Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/76b1d3-4fd9-46cf-83e6-20c4dc1e4a77/1/_kYGvhnTcPj2TgWf4ftiDlU9dOw.roa
File: _kYGvhnTcPj2TgWf4ftiDlU9dOw.roa (raw, json)
Hash identifier: HykPJonRWC5KpmNLCrQpjnoqJy7eGLq38g7BTtY0z0o=
Subject key identifier: FE:46:06:BE:19:D3:70:F8:F6:4E:05:9F:E1:FB:62:0E:55:3D:74:EC
Certificate issuer: /CN=98eb33c2cefb5da34607b00b5005e44b75524a1f
Certificate serial: 01042013
Authority key identifier: 98:EB:33:C2:CE:FB:5D:A3:46:07:B0:0B:50:05:E4:4B:75:52:4A:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mOszws77XaNGB7ALUAXkS3VSSh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/76b1d3-4fd9-46cf-83e6-20c4dc1e4a77/1/_kYGvhnTcPj2TgWf4ftiDlU9dOw.roa
Signing time: Tue 22 Mar 2022 21:58:23 +0000
ROA not before: Tue 22 Mar 2022 21:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56958
IP address blocks: 178.211.133.0/24 maxlen: 24
2a12:d280::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17047571 (0x1042013)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98eb33c2cefb5da34607b00b5005e44b75524a1f
Validity
Not Before: Mar 22 21:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe4606be19d370f8f64e059fe1fb620e553d74ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:31:d5:4e:38:64:04:1b:2c:33:c9:00:25:ff:
da:52:95:3e:ec:fa:1a:01:81:de:c4:d2:80:1e:62:
38:0f:7a:16:09:e8:73:32:18:3c:a0:67:93:f2:69:
79:0b:fe:2d:4a:c5:1c:a3:20:71:7b:7d:b2:59:e1:
6d:cc:5f:c8:e3:1e:05:9b:52:d5:f1:36:50:2b:79:
f8:c9:d5:8d:f3:b2:70:10:9a:5b:e2:de:d0:1c:99:
64:5c:1f:eb:14:fc:b0:85:7c:2f:be:01:03:cf:aa:
93:70:b5:3b:81:47:3d:74:c4:e9:ca:5c:fd:ea:fc:
73:87:6b:8e:3c:62:de:12:c8:d4:4c:47:1b:ec:2e:
20:a6:14:fa:10:07:97:73:8b:da:e9:ac:74:5f:11:
e1:f6:ae:36:c5:c5:11:8c:3f:aa:58:f7:d4:a1:de:
59:a1:7b:7b:42:1d:2c:ce:32:0b:d5:02:70:28:9e:
0c:11:c8:d4:80:c4:3a:0d:5a:a8:98:ae:a6:aa:5d:
c2:6f:fe:bc:a4:c6:da:aa:17:22:17:9d:c8:92:a8:
9c:79:4e:3d:18:74:cc:c5:19:b8:a1:87:7e:85:06:
dd:29:d9:5e:0a:40:7f:fc:83:93:ff:d7:c4:5d:e3:
94:dc:86:19:79:f4:a0:d5:84:ba:9e:45:b0:d7:38:
59:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:46:06:BE:19:D3:70:F8:F6:4E:05:9F:E1:FB:62:0E:55:3D:74:EC
X509v3 Authority Key Identifier:
keyid:98:EB:33:C2:CE:FB:5D:A3:46:07:B0:0B:50:05:E4:4B:75:52:4A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mOszws77XaNGB7ALUAXkS3VSSh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/76b1d3-4fd9-46cf-83e6-20c4dc1e4a77/1/_kYGvhnTcPj2TgWf4ftiDlU9dOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/76b1d3-4fd9-46cf-83e6-20c4dc1e4a77/1/mOszws77XaNGB7ALUAXkS3VSSh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.133.0/24
IPv6:
2a12:d280::/32
Signature Algorithm: sha256WithRSAEncryption
64:fd:01:43:a1:e4:38:c4:a9:11:47:c9:3d:80:1e:c4:c8:95:
94:db:05:52:29:64:1f:cd:c5:d1:53:42:93:3e:40:4b:f8:f0:
df:7c:a5:a0:8f:17:a6:c4:1c:28:a0:35:b2:1c:fb:b5:f9:05:
1e:40:c5:d9:b5:c9:7f:3c:4c:2d:d7:0a:1c:6d:c3:85:fd:84:
10:59:47:bf:99:8e:47:ec:e1:d8:23:db:6c:f6:44:10:65:93:
3d:24:03:a5:c2:12:ce:be:c8:6e:44:cc:54:49:93:0b:a0:af:
a2:59:36:9f:c8:a7:d7:67:7e:f8:a2:02:0f:2b:b4:6b:95:2c:
c3:fc:24:b9:bf:68:c1:e6:ed:10:87:40:69:cb:b2:9b:aa:d0:
c5:6e:2a:20:44:71:88:25:16:6b:08:d5:7d:f1:4d:39:25:f8:
b8:48:f6:49:36:9e:5b:d0:0c:d8:02:77:11:02:71:4d:88:c9:
fc:e3:65:cf:5b:ea:a7:87:4f:ac:13:5c:80:5e:ae:6b:ed:63:
ab:11:ea:f8:ee:42:d3:09:f8:ec:0d:7d:0c:a8:77:ce:c4:45:
07:30:b2:17:78:3d:69:d5:71:99:c5:ac:b6:c0:68:ce:b4:56:
a5:09:29:c7:76:60:64:6d:b2:31:2f:c4:99:9a:4c:e5:af:c2:
83:8b:74:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:05:03 2025 by rpki-client