Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/09xYjdYIenVof_8Sn2-JnpfkHc4.roa
File: 09xYjdYIenVof_8Sn2-JnpfkHc4.roa (raw, json)
Hash identifier: D69tcLuQgpw2chAi7ai7FAlloOLNhECN5w51v5lK0Xg=
Subject key identifier: D3:DC:58:8D:D6:08:7A:75:68:7F:FF:12:9F:6F:89:9E:97:E4:1D:CE
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 0184325F30DD6211E8E9139D8C8E3849BFF6
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/09xYjdYIenVof_8Sn2-JnpfkHc4.roa
Signing time: Tue 01 Nov 2022 08:46:49 +0000
ROA not before: Tue 01 Nov 2022 08:46:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 178.236.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:32:5f:30:dd:62:11:e8:e9:13:9d:8c:8e:38:49:bf:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Nov 1 08:46:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3dc588dd6087a75687fff129f6f899e97e41dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d3:d3:81:f3:8a:aa:f1:8d:d6:42:16:cb:13:
2d:ad:71:81:42:bf:95:e6:63:ef:82:f7:21:a3:19:
f7:ad:35:e4:1c:4e:45:0c:19:b5:ad:60:b2:f5:ba:
12:19:9f:87:b9:c6:c4:d2:98:64:56:87:10:17:a4:
08:d6:f7:23:31:60:e8:10:64:a5:bd:2f:a0:2f:f0:
35:cd:72:da:c2:e3:45:2b:e7:5e:87:fe:74:62:e8:
1c:67:ef:20:0f:27:ea:c5:87:03:bf:02:73:04:12:
68:b8:a6:1f:f8:36:cc:c4:f1:ae:c3:65:e3:46:0c:
1f:d5:e9:b9:0a:7f:23:b5:46:d9:92:9b:84:22:63:
76:64:ec:25:a3:11:bc:c7:a7:89:96:52:ac:14:45:
a4:50:c8:f4:b0:04:08:5e:0a:38:69:8c:35:15:24:
25:36:4a:60:16:d7:e1:95:df:4f:26:2e:e0:8a:58:
3c:d2:0f:86:6c:7d:7d:bf:72:74:fe:0a:52:67:5f:
36:26:07:ab:2f:8e:8e:68:64:10:be:f0:60:e2:b0:
79:5f:a6:f9:6b:0c:5a:4e:54:9d:3d:aa:93:a9:aa:
92:6c:58:d2:71:b2:ca:8e:be:6a:76:99:d9:37:ec:
b4:22:d7:15:50:94:8d:eb:2d:3f:02:5d:f7:b5:7a:
92:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:DC:58:8D:D6:08:7A:75:68:7F:FF:12:9F:6F:89:9E:97:E4:1D:CE
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/09xYjdYIenVof_8Sn2-JnpfkHc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.226.0/24
Signature Algorithm: sha256WithRSAEncryption
36:bf:74:e7:ef:4b:2d:91:dd:53:73:f8:5d:5d:8a:4c:6a:4b:
bb:e1:ad:3f:8e:35:2e:97:26:c2:d3:11:23:66:8c:93:87:1b:
dc:ad:00:c0:c4:79:d9:68:af:f6:d3:02:c4:a2:d9:44:4f:56:
6d:09:e4:e8:ed:bf:30:3a:df:b6:d6:b8:51:e9:49:4b:1f:7b:
04:01:79:94:ba:ff:d5:5b:de:bd:5f:9e:41:83:b5:36:2c:96:
de:9a:f8:cd:0a:35:97:29:a4:ca:ba:85:6f:01:cd:0e:e5:c9:
23:7d:0d:09:85:d3:b1:40:6d:e8:6b:77:c0:21:7e:ee:88:37:
5f:d4:46:78:f3:e4:5a:6a:85:c2:f6:d4:d6:84:6c:a1:43:9c:
5f:10:5b:fd:2b:e7:9f:95:c0:d5:19:f9:8d:80:9f:9f:fc:3c:
44:ca:03:5b:80:fd:6b:1b:ff:21:ee:80:ea:0a:2d:20:d9:d0:
fd:ed:cb:41:cb:be:6c:70:cf:59:05:17:d4:d0:08:98:05:b3:
85:58:90:2e:ad:29:67:06:5c:59:2e:90:d6:29:26:66:3c:a1:
2e:c5:94:a7:78:7e:78:50:39:7d:f2:ab:d9:c7:c9:0e:40:15:
0e:1e:91:07:eb:88:78:45:81:37:89:57:68:ec:32:21:32:ad:
18:33:01:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:19 2024 by rpki-client on console-fra.rpki-client.org