Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/CFSdD29npquIs9cNp9eF1fcnyz8.roa
File: CFSdD29npquIs9cNp9eF1fcnyz8.roa (raw, json)
Hash identifier: /QQTWoZGVzxefgud97mHMbuIDEGHEgVtRWrBvmpr8ew=
Subject key identifier: 08:54:9D:0F:6F:67:A6:AB:88:B3:D7:0D:A7:D7:85:D5:F7:27:CB:3F
Certificate issuer: /CN=0da3cbf1e0e856ea4c53b5abae86594ec9933982
Certificate serial: CA867A
Authority key identifier: 0D:A3:CB:F1:E0:E8:56:EA:4C:53:B5:AB:AE:86:59:4E:C9:93:39:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DaPL8eDoVupMU7WrroZZTsmTOYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/CFSdD29npquIs9cNp9eF1fcnyz8.roa
Signing time: Tue 28 Jun 2022 09:25:02 +0000
ROA not before: Tue 28 Jun 2022 09:25:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208545
IP address blocks: 178.175.181.0/24 maxlen: 24
178.175.180.0/24 maxlen: 24
178.175.180.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13272698 (0xca867a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0da3cbf1e0e856ea4c53b5abae86594ec9933982
Validity
Not Before: Jun 28 09:25:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08549d0f6f67a6ab88b3d70da7d785d5f727cb3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:35:eb:8a:ec:bc:bd:30:32:2c:0b:7a:32:cf:
be:93:5f:c1:32:ee:5d:13:aa:04:51:7c:4f:89:69:
94:ee:02:c4:70:0f:e1:09:f5:17:32:be:7f:11:63:
cb:10:e9:da:da:10:f1:26:86:dd:df:e2:78:00:4f:
d3:eb:cf:0d:b0:bf:82:fb:49:5c:4b:27:21:9a:2c:
1b:12:01:c8:42:1f:91:61:01:28:2b:cf:c2:e1:d5:
e6:e8:aa:54:13:b8:72:68:8a:32:eb:8f:c3:54:5b:
e1:89:91:5d:34:24:b8:a5:89:f1:e4:e3:fc:1f:0a:
69:9d:6f:b1:b8:63:4e:76:12:ac:69:89:84:ac:bc:
08:3b:76:2b:10:1b:3b:6e:01:8b:e5:ee:ee:78:34:
d2:f1:20:45:c5:04:b2:a5:3e:31:48:1d:4b:69:68:
c1:69:53:f5:d6:fe:96:7f:c6:c2:be:77:03:ac:7b:
3c:8a:d6:67:f8:f2:18:bc:a0:27:53:47:aa:99:e1:
1e:cd:08:1d:99:f5:ec:86:a9:0e:69:63:1a:72:56:
89:0f:69:46:6a:97:48:f2:f1:28:3e:4d:77:7f:59:
53:3d:f0:a8:fa:e1:ff:f9:ec:82:bf:f1:b3:00:43:
18:bc:f7:91:3a:e0:dd:4d:f6:fd:87:33:1a:53:48:
36:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:54:9D:0F:6F:67:A6:AB:88:B3:D7:0D:A7:D7:85:D5:F7:27:CB:3F
X509v3 Authority Key Identifier:
keyid:0D:A3:CB:F1:E0:E8:56:EA:4C:53:B5:AB:AE:86:59:4E:C9:93:39:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DaPL8eDoVupMU7WrroZZTsmTOYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/CFSdD29npquIs9cNp9eF1fcnyz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/53741e-9392-4d19-99d2-ced29650a280/1/DaPL8eDoVupMU7WrroZZTsmTOYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.180.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:ae:0c:83:30:ae:93:e6:cd:c0:89:4e:5d:c0:94:c0:2a:c2:
a1:6e:dd:17:24:64:ff:e2:54:36:13:07:48:10:64:92:bf:9a:
88:66:2b:dc:ab:e0:ae:12:65:fa:12:1b:18:b2:65:dc:f7:9f:
ed:11:cb:ae:c1:96:f5:1b:ec:20:01:70:f9:70:91:60:cb:8d:
e7:13:fd:18:7a:61:6e:14:df:79:4b:b5:90:0d:4e:34:38:ad:
db:37:b6:0a:13:5d:4b:b2:b7:e6:32:f9:23:f6:9f:dd:18:af:
4a:a4:ed:e5:27:3c:f4:37:c8:dd:1f:77:75:0c:7d:dc:51:26:
3a:2e:ad:72:57:24:a4:e5:7b:69:3e:07:fb:29:38:98:51:7c:
6c:6d:a6:90:e5:a1:95:f6:e4:10:d9:c7:64:4e:f1:6a:cc:e7:
bf:6c:a0:e8:ae:91:20:2e:1a:e4:8e:fb:ec:f3:01:36:f1:bf:
9c:4b:90:9a:fe:39:8f:5c:93:b3:20:42:85:56:a6:79:30:b8:
48:f9:a2:c4:21:78:e2:be:ec:84:22:af:fe:8e:b9:49:c2:d8:
77:8e:53:23:3a:0a:10:f0:b9:8c:d2:7d:ee:b2:37:ca:57:ea:
8f:4e:14:41:7c:3e:89:dd:39:7a:ee:98:8b:74:ae:74:06:e3:
f0:a4:25:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:25 2024 by rpki-client on console-ams.rpki-client.org