Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/M3qy0GCLCjHSlYUAm3jILe9kaDI.roa
File: M3qy0GCLCjHSlYUAm3jILe9kaDI.roa (raw, json)
Hash identifier: 809AR37iWTCGj4zTWMWQNCwy3nj/jfykQSkOr9i/ZZw=
Subject key identifier: 33:7A:B2:D0:60:8B:0A:31:D2:95:85:00:9B:78:C8:2D:EF:64:68:32
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 0184554D277585528E0D1957337B6D627E06
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/M3qy0GCLCjHSlYUAm3jILe9kaDI.roa
Signing time: Tue 08 Nov 2022 03:33:50 +0000
ROA not before: Tue 08 Nov 2022 03:33:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 178.236.226.0/24 maxlen: 24
178.236.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:55:4d:27:75:85:52:8e:0d:19:57:33:7b:6d:62:7e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Nov 8 03:33:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=337ab2d0608b0a31d29585009b78c82def646832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ea:a5:9d:a6:97:b6:81:56:2a:b3:91:0f:f4:
ce:2f:40:bf:f6:51:71:b9:2b:f0:60:84:24:de:b9:
e4:68:24:74:ed:10:3b:56:f5:e3:6f:35:57:02:5f:
1d:1f:f9:82:3f:0b:4e:fe:01:c9:38:55:82:4f:fd:
01:16:1a:c1:72:5d:14:ca:54:36:8e:6f:57:94:d0:
00:a5:4b:96:dd:25:41:10:14:60:60:24:1c:73:66:
27:0c:90:1b:9c:dc:9c:52:87:b4:54:01:38:2f:9f:
26:3f:a6:c7:bf:94:de:be:b0:2a:99:48:05:ac:0d:
7f:ce:fb:da:a4:d5:c7:89:b0:54:68:5c:f0:bb:b8:
3a:17:4a:b9:aa:f9:06:42:4c:79:51:d1:6b:8a:f9:
d2:58:57:34:55:87:6e:c3:ba:5a:46:60:31:33:69:
f7:56:0c:7a:62:78:91:06:dd:da:6a:06:d9:92:40:
90:37:2b:4a:96:9c:bf:73:40:0a:6e:06:47:78:5e:
aa:1a:60:60:b9:87:50:1c:68:79:90:c2:d7:cd:31:
f2:de:75:a0:47:82:20:e1:04:ae:8d:ab:d3:f4:e1:
0f:26:80:3d:c1:4e:6c:d3:93:66:c4:2e:3b:5c:88:
a6:81:d0:a8:32:b0:a8:50:18:f8:86:fe:be:a6:4a:
36:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7A:B2:D0:60:8B:0A:31:D2:95:85:00:9B:78:C8:2D:EF:64:68:32
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/M3qy0GCLCjHSlYUAm3jILe9kaDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.226.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:17:91:a6:35:ae:e0:b6:23:b9:9e:0c:46:78:26:7b:37:dd:
b8:4a:1e:e6:42:29:32:32:2a:86:4e:1f:fd:25:51:51:81:b0:
51:c8:f8:5c:5c:12:93:36:e6:0f:aa:dd:31:4b:5d:89:fd:7d:
fb:e3:d8:6a:08:e6:e8:63:fd:0e:64:f5:8a:3b:4d:0f:3c:55:
86:75:13:b6:cf:aa:dc:6e:a8:36:a6:94:6c:b9:9e:9e:f1:2c:
67:81:ca:05:10:d1:98:fe:65:df:c2:17:48:41:15:b2:84:d4:
fa:02:bb:ce:49:98:e3:57:57:f7:1d:21:47:4b:ef:26:eb:8a:
45:81:07:81:ea:88:30:57:88:2e:08:97:0e:8a:23:60:04:2f:
5a:a3:e1:7f:91:c0:87:2c:ed:a7:45:2b:ab:79:f9:c1:7c:c7:
59:49:6a:47:66:aa:b6:2e:7d:69:48:19:67:eb:7d:14:ed:e5:
b2:34:7d:5b:91:5e:2d:e9:d1:13:79:79:6c:29:cb:90:39:3a:
83:29:31:47:82:67:73:02:0b:7b:fa:d8:ed:69:b6:a4:fc:f7:
5f:3f:ea:5e:12:47:16:89:5e:4d:3c:8a:45:a5:36:b8:3e:b1:
5a:96:bd:68:4f:75:03:3f:44:20:0f:99:1c:f4:30:40:5e:5d:
f1:cc:31:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:19 2024 by rpki-client on console-fra.rpki-client.org