Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/5678cd-d77b-4563-afe3-b40527dd43fc/1/y1hztINS0veuUpdA9pAZ_QFPhSU.roa
File: y1hztINS0veuUpdA9pAZ_QFPhSU.roa (raw, json)
Hash identifier: VlvuA0gZ4Fwqg1MkEzk5ApFUkFpCS+MRe+oU7yvzPDw=
Subject key identifier: CB:58:73:B4:83:52:D2:F7:AE:52:97:40:F6:90:19:FD:01:4F:85:25
Certificate issuer: /CN=d34403a30b313759af9626afd8d3d23805fcc80e
Certificate serial: 04B6E95F
Authority key identifier: D3:44:03:A3:0B:31:37:59:AF:96:26:AF:D8:D3:D2:38:05:FC:C8:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00QDowsxN1mvliav2NPSOAX8yA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/5678cd-d77b-4563-afe3-b40527dd43fc/1/y1hztINS0veuUpdA9pAZ_QFPhSU.roa
Signing time: Sat 01 Jan 2022 10:58:39 +0000
ROA not before: Sat 01 Jan 2022 10:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212938
IP address blocks: 178.217.235.0/24 maxlen: 24
2a0c:cd40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79096159 (0x4b6e95f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34403a30b313759af9626afd8d3d23805fcc80e
Validity
Not Before: Jan 1 10:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb5873b48352d2f7ae529740f69019fd014f8525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4d:7b:c6:b1:ef:54:3a:93:69:de:ee:2b:0a:
f9:27:12:b6:1a:00:48:ae:b4:46:27:ac:12:c6:e8:
95:94:88:1e:af:52:59:cc:a6:28:e1:77:64:60:13:
ef:9e:ed:b1:aa:35:39:5a:00:c7:4f:2d:21:e1:c5:
cd:6c:db:2b:85:ef:02:37:74:71:38:af:f0:fb:1b:
c1:fc:fa:d1:03:05:97:e6:a7:ac:1c:31:47:32:84:
08:21:87:3b:4c:e5:5c:bc:39:a8:eb:68:ab:30:18:
c8:46:86:16:08:32:39:a3:02:52:fe:d2:46:7f:01:
c3:e8:4b:4a:19:ed:a2:89:e5:cb:9e:19:85:e4:0a:
d9:c1:a6:f9:b0:6d:bd:53:d5:44:50:24:16:1c:06:
27:49:b1:b4:a2:02:fd:6a:6b:43:dd:47:52:6a:7f:
10:6a:df:ff:41:49:e4:c2:84:4f:82:2e:1a:3a:fb:
9e:18:67:fb:65:2b:17:fa:8d:7e:27:14:b0:8e:41:
03:2e:c4:e4:ac:89:5d:b3:29:dd:e2:2b:f7:f0:73:
0b:63:67:bd:f8:7c:7a:f9:d7:4c:63:54:25:e4:f3:
44:ed:82:43:22:9e:8b:5a:fd:8a:2f:c5:f9:83:bf:
f9:27:67:0b:6f:f3:84:a9:6b:cc:55:c0:96:31:d6:
3a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:58:73:B4:83:52:D2:F7:AE:52:97:40:F6:90:19:FD:01:4F:85:25
X509v3 Authority Key Identifier:
keyid:D3:44:03:A3:0B:31:37:59:AF:96:26:AF:D8:D3:D2:38:05:FC:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00QDowsxN1mvliav2NPSOAX8yA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/5678cd-d77b-4563-afe3-b40527dd43fc/1/y1hztINS0veuUpdA9pAZ_QFPhSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/5678cd-d77b-4563-afe3-b40527dd43fc/1/00QDowsxN1mvliav2NPSOAX8yA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.235.0/24
IPv6:
2a0c:cd40::/29
Signature Algorithm: sha256WithRSAEncryption
57:df:3a:e6:10:01:44:d3:aa:d2:14:2b:90:8d:6f:59:18:7e:
2d:af:90:6b:cd:7c:2f:03:ce:73:f4:42:d6:f5:1b:cc:b0:b5:
b7:44:94:ac:72:f7:65:e9:8a:af:0b:17:3e:0b:de:77:34:19:
56:92:77:2f:e0:29:b1:56:cc:47:7b:ff:0c:02:d9:e5:79:f4:
da:20:56:89:5f:26:05:6e:b6:23:6c:87:0c:75:d9:42:29:e3:
cb:10:93:84:c4:ba:f3:63:4b:b9:e1:a6:6a:9e:73:b1:ba:bb:
59:7a:80:17:88:05:ea:06:ac:de:5b:4b:89:7f:e5:aa:24:ab:
d0:d2:58:8e:f6:3e:00:34:26:0c:ac:46:51:d2:69:3d:46:9d:
32:0b:43:11:cb:cd:2b:9e:4d:82:05:bd:03:c2:f2:56:ae:f5:
47:d5:f2:ed:69:17:70:ba:02:bd:1f:9a:a2:58:7e:ed:ec:22:
0f:ce:80:dd:49:c6:95:bb:47:f8:36:4e:2e:70:54:9a:29:22:
fd:49:85:2c:c2:5b:3d:37:fe:42:d3:ca:f3:c9:e0:d0:e3:25:
8c:8e:b1:fe:59:4e:cf:21:6b:4b:9e:20:c3:8f:13:df:64:25:
e6:60:43:81:29:d4:8f:50:3c:45:c7:e2:2a:36:d9:e9:81:70:
cd:fd:cd:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:21 2023 by rpki-client on console-ams.rpki-client.org