Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/1-s2GtPl170dwF6ssWgKDNGL9c2s.roa
File: 1-s2GtPl170dwF6ssWgKDNGL9c2s.roa (raw, json)
Hash identifier: 0zvQdSN8bCZsiO88rQN1AiCjY9XkESjEpB15ThUY+TQ=
Subject key identifier: FA:CD:86:B4:F9:75:EF:47:70:17:AB:2C:5A:02:83:34:62:FD:73:6B
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 0510A766
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/1-s2GtPl170dwF6ssWgKDNGL9c2s.roa
Signing time: Tue 17 May 2022 14:44:06 +0000
ROA not before: Tue 17 May 2022 14:44:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201909
IP address blocks: 178.157.76.0/24 maxlen: 24
37.35.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84977510 (0x510a766)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: May 17 14:44:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=facd86b4f975ef477017ab2c5a02833462fd736b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0e:c6:7c:ef:72:96:11:8d:b6:40:62:b9:52:
bd:fe:d5:9b:01:f6:d5:61:e8:18:50:60:51:6e:63:
09:71:42:1a:e2:b3:9a:f7:71:b7:89:cf:d6:de:88:
04:0c:8c:b1:8b:24:02:20:33:74:f4:0d:d1:20:cf:
db:af:88:b5:f6:4f:59:d3:c0:37:dc:08:8b:7f:73:
28:95:db:a2:e2:b7:77:a2:77:06:6d:de:bd:d3:68:
0b:cc:1f:b7:02:a5:93:31:ec:18:ce:ce:96:09:09:
fc:8f:b7:ee:f1:72:d8:1b:89:ae:1d:0f:f1:58:c7:
5a:c4:85:1e:b7:7a:40:18:2a:13:b7:f8:71:dd:5f:
47:63:a9:57:29:8f:e5:0f:70:c5:58:90:1d:cc:41:
0c:7e:fa:81:ec:63:1b:21:54:b6:f0:d9:16:6b:7a:
2f:71:a9:f4:c2:d1:fb:98:53:68:f9:95:ca:52:af:
78:69:33:2e:51:1b:f4:e5:bc:ef:dd:86:e9:26:0d:
a1:48:f0:92:a0:55:71:60:e0:b7:ab:3c:ad:50:a4:
da:18:67:31:92:9c:ed:90:2e:16:df:88:f1:26:bf:
08:01:75:20:83:eb:60:5d:d1:4d:45:06:97:81:6b:
9c:96:ce:cd:14:29:7c:3d:84:71:3b:2f:4c:47:46:
d6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CD:86:B4:F9:75:EF:47:70:17:AB:2C:5A:02:83:34:62:FD:73:6B
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/1-s2GtPl170dwF6ssWgKDNGL9c2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.53.0/24
178.157.76.0/24
Signature Algorithm: sha256WithRSAEncryption
35:97:a3:51:60:13:1a:67:bf:08:62:d3:c1:18:c8:a7:41:d1:
be:78:df:9d:ff:db:c2:f8:c7:f3:0d:60:bc:61:66:88:f3:91:
e5:39:08:d5:77:ce:c9:46:cd:c6:b2:9f:76:36:ae:32:94:fa:
53:69:0d:25:7d:c8:04:0c:13:d2:2b:8d:e4:c0:4b:a0:2e:38:
b0:01:75:05:a1:cf:87:c4:95:58:c2:a8:9c:66:a3:cc:de:01:
64:31:b9:4f:22:f7:a9:94:45:ee:01:b8:ac:3a:3f:4c:0e:42:
5b:54:0b:23:ff:60:ed:bd:2b:ab:1f:2a:7a:8e:87:df:c2:08:
5f:5b:12:4e:3f:6d:65:16:f2:6a:c0:e1:5a:b8:37:e0:b2:ef:
f8:42:b7:40:63:d8:e8:60:f7:75:92:d3:ae:41:a1:7f:b9:b0:
59:c6:ab:54:98:e3:f8:e8:d4:f8:28:d9:a8:72:bd:16:03:f4:
6d:3d:f0:e8:dd:34:e1:6e:e5:84:c5:2a:c9:58:39:26:2a:31:
b0:37:7e:fb:ed:e6:ea:be:11:5a:91:d9:3b:3f:6d:5e:21:6a:
00:9f:87:38:23:89:8d:fb:e7:74:44:39:4e:9b:9a:b9:02:f4:
10:6a:93:d9:7d:0c:6d:cc:a5:c7:84:fd:5f:59:70:1b:d5:a0:
a9:c2:30:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org