Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/CtoffUy9GEnMa90MxhZrWeBLYbk.roa
File: CtoffUy9GEnMa90MxhZrWeBLYbk.roa (raw, json)
Hash identifier: RLQCcR4H2SDj87y0ijUF6Dat8IPThhXmrCaJUk9NuJM=
Subject key identifier: 0A:DA:1F:7D:4C:BD:18:49:CC:6B:DD:0C:C6:16:6B:59:E0:4B:61:B9
Certificate issuer: /CN=d6923df4dae91950cf00d235fe39e00eea3816d2
Certificate serial: 37D8FF40
Authority key identifier: D6:92:3D:F4:DA:E9:19:50:CF:00:D2:35:FE:39:E0:0E:EA:38:16:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1pI99NrpGVDPANI1_jngDuo4FtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/CtoffUy9GEnMa90MxhZrWeBLYbk.roa
Signing time: Sat 01 Jan 2022 08:01:23 +0000
ROA not before: Sat 01 Jan 2022 08:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15614
IP address blocks: 178.209.128.0/19 maxlen: 19
213.168.176.0/20 maxlen: 20
2a02:13b8::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 936968000 (0x37d8ff40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6923df4dae91950cf00d235fe39e00eea3816d2
Validity
Not Before: Jan 1 08:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ada1f7d4cbd1849cc6bdd0cc6166b59e04b61b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:13:e0:50:16:79:91:4b:9d:bd:9b:1d:e1:bf:
32:db:1a:4a:40:ef:ef:e3:58:d4:de:ba:f4:e5:5a:
5e:dc:44:3f:cc:78:7b:7f:09:18:d6:59:8d:ba:3d:
a8:7b:bb:40:3a:24:a6:3a:c8:f6:39:b4:f4:e0:ed:
e3:fe:48:87:21:de:61:ce:4f:f2:9f:4e:9e:39:68:
7d:8f:57:1e:e0:25:db:9f:36:fa:bd:1d:b7:a6:86:
58:5c:e5:79:07:71:a1:4a:4f:88:da:a3:a6:15:d3:
47:66:b6:ee:20:3a:68:13:d4:9e:06:65:4a:af:7b:
71:b8:e8:11:a0:d8:31:ec:1c:f9:d6:90:20:62:a9:
a5:fd:d6:a0:29:07:3b:4f:00:4e:2d:24:02:06:a7:
4d:c9:db:cb:86:2f:e3:ff:43:a4:00:5b:20:2e:f8:
3e:aa:ee:7e:68:7c:63:ae:3a:42:7b:50:f9:69:05:
51:6a:b7:76:4c:3d:51:91:59:2c:47:1e:84:1d:eb:
ff:fe:fa:11:62:2a:0c:ba:5b:d5:d8:db:be:45:8d:
96:f8:b4:9a:56:1a:06:64:2e:39:e5:01:1d:4a:c5:
0d:c2:69:c5:51:ab:14:ee:f3:ea:c1:ef:5b:9f:35:
0d:61:89:b8:8e:7d:39:8c:c1:50:3b:5c:af:c5:e3:
e0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DA:1F:7D:4C:BD:18:49:CC:6B:DD:0C:C6:16:6B:59:E0:4B:61:B9
X509v3 Authority Key Identifier:
keyid:D6:92:3D:F4:DA:E9:19:50:CF:00:D2:35:FE:39:E0:0E:EA:38:16:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1pI99NrpGVDPANI1_jngDuo4FtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/CtoffUy9GEnMa90MxhZrWeBLYbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/1pI99NrpGVDPANI1_jngDuo4FtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.209.128.0/19
213.168.176.0/20
IPv6:
2a02:13b8::/29
Signature Algorithm: sha256WithRSAEncryption
8a:ae:98:13:e4:8a:74:df:23:43:a7:76:33:43:ed:13:68:fc:
54:80:9f:ef:1c:a6:5f:ea:b8:09:c1:65:f3:c1:9c:bf:ae:95:
ea:34:2f:aa:36:bf:4d:4a:02:78:f7:fc:c4:b0:c5:55:b5:70:
b3:61:90:1f:cb:f4:6b:ee:90:ad:3c:49:98:da:da:f1:52:d2:
ec:99:1b:2e:05:f8:32:ab:2e:dc:d0:52:e8:77:c8:c8:99:d5:
18:ac:50:48:9b:47:d5:67:3b:b0:7e:06:90:6e:45:93:10:1c:
d2:48:e6:6b:9a:af:0a:32:6a:22:38:95:f0:0e:19:b2:19:2d:
9b:17:fb:a9:7b:16:1b:31:68:3c:23:e2:19:56:73:fe:1d:90:
9a:dc:ae:0a:cd:df:b3:69:f9:62:89:db:69:53:5e:36:1d:f5:
a5:42:ab:8f:02:84:c5:56:49:b6:4b:93:8b:25:5d:fa:84:6f:
10:d7:d7:01:83:c6:04:5e:87:f4:b9:d0:d4:b1:6f:74:5f:24:
7d:08:c5:cd:00:aa:ed:b7:40:76:9a:92:c1:89:dc:68:6a:3f:
31:64:e5:2d:4d:32:78:18:33:cd:74:6d:66:9e:d8:f8:92:43:
8d:21:72:9e:77:df:89:c2:13:eb:f4:d1:a1:f5:46:01:40:15:
26:aa:93:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:35 2024 by rpki-client on console-ams.rpki-client.org