Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/X_kXqbxhYAJJMW0TX7iHf0kBjiQ.roa
File: X_kXqbxhYAJJMW0TX7iHf0kBjiQ.roa (raw, json)
Hash identifier: fHpzBdeVVLbiX9UKMfgu/N57Sz0IVbHsiXXBuKorJzY=
Subject key identifier: 5F:F9:17:A9:BC:61:60:02:49:31:6D:13:5F:B8:87:7F:49:01:8E:24
Certificate issuer: /CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Certificate serial: 01856D6634465E6AB2469A07B64A4C532142
Authority key identifier: C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/X_kXqbxhYAJJMW0TX7iHf0kBjiQ.roa
Signing time: Sun 01 Jan 2023 12:54:52 +0000
ROA not before: Sun 01 Jan 2023 12:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201275
IP address blocks: 178.57.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:34:46:5e:6a:b2:46:9a:07:b6:4a:4c:53:21:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Validity
Not Before: Jan 1 12:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ff917a9bc61600249316d135fb8877f49018e24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fb:72:99:14:0b:6b:bb:2f:0f:7c:15:0d:72:
de:82:23:57:6a:84:90:bf:2d:9f:e7:4d:35:b7:99:
85:91:00:58:48:0a:8b:15:78:c0:88:c5:d6:15:70:
90:ed:97:71:f2:61:12:61:b4:bd:39:fe:7b:cb:8f:
17:18:d8:06:87:d0:6c:63:33:83:a0:19:c3:c6:6f:
97:32:8a:5b:04:6a:b0:b3:63:57:48:4c:d2:10:ba:
10:c0:01:93:68:bb:08:42:12:4a:56:3a:1d:52:ea:
88:00:64:5d:81:07:f3:50:41:4d:e9:a1:c5:17:bf:
31:c2:f4:b0:30:70:50:4a:1d:32:53:b8:de:22:ca:
96:b4:01:f5:00:90:7f:7c:b6:64:05:47:3b:b6:2c:
58:72:4c:69:38:63:2f:86:7c:e7:46:3b:9a:0c:be:
21:8d:51:b8:2d:90:17:89:0c:ce:de:5d:cf:18:37:
c6:4a:64:55:d1:35:e0:d3:d6:fe:43:be:e2:78:18:
d4:1b:49:25:42:6a:4d:1c:f4:04:4b:4b:7e:d8:63:
79:bb:1d:90:a6:2e:73:85:d0:44:d7:7f:be:da:7c:
91:a4:23:37:86:41:ab:3d:20:9e:81:b6:99:48:b1:
13:15:38:e5:22:1c:3e:1d:f9:df:db:75:0c:04:48:
15:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F9:17:A9:BC:61:60:02:49:31:6D:13:5F:B8:87:7F:49:01:8E:24
X509v3 Authority Key Identifier:
keyid:C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/X_kXqbxhYAJJMW0TX7iHf0kBjiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.57.92.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:22:76:21:c3:c8:13:e1:88:88:e5:cf:ab:fe:fa:1f:d4:dd:
a2:b0:20:e6:1f:c6:7c:57:06:3c:05:bb:ee:e6:fd:22:84:0d:
e9:39:5d:69:6b:a3:78:2d:ea:8d:57:5c:37:18:a0:99:4e:da:
dc:32:d3:0e:30:ac:41:fa:26:d6:33:0b:3d:cc:2e:cb:22:0d:
77:a2:f7:4a:f9:8e:30:38:5d:9a:7c:13:14:1c:a5:be:75:b8:
1d:c2:1a:f1:9c:84:fc:55:85:d8:9a:5f:ac:5c:ac:b2:9a:4d:
3e:ac:5a:f3:22:56:bf:aa:84:21:e5:c7:6b:3c:77:a0:4f:43:
97:89:c1:f5:f3:42:45:6c:8e:29:2d:fc:8a:22:e8:38:e7:83:
38:b8:dd:45:ae:34:2a:d1:69:61:2a:52:fd:e2:82:fc:1b:11:
d2:21:ef:04:58:38:d4:f5:14:3e:7f:d5:b3:ae:ae:c4:aa:21:
7a:6f:de:e5:71:c3:50:73:f1:17:27:72:c8:d3:86:9f:2b:0c:
53:7f:76:d4:b5:92:22:eb:f8:17:94:d0:21:c6:d2:00:15:cb:
1a:d9:70:7c:44:48:c5:96:6c:c1:c5:db:db:ad:90:4a:e5:17:
06:c2:4c:7d:44:60:39:7e:d3:09:e2:0a:a9:7a:a7:4d:b1:cf:
59:61:07:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:44 2025 by rpki-client