Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/dCouVcijPb2LmlhyGnraRmHffKg.roa
File: dCouVcijPb2LmlhyGnraRmHffKg.roa (raw, json)
Hash identifier: VLslv+0pdQ7c/SrP9nwQGmKwMIQsI8YRHSp14YnaWk4=
Subject key identifier: 74:2A:2E:55:C8:A3:3D:BD:8B:9A:58:72:1A:7A:DA:46:61:DF:7C:A8
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 0184C111821CE5711785177771AF6D55E473
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/dCouVcijPb2LmlhyGnraRmHffKg.roa
Signing time: Tue 29 Nov 2022 01:47:40 +0000
ROA not before: Tue 29 Nov 2022 01:47:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62563
IP address blocks: 178.236.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c1:11:82:1c:e5:71:17:85:17:77:71:af:6d:55:e4:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Nov 29 01:47:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=742a2e55c8a33dbd8b9a58721a7ada4661df7ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:73:01:a3:3d:e7:38:95:fc:d7:52:05:92:da:
ba:cd:17:08:9d:d8:5d:13:98:97:80:e9:73:bf:99:
01:ef:13:1d:0c:83:15:7f:2a:b7:3b:b1:bd:d2:77:
8b:a8:9a:2c:d3:c6:c3:ff:72:9f:cb:ae:d4:26:28:
89:52:a1:cb:46:d6:45:93:c5:2c:12:4a:cb:92:5c:
4f:51:b1:d4:96:d6:c8:6a:36:4e:8b:7a:44:38:23:
9f:d3:2e:b6:29:1c:c1:4d:42:a4:9e:38:3c:b5:c8:
75:11:c7:9b:18:49:93:39:8b:64:b6:76:10:06:6c:
4b:bb:2c:b4:29:10:a0:3d:10:5a:fa:5b:72:a0:fd:
a5:db:35:db:d6:9f:ad:46:94:f7:1e:07:39:9c:a1:
39:22:bc:44:46:1d:4a:98:27:84:1b:51:f5:71:0a:
a2:2b:36:7f:c2:e9:89:c1:19:9c:2c:7b:95:f6:76:
51:c1:ef:e0:48:7f:76:0f:64:b8:a5:93:9c:29:7c:
e4:f1:fe:fc:a6:e3:56:9a:0d:54:30:a0:aa:bd:ff:
7d:0a:dc:73:e6:b3:3c:cf:b1:d3:f3:1a:36:6c:06:
f5:e0:3c:c9:81:a0:e9:af:1b:42:3f:18:f4:96:51:
ff:19:b8:3d:ee:e6:ac:4c:92:a4:ae:0e:71:36:7f:
b0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2A:2E:55:C8:A3:3D:BD:8B:9A:58:72:1A:7A:DA:46:61:DF:7C:A8
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/dCouVcijPb2LmlhyGnraRmHffKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.225.0/24
Signature Algorithm: sha256WithRSAEncryption
38:1c:a8:41:76:d7:0a:c4:af:5a:86:47:bb:0a:3b:45:d6:26:
44:3c:ce:75:23:0b:68:2e:16:23:b4:52:dc:32:76:ce:bd:d5:
fa:70:ce:25:9a:e6:ea:c8:0e:a3:b6:e4:2e:08:9b:d0:14:2f:
76:3f:bf:e4:a5:d8:42:50:e5:dd:51:59:c7:f7:6f:58:e4:0f:
bb:2f:2c:7a:12:c6:cd:28:09:fe:6f:8b:14:de:85:76:42:3d:
52:26:72:30:6e:8a:b0:c9:b5:3d:d4:36:14:db:10:38:78:aa:
8b:59:db:b9:8e:23:28:c3:fa:18:fd:06:4c:4a:e7:16:1c:69:
ea:99:6b:4a:ea:68:b8:6b:97:74:04:5b:b9:ab:73:16:43:f2:
65:3a:92:fc:77:9e:c9:85:55:55:05:65:a5:ea:b2:4a:44:fe:
a6:df:54:9e:96:a4:b5:bb:aa:bf:fd:e8:94:3d:44:ac:e6:25:
d8:77:31:95:83:77:ca:b9:c2:98:b6:58:22:82:7c:1c:43:ff:
5a:9d:77:a9:6b:1c:ad:51:45:f1:c9:cb:b5:27:69:4d:94:09:
89:48:43:09:d6:cf:ba:b9:57:a9:16:aa:d4:bd:d4:9f:f0:c3:
5b:d3:fc:53:a9:4e:ea:ef:09:d4:3e:3b:b7:3c:7a:3a:b9:5a:
da:c3:e3:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:27 2023 by rpki-client on console-fra.rpki-client.org