:23:EA:7D:2E:83:CE:27:52:0C:98:7D:03:7E:64:9D:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/8OLNFZ1CIGAxqImAOyIfgxsYv7E.roa
Signing time: Wed 23 Feb 2022 15:19:11 +0000
ROA not before: Wed 23 Feb 2022 15:19:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48927
IP address blocks: 178.215.228.0/22 maxlen: 22
2a0d:5440::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37613955 (0x23df183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37e5ff123ea7d2e83ce27520c987d037e649d03
Validity
Not Before: Feb 23 15:19:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0e2cd159d42206031a889803b221f831b18bfb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f7:df:36:2a:f5:19:ce:ad:e9:5f:a6:1c:b9:
3a:76:61:fb:ba:fe:c7:44:3e:bf:0b:4e:08:7f:3c:
56:86:71:47:12:86:20:f6:58:1b:47:d0:a8:bf:f4:
3a:09:cd:52:69:2e:02:f9:24:f9:b2:3e:d5:8d:bf:
4d:79:e0:53:2b:d1:f1:ba:b4:1d:5b:1d:50:18:ee:
9d:03:0a:b9:3e:ec:d1:b0:97:4f:13:eb:1a:75:54:
af:8f:6f:38:ab:62:de:0d:cd:bc:e4:96:90:88:43:
a2:a0:1f:04:e8:24:f7:02:4d:b4:fd:b3:22:b0:de:
81:20:06:85:c4:aa:e8:d8:6a:30:07:65:88:ac:e1:
cf:9e:4e:d8:ed:e0:88:21:fb:81:2b:e8:85:16:e7:
f5:f6:b6:f5:f2:5a:cb:c3:06:6b:69:48:e7:85:9a:
ab:ca:3d:e2:88:39:55:c6:15:58:90:33:c5:b4:c7:
4f:ac:ea:cd:26:fb:b6:1a:9a:a5:f9:6b:e5:f1:01:
17:b2:db:65:00:12:3a:ec:dc:8d:c6:aa:7d:fe:e6:
b3:16:ba:63:ad:3d:7b:ec:a9:11:8e:60:df:c3:8b:
2e:90:07:fb:69:ce:41:f4:02:a1:d9:a8:d9:1d:f5:
2c:af:4b:f7:cb:3e:79:c7:a0:c4:2b:15:b0:fd:f3:
3d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E2:CD:15:9D:42:20:60:31:A8:89:80:3B:22:1F:83:1B:18:BF:B1
X509v3 Authority Key Identifier:
keyid:E3:7E:5F:F1:23:EA:7D:2E:83:CE:27:52:0C:98:7D:03:7E:64:9D:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/8OLNFZ1CIGAxqImAOyIfgxsYv7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/435f8SPqfS6DzidSDJh9A35knQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.215.228.0/22
IPv6:
2a0d:5440::/29
Signature Algorithm: sha256WithRSAEncryption
84:2c:1b:5e:ad:32:85:4c:66:21:cc:98:33:53:e5:49:44:f4:
07:65:0b:fa:cd:c6:9d:5d:be:45:89:23:ea:43:1f:6c:4e:b2:
eb:45:1a:45:51:5e:ae:31:25:59:2d:da:0b:d1:af:c9:4e:73:
f0:8b:48:b4:dc:5a:a3:d1:42:97:26:42:98:b2:d2:3f:ee:58:
ec:f9:b8:4e:57:50:e9:d5:05:ed:82:0b:9e:4d:d3:c9:f7:b6:
53:32:8f:80:6b:17:e9:22:0a:78:b2:52:c0:5b:b1:87:64:70:
66:12:5c:10:6e:f9:b6:7f:1c:6d:a3:24:bc:b0:80:ab:c5:27:
a3:31:00:00:b1:6f:c4:de:00:84:fa:53:93:9b:32:b3:b6:7f:
8e:9f:0c:30:f8:36:62:88:6e:15:17:c6:8d:52:2b:12:15:84:
e0:52:7d:d2:08:a3:0c:d9:92:dc:b6:62:36:d0:49:bc:ae:29:
fe:43:d8:da:24:09:7f:6e:b4:cc:81:52:fc:37:6e:c2:7e:f8:
c7:de:2b:7f:f4:3f:a1:9e:18:0d:d9:e6:06:e6:31:14:4d:ba:
71:6e:95:91:1c:e0:5c:49:c4:71:7c:98:75:8f:c1:30:5a:4a:
02:a7:70:57:79:f9:8b:54:13:4a:a1:1b:70:23:4f:8a:2a:b3:
8e:6b:3e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:14 2023 by rpki-client on console-fra.rpki-client.org