Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/80dfb2-948b-4214-82ed-ac7012cf1dcd/1/1C3qyZY8SwxO_hV22HKauB6sP00.roa
File: 1C3qyZY8SwxO_hV22HKauB6sP00.roa (raw, json)
Hash identifier: Kt61+6a87uEWTaSVcDKXVwnPqyinNLlmHmnz2LPVnNc=
Subject key identifier: D4:2D:EA:C9:96:3C:4B:0C:4E:FE:15:76:D8:72:9A:B8:1E:AC:3F:4D
Certificate issuer: /CN=f26862cbc58b4da44f7195255464a8d9545fed04
Certificate serial: FE9F0E
Authority key identifier: F2:68:62:CB:C5:8B:4D:A4:4F:71:95:25:54:64:A8:D9:54:5F:ED:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mhiy8WLTaRPcZUlVGSo2VRf7QQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/80dfb2-948b-4214-82ed-ac7012cf1dcd/1/1C3qyZY8SwxO_hV22HKauB6sP00.roa
Signing time: Sat 01 Jan 2022 06:59:36 +0000
ROA not before: Sat 01 Jan 2022 06:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207046
IP address blocks: 178.212.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16686862 (0xfe9f0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f26862cbc58b4da44f7195255464a8d9545fed04
Validity
Not Before: Jan 1 06:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d42deac9963c4b0c4efe1576d8729ab81eac3f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5a:e6:5e:ec:ca:77:9c:a3:66:94:a6:dd:b2:
ed:aa:3b:01:14:11:34:12:b2:25:95:ff:de:e0:e3:
f4:3e:80:b4:a1:a6:84:bb:fd:cd:45:9f:6a:ba:97:
d0:1d:4a:a2:15:51:a3:1b:9a:dc:e3:d1:71:88:81:
5f:0d:97:de:95:ae:55:0d:cc:08:54:ec:1e:b1:e7:
ad:7c:67:e7:95:d8:e9:7d:ff:34:11:e1:06:71:46:
d9:6d:69:c2:9e:d4:fb:8e:15:1b:fe:cb:7d:04:7a:
d1:1a:11:e8:87:b2:a2:11:c5:07:ec:33:05:f3:1f:
9c:7e:96:92:bb:22:fc:12:28:a5:19:cf:72:44:7a:
08:f5:bb:71:e1:2c:07:3b:6f:27:01:df:fb:00:e0:
80:37:3b:08:51:a0:61:21:c5:fe:67:9a:a9:6f:01:
51:b2:00:40:86:45:36:a8:3d:3e:2b:37:a2:7c:df:
60:41:a6:b1:9c:c4:e1:7e:6f:22:cb:6f:b7:51:95:
cc:7a:b0:bb:04:2e:09:a2:44:27:8d:02:22:12:a9:
c5:d0:98:30:c2:4f:e8:d6:06:dd:cd:93:08:42:82:
38:b2:b2:c0:4a:4a:f3:d6:7f:3e:4b:8a:7a:5b:fd:
1f:a7:ca:3b:48:71:33:3c:ad:cb:19:3b:2d:32:a7:
b9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:2D:EA:C9:96:3C:4B:0C:4E:FE:15:76:D8:72:9A:B8:1E:AC:3F:4D
X509v3 Authority Key Identifier:
keyid:F2:68:62:CB:C5:8B:4D:A4:4F:71:95:25:54:64:A8:D9:54:5F:ED:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mhiy8WLTaRPcZUlVGSo2VRf7QQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/80dfb2-948b-4214-82ed-ac7012cf1dcd/1/1C3qyZY8SwxO_hV22HKauB6sP00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/80dfb2-948b-4214-82ed-ac7012cf1dcd/1/8mhiy8WLTaRPcZUlVGSo2VRf7QQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.225.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:1c:bc:c9:3e:0e:2e:78:f5:af:08:cf:e9:39:97:36:b3:a3:
af:5c:a9:79:de:5a:f2:33:45:1c:50:80:f0:98:f7:5d:b4:9c:
d3:20:f0:6e:4d:04:4c:9d:a7:0d:56:d5:8a:08:72:5d:13:f9:
a3:c1:85:04:02:ef:d7:c2:6c:25:55:a3:89:e5:a6:1f:be:79:
d1:66:fc:02:01:b3:de:68:4d:96:82:ee:93:13:38:bb:4c:6b:
2a:1f:d6:41:5c:33:3b:59:6c:24:0f:37:3a:95:87:61:a0:88:
4b:c7:71:5d:e9:bd:62:9c:3b:2d:83:22:11:6e:e6:9c:8a:7b:
45:dc:a8:2b:6e:13:e8:46:90:90:a3:71:6d:38:0f:0f:3d:3c:
59:d4:9e:ef:9d:d2:fe:fb:e5:04:c2:f2:f4:86:c1:52:21:54:
5d:d5:fe:fb:d2:aa:27:1c:c5:63:c6:3c:3a:65:04:dd:aa:0d:
6b:8a:83:e8:da:d3:20:08:6a:10:94:40:ba:3c:44:40:05:9d:
46:84:46:7a:3e:2a:e5:dc:81:8f:43:7a:f2:82:b4:f5:ef:4d:
a0:b2:4b:7a:ba:14:12:a5:7b:df:28:3e:f2:b4:5b:45:ae:fa:
f2:59:41:91:c8:57:e3:af:c2:5b:ee:67:48:23:71:96:ba:3c:
41:16:ef:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:58 2023 by rpki-client on console-fra.rpki-client.org