Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/f0775c-da2e-4d7d-8019-d2b02a403c7b/1/ITbcbrx7XhFgcWLpWtrFHoTwmfY.roa
File: ITbcbrx7XhFgcWLpWtrFHoTwmfY.roa (raw, json)
Hash identifier: 6cGDhh4SSKWbEhgfciu+QceqDIQ8CPEqJUYqG8b1Ewk=
Subject key identifier: 21:36:DC:6E:BC:7B:5E:11:60:71:62:E9:5A:DA:C5:1E:84:F0:99:F6
Certificate issuer: /CN=631aca5f9a1dcfa19704d1f0377f1b9fe9145e08
Certificate serial: 08DDCE1D
Authority key identifier: 63:1A:CA:5F:9A:1D:CF:A1:97:04:D1:F0:37:7F:1B:9F:E9:14:5E:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YxrKX5odz6GXBNHwN38bn-kUXgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/f0775c-da2e-4d7d-8019-d2b02a403c7b/1/ITbcbrx7XhFgcWLpWtrFHoTwmfY.roa
Signing time: Sat 01 Jan 2022 11:57:21 +0000
ROA not before: Sat 01 Jan 2022 11:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209162
IP address blocks: 178.239.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148753949 (0x8ddce1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=631aca5f9a1dcfa19704d1f0377f1b9fe9145e08
Validity
Not Before: Jan 1 11:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2136dc6ebc7b5e11607162e95adac51e84f099f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:be:e7:d4:0a:4c:8e:38:1e:83:8c:7f:9e:69:
9d:81:c5:25:8b:1c:db:25:99:5f:e9:ae:8c:67:2d:
29:3d:5c:94:8e:31:4f:c6:ca:4f:33:2d:d5:ab:e1:
1b:dc:d3:d5:e8:5e:fb:73:03:90:7e:c5:fd:77:41:
68:53:ba:c5:17:d2:1e:d3:6e:f4:61:b5:dd:e1:ec:
77:15:9b:e6:99:3e:19:47:e0:03:e8:4f:96:af:fc:
fc:77:71:42:b9:61:7f:68:08:00:ef:ea:f6:fd:36:
1f:90:7f:b3:e2:c5:34:ca:d9:f2:b9:47:a6:a6:cb:
d9:7f:86:d3:08:9e:f7:91:c1:5a:6d:69:f7:a5:9a:
7e:74:72:90:2a:fd:ae:e8:a9:89:b7:6c:fb:74:65:
43:2e:e1:b6:e2:e0:ce:b6:62:96:22:13:48:24:33:
df:52:b2:06:9f:c8:36:d2:ba:5e:78:e2:82:b1:7f:
67:71:44:c3:36:77:09:13:8f:0d:46:0d:94:b3:39:
81:3e:8d:72:bc:00:36:49:b0:ce:b1:b7:54:f8:3c:
15:5b:e3:09:15:76:f7:a6:d1:2c:74:9d:1f:d6:06:
16:38:8d:d0:1a:c6:9f:46:d6:54:44:40:d1:a9:e5:
41:78:78:f1:cd:d2:18:00:15:aa:d4:6f:17:de:2d:
ca:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:36:DC:6E:BC:7B:5E:11:60:71:62:E9:5A:DA:C5:1E:84:F0:99:F6
X509v3 Authority Key Identifier:
keyid:63:1A:CA:5F:9A:1D:CF:A1:97:04:D1:F0:37:7F:1B:9F:E9:14:5E:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YxrKX5odz6GXBNHwN38bn-kUXgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/f0775c-da2e-4d7d-8019-d2b02a403c7b/1/ITbcbrx7XhFgcWLpWtrFHoTwmfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/f0775c-da2e-4d7d-8019-d2b02a403c7b/1/YxrKX5odz6GXBNHwN38bn-kUXgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.24.0/24
Signature Algorithm: sha256WithRSAEncryption
93:09:7a:cb:6e:79:6e:31:46:5b:43:bc:4a:d0:94:57:2e:fc:
c4:8e:f3:b6:26:04:9c:4b:86:49:e3:96:54:5e:8c:f0:d0:fd:
ec:35:41:72:d3:64:d2:3d:e6:56:87:1f:e1:c5:de:90:ee:48:
d2:e2:67:2b:62:df:97:40:ef:b8:f1:28:5c:3f:5e:70:e5:e4:
3e:6f:ca:02:1b:54:96:68:f4:65:45:08:3f:38:34:74:76:67:
89:20:25:c4:bf:f2:e5:40:7e:cc:2d:bd:27:02:be:c3:a5:a2:
3e:83:1c:ba:d7:d6:d2:d7:3c:3d:11:03:4e:9f:16:a0:90:f5:
33:b6:eb:b4:a6:d1:96:2d:75:95:60:a3:a0:0c:49:6b:b6:c8:
fb:ff:3f:40:c2:02:c2:49:76:8d:81:30:50:a1:ab:7d:23:61:
78:5e:fc:4e:8d:e2:c4:3d:ac:dc:5c:9c:f7:4a:50:c0:34:80:
93:7d:2d:76:5e:c4:c2:21:8c:5e:57:7f:97:89:79:32:6b:45:
63:5d:0c:a6:13:55:2b:f4:19:31:d9:00:1a:7c:ff:29:a9:0f:
e0:3b:08:d0:50:32:ef:03:2b:44:64:1c:9b:0f:cf:b4:e4:3f:
ea:a5:ce:55:b7:86:3f:bc:76:3c:66:fe:0d:d0:a3:d6:2d:ed:
3f:f7:91:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:35 2025 by rpki-client