Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/DdIwt2pPW_Zarxxp2ddM8GAo6uY.roa
File: DdIwt2pPW_Zarxxp2ddM8GAo6uY.roa (raw, json)
Hash identifier: iJD3zNOSH57cRFhQOJ9mSKtZtr2oMV12QLP77oNvLrI=
Subject key identifier: 0D:D2:30:B7:6A:4F:5B:F6:5A:AF:1C:69:D9:D7:4C:F0:60:28:EA:E6
Certificate issuer: /CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Certificate serial: 3280FFC7
Authority key identifier: C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/DdIwt2pPW_Zarxxp2ddM8GAo6uY.roa
Signing time: Sat 01 Jan 2022 11:03:36 +0000
ROA not before: Sat 01 Jan 2022 11:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208165
IP address blocks: 178.57.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847314887 (0x3280ffc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Validity
Not Before: Jan 1 11:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0dd230b76a4f5bf65aaf1c69d9d74cf06028eae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c9:7e:fd:dd:21:c5:d2:3c:ff:99:7b:3e:2c:
77:87:ae:17:2a:c2:14:dd:70:6e:ca:f1:e2:19:be:
f6:18:46:dc:0b:3b:7c:26:1b:c5:cd:9e:64:a4:9c:
c8:14:23:c5:61:a1:14:be:46:71:f9:06:f1:46:f3:
65:eb:c2:28:2f:09:a5:0a:d1:a4:ec:be:35:21:00:
57:2c:ab:14:8a:5c:a6:8b:36:62:44:c7:85:2b:03:
bb:70:40:32:ce:a4:b8:a7:fa:b3:85:69:a5:54:35:
09:17:e4:66:3a:bf:20:91:4d:d6:12:75:be:33:d5:
0f:40:16:e7:74:e8:f2:bb:81:87:52:f5:bf:11:83:
55:e9:d9:02:db:5f:b2:f2:b1:3f:08:9e:25:5b:be:
7d:f3:09:8a:18:11:2e:63:cb:64:39:15:af:1d:1e:
3c:c5:50:f8:31:36:ab:bd:87:56:3e:76:77:b3:b7:
c5:15:c1:79:54:95:c7:e6:12:6f:a3:28:f0:1d:29:
0b:27:b3:a0:a5:fa:81:50:38:da:89:a8:63:27:0f:
fc:c8:ac:63:5d:80:04:f2:1c:db:e2:d4:92:a1:74:
c0:a9:ee:3a:e8:b3:31:79:e6:11:29:63:8d:8e:b3:
4f:c0:2c:f1:1a:c5:bf:a2:f7:a4:7e:ac:56:3b:a1:
aa:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D2:30:B7:6A:4F:5B:F6:5A:AF:1C:69:D9:D7:4C:F0:60:28:EA:E6
X509v3 Authority Key Identifier:
keyid:C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/DdIwt2pPW_Zarxxp2ddM8GAo6uY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.57.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:cd:56:92:f6:aa:ad:dd:e5:f4:ed:c3:1f:bd:c3:ac:32:99:
1c:ec:78:7c:af:ed:02:4d:6f:d6:ab:61:08:3f:96:b6:3d:9f:
ef:6a:cb:22:8d:cc:7b:b4:89:5b:59:de:40:30:5c:8c:be:71:
dd:05:88:6b:c0:21:93:e4:97:c6:0c:67:fe:fa:01:5f:cc:bf:
9b:cd:f3:16:a5:63:3e:68:aa:03:38:19:54:e1:fe:e5:30:7e:
fe:06:f9:fb:52:56:10:4a:9c:65:44:65:9b:d7:fc:a4:eb:0c:
4a:ff:14:5e:90:37:20:0c:d9:4d:01:37:6e:be:ee:fb:b8:44:
13:99:21:2b:4b:58:c3:32:3e:c7:83:84:9e:dd:55:83:33:d6:
08:33:fc:36:d3:f8:48:09:21:19:14:e5:f5:05:43:5d:21:98:
bd:2b:34:13:96:c2:ed:77:a1:fd:6a:68:7b:1d:1b:f8:ee:39:
a7:1b:dd:f8:54:03:ca:78:2f:e8:87:c8:c0:7c:52:af:c2:da:
3e:0b:63:d0:4e:2c:8b:f3:76:e6:9c:1c:f3:4e:f3:a2:a7:e7:
be:d3:4f:03:2e:5e:d1:f1:a8:9a:47:26:94:e5:3a:8b:b4:ec:
67:ca:25:1f:24:5f:76:fe:84:0a:e1:54:77:3d:97:d3:45:2a:
37:b1:21:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:50 2023 by rpki-client on console-fra.rpki-client.org