Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/Yo5cob1qqmrbZOQrWSd2DEEYGZw.roa
File: Yo5cob1qqmrbZOQrWSd2DEEYGZw.roa (raw, json)
Hash identifier: kjIPS3Xz55NigKC8OlutflD+yTGLPe/4b6FrKsDUAJ8=
Subject key identifier: 62:8E:5C:A1:BD:6A:AA:6A:DB:64:E4:2B:59:27:76:0C:41:18:19:9C
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 0184E6AB2E63DDA9F2E22E91EF16D8FD820F
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/Yo5cob1qqmrbZOQrWSd2DEEYGZw.roa
Signing time: Tue 06 Dec 2022 09:01:28 +0000
ROA not before: Tue 06 Dec 2022 09:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 178.236.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e6:ab:2e:63:dd:a9:f2:e2:2e:91:ef:16:d8:fd:82:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Dec 6 09:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=628e5ca1bd6aaa6adb64e42b5927760c4118199c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d0:f8:a1:a9:e3:4f:56:16:3c:ff:a4:da:b5:
e8:48:c7:71:cb:68:a5:37:bd:4b:c4:9b:94:39:76:
30:2e:01:55:c0:40:fd:ca:fd:5a:8c:93:c8:79:0a:
f8:c3:98:69:ec:61:25:8b:bf:71:02:10:6b:a5:b0:
94:ad:a3:5c:a7:8c:ec:b6:1e:c9:43:1c:04:9e:97:
79:f5:1a:55:d0:8e:5f:d6:b6:b3:40:39:ba:ad:a7:
50:7f:d6:95:07:0f:e4:aa:3e:9a:f0:da:67:da:15:
34:98:f3:0e:aa:6d:99:9b:84:67:90:b2:48:ec:4e:
da:56:fd:b6:fd:3e:08:18:ec:84:72:ff:03:00:af:
92:6d:29:44:0e:10:aa:ba:2a:ee:fe:dc:91:bf:7b:
a8:68:2f:da:27:91:00:27:6a:f5:a7:b2:3d:bf:91:
b0:b6:09:c4:e0:1b:2d:0b:1c:69:28:ba:af:94:66:
18:75:b9:e7:ca:3d:e1:6a:de:53:8f:5f:f8:0e:8b:
fa:50:44:66:5d:ca:ff:f4:14:07:5a:c3:5b:d4:c8:
c2:d2:00:fd:3c:02:76:e3:8c:76:20:21:6d:c7:93:
e1:14:04:6b:fd:ee:eb:72:ca:83:5f:f6:20:ed:38:
4f:dd:ab:b5:a2:58:de:82:3f:9c:9f:dc:fd:1a:d9:
28:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8E:5C:A1:BD:6A:AA:6A:DB:64:E4:2B:59:27:76:0C:41:18:19:9C
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/Yo5cob1qqmrbZOQrWSd2DEEYGZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.227.0/24
Signature Algorithm: sha256WithRSAEncryption
40:ff:cb:71:24:ff:33:db:80:1d:29:32:3e:0d:46:d3:3c:04:
61:11:65:2b:5e:b4:74:c2:b7:86:79:fc:fc:e2:70:77:74:d9:
4c:61:f0:d2:89:94:20:56:a5:ce:60:86:43:2f:69:30:da:66:
f0:29:17:aa:11:d2:6a:1a:65:4d:93:47:1e:cb:84:6b:1f:68:
a3:67:c9:8c:d6:60:d8:8d:72:78:0f:02:dc:c3:12:63:bb:30:
c6:f8:69:8e:34:e3:92:89:23:18:20:ca:51:45:c0:17:c1:5e:
37:a3:5b:b1:e0:63:74:c8:59:f0:6e:f3:3e:6a:95:30:bb:a3:
28:5b:26:c4:69:cc:18:f3:8a:23:e5:ab:41:a4:e1:8c:bc:9e:
08:a5:e8:1a:3c:7b:52:fb:cd:46:a6:c5:4c:2e:4e:8e:3a:60:
35:c8:08:a0:5f:ca:60:ee:0d:e7:a8:81:2b:51:e2:84:02:1e:
63:88:54:dc:79:83:da:a5:0a:b3:56:65:8f:ff:5f:d6:71:12:
30:34:8f:6c:db:93:13:84:d6:0d:67:df:86:b1:bd:13:e9:65:
69:72:da:fa:af:e6:96:2b:b6:ef:fe:14:60:73:66:e2:9b:49:
96:85:a3:08:c9:3f:4f:a9:70:8f:67:a4:06:ba:55:52:7a:3a:
f5:b7:11:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTmqy5j3any4i6R7xbY/YIPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3OTRhZmRiNWU2YTE4ODU3ODA5MjBhNTRmZmE4MjQwOGVh
ODViYTEwHhcNMjIxMjA2MDkwMTI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjhlNWNhMWJkNmFhYTZhZGI2NGU0MmI1OTI3NzYwYzQxMTgxOTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgND4oanjT1YWPP+k2rXoSMdxy2il
N71LxJuUOXYwLgFVwED9yv1ajJPIeQr4w5hp7GEli79xAhBrpbCUraNcp4zsth7J
QxwEnpd59RpV0I5f1razQDm6radQf9aVBw/kqj6a8Npn2hU0mPMOqm2Zm4RnkLJI
7E7aVv22/T4IGOyEcv8DAK+SbSlEDhCquiru/tyRv3uoaC/aJ5EAJ2r1p7I9v5Gw
tgnE4BstCxxpKLqvlGYYdbnnyj3hat5Tj1/4Dov6UERmXcr/9BQHWsNb1MjC0gD9
PAJ244x2ICFtx5PhFARr/e7rcsqDX/Yg7ThP3au1oljegj+cn9z9GtkoMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGKOXKG9aqpq22TkK1kndgxBGBmcMB8GA1UdIwQY
MBaAFFeUr9teahiFeAkgpU/6gkCOqFuhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjVTdjIxNXFHSVY0Q1NDbFRfcUNRSTZvVzZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9kZGNlNGQtOTkxMi00ODdkLWI1NWQt
NDdkODJhNDFhOGYzLzEvWW81Y29iMXFxbXJiWk9RcldTZDJERUVZR1p3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS9kZGNlNGQtOTkxMi00ODdkLWI1NWQtNDdkODJhNDFhOGYz
LzEvVjVTdjIxNXFHSVY0Q1NDbFRfcUNRSTZvVzZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsuzjMA0G
CSqGSIb3DQEBCwUAA4IBAQBA/8txJP8z24AdKTI+DUbTPARhEWUrXrR0wreGefz8
4nB3dNlMYfDSiZQgVqXOYIZDL2kw2mbwKReqEdJqGmVNk0cey4RrH2ijZ8mM1mDY
jXJ4DwLcwxJjuzDG+GmONOOSiSMYIMpRRcAXwV43o1ux4GN0yFnwbvM+apUwu6Mo
WybEacwY84oj5atBpOGMvJ4IpegaPHtS+81GpsVMLk6OOmA1yAigX8pg7g3nqIEr
UeKEAh5jiFTceYPapQqzVmWP/1/WcRIwNI9s25MThNYNZ9+Gsb0T6WVpctr6r+aW
K7bv/hRgc2bim0mWhaMIyT9PqXCPZ6QGulVSejr1txFQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:13 2024 by rpki-client on console-ams.rpki-client.org