Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/gU8D0ylAk5hNR54D8vDwxxEbk-g.roa
File: gU8D0ylAk5hNR54D8vDwxxEbk-g.roa (raw, json)
Hash identifier: nva2go4x4xeUYL2RCykUTKPvPD72oO6KA9+zwWkAHCc=
Subject key identifier: 81:4F:03:D3:29:40:93:98:4D:47:9E:03:F2:F0:F0:C7:11:1B:93:E8
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 383E7DD4
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/gU8D0ylAk5hNR54D8vDwxxEbk-g.roa
Signing time: Sat 01 Jan 2022 09:56:22 +0000
ROA not before: Sat 01 Jan 2022 09:56:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141167
IP address blocks: 178.236.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943619540 (0x383e7dd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Jan 1 09:56:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=814f03d3294093984d479e03f2f0f0c7111b93e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:80:aa:7d:b2:c2:d6:4e:c6:3b:f6:b5:ff:34:
3d:30:93:37:fb:25:87:2c:8b:43:79:36:32:11:92:
7f:1e:e8:08:27:11:42:dd:03:be:a1:70:4c:75:66:
70:1e:2a:d5:bf:45:25:34:67:62:4e:b7:6f:c1:5e:
35:40:e9:ed:a3:61:f8:58:17:1a:84:0d:31:e3:e7:
9e:65:6c:16:38:76:f9:ef:aa:f4:0f:76:17:8e:06:
43:cf:ab:b5:c4:aa:84:e5:42:ea:cc:8b:96:f1:f9:
9d:c8:73:e6:ab:cc:5b:7a:ef:58:cb:96:3b:29:40:
0f:db:ea:03:36:17:ab:91:d8:15:e0:5a:4c:8b:2d:
63:df:13:bf:a6:03:28:8e:4e:1f:a2:0c:b5:3b:83:
2d:3d:46:dc:25:de:45:62:80:d8:77:af:98:b7:1c:
13:95:16:a3:03:29:38:48:4d:b8:b4:51:0c:76:ef:
cd:db:6e:81:22:3c:36:a3:fd:61:3b:74:d7:31:f6:
97:5c:c6:cf:89:95:a7:f0:4a:e6:c2:d1:f4:a3:0a:
93:79:1e:bc:7a:7a:29:3e:15:cb:54:a1:f9:58:04:
00:40:d3:86:94:20:0c:d9:44:0d:b5:68:49:5a:e5:
09:4f:af:4f:5d:d3:d2:5a:9d:0b:41:bf:e2:2a:01:
c1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4F:03:D3:29:40:93:98:4D:47:9E:03:F2:F0:F0:C7:11:1B:93:E8
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/gU8D0ylAk5hNR54D8vDwxxEbk-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.233.0/24
Signature Algorithm: sha256WithRSAEncryption
85:14:cf:1c:bc:7a:69:22:db:b4:4b:9e:10:c0:3a:5b:77:f9:
fc:31:28:21:e9:19:b1:eb:9a:e4:f8:01:ac:42:a4:7b:3f:8e:
48:ac:8b:9d:13:ed:7e:42:72:03:02:1b:e5:91:e6:df:4c:f5:
84:7d:88:e4:23:a2:1f:c8:17:a6:a1:b2:0c:12:02:8e:9f:85:
da:50:d5:d1:10:64:26:4e:46:f5:3b:28:60:61:52:84:af:26:
07:62:58:36:cf:3d:0e:99:06:3b:87:13:93:a3:9a:07:29:89:
8f:44:20:1e:81:02:0f:e0:b1:27:99:fe:bd:64:a1:22:04:92:
02:fd:bc:18:4a:15:f5:a4:e7:be:d5:42:52:e6:f7:5d:fe:d7:
17:46:b4:c0:7b:b8:f3:ff:19:f1:53:ef:23:94:23:c7:15:be:
18:18:d5:93:b1:c6:f5:2f:c7:ab:dd:c0:b2:56:75:ba:12:ef:
bf:d6:3b:0b:af:fd:a9:4e:ea:4a:dd:04:38:61:99:51:0d:3d:
03:cc:d2:0f:52:18:64:23:51:6e:d6:93:10:35:ea:f5:70:19:
3e:8a:d9:07:90:e6:89:fa:f1:5c:8d:55:48:ad:3e:47:b0:19:
c0:e8:15:5f:e3:96:26:bc:2e:b0:12:63:05:24:22:ef:c3:bb:
0f:ed:da:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:21 2023 by rpki-client on console-ams.rpki-client.org