Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/2XiLPM5x_FmOvzmUpBk9SuWoIIY.roa
File: 2XiLPM5x_FmOvzmUpBk9SuWoIIY.roa (raw, json)
Hash identifier: AKzMEs2xLzXzmHMAf7nWP5yr3eFdBTRbzyJMIaeUZok=
Subject key identifier: D9:78:8B:3C:CE:71:FC:59:8E:BF:39:94:A4:19:3D:4A:E5:A8:20:86
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 383B2D0F
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/2XiLPM5x_FmOvzmUpBk9SuWoIIY.roa
Signing time: Sat 01 Jan 2022 09:56:21 +0000
ROA not before: Sat 01 Jan 2022 09:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 178.236.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943402255 (0x383b2d0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Jan 1 09:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9788b3cce71fc598ebf3994a4193d4ae5a82086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8e:cc:e4:9a:0c:80:52:95:17:b6:3e:6a:ff:
73:2f:f6:9e:a2:da:f4:3a:f0:e6:a0:a5:40:6e:46:
1b:75:cb:78:c7:79:f6:6a:c3:38:f1:c0:48:80:d9:
e4:2e:0c:94:de:8d:4f:cf:53:a9:de:0f:bb:17:40:
c0:76:25:e6:34:c4:02:29:7c:bf:cf:37:26:9d:84:
65:93:c3:9b:4c:f2:b2:fe:5d:cf:51:34:47:53:1e:
a3:70:11:6e:57:ec:1c:f1:a4:41:dd:85:92:50:36:
d4:07:ff:58:9c:2a:4d:e9:d0:d8:45:df:3e:fa:a8:
1c:62:97:63:5a:9f:f4:74:4f:7c:df:87:07:7f:ca:
56:83:93:b3:b0:64:4b:91:ee:f1:45:a4:d8:e4:81:
7c:8b:70:d3:e0:23:d2:bc:1d:2c:c5:ea:4d:1c:8d:
13:ea:a8:7d:9b:53:bb:9e:a6:4c:1f:bf:f2:e2:6e:
90:93:b3:80:45:19:1d:05:d6:44:85:db:59:3b:59:
3f:46:e1:d2:d1:64:cb:88:9d:aa:04:2a:dc:e3:65:
24:34:07:f5:10:28:b5:e1:43:6f:d3:49:39:4d:04:
e6:b9:64:36:a9:8f:40:9f:fc:cc:ad:68:3a:18:ff:
9f:29:0e:72:c7:43:47:9a:0a:10:c4:71:7c:bb:47:
5f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:78:8B:3C:CE:71:FC:59:8E:BF:39:94:A4:19:3D:4A:E5:A8:20:86
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/2XiLPM5x_FmOvzmUpBk9SuWoIIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.235.0/24
Signature Algorithm: sha256WithRSAEncryption
06:b2:06:42:1e:80:39:31:b8:ec:28:ab:07:c9:63:29:24:dd:
b6:0b:04:29:a9:2f:f7:bc:51:91:49:19:00:de:6c:81:a5:d8:
7c:e1:30:5b:72:65:bd:6a:49:d1:e6:1b:44:77:2a:a9:fd:46:
48:93:2d:d7:c7:31:e6:9a:6f:85:88:ad:b8:3c:52:70:23:9b:
52:50:eb:f7:96:2a:52:e7:5f:a0:78:fc:d1:b3:a4:6e:6d:6e:
51:f1:8b:ba:4b:1a:0f:ee:65:3f:1e:31:66:2d:f2:7d:2a:ba:
a1:77:22:22:da:41:22:09:16:47:74:b3:61:50:00:86:4c:07:
91:08:34:66:c6:63:29:39:3c:ec:1f:7c:b3:e0:ca:2d:c5:f1:
3d:24:ab:5f:be:f2:31:ed:24:ac:03:27:09:2e:62:6c:5e:e4:
eb:dd:d3:4a:e6:c7:92:d8:82:c8:4c:63:99:87:5e:49:b1:90:
fd:e0:b1:0f:9a:bd:2e:f9:f6:95:e6:f2:55:bd:d0:4a:67:3a:
90:4e:26:de:9e:16:fa:00:03:6d:06:e8:3f:c8:41:7f:92:84:
f2:9d:f4:9f:5b:31:3a:9b:d0:a8:98:e0:84:77:64:b2:29:8b:
08:d0:5e:e9:6c:d9:be:46:cc:3e:ac:08:37:3e:ac:fa:53:c1:
ae:52:ae:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:21 2023 by rpki-client on console-ams.rpki-client.org