Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/2V2fMh_Zh8Y_evwq5zowWgbWpmw.roa
File: 2V2fMh_Zh8Y_evwq5zowWgbWpmw.roa (raw, json)
Hash identifier: x/A5kWGjv1uhZqi3UTroj8EHtznS/K6791FqoqGj1Z8=
Subject key identifier: D9:5D:9F:32:1F:D9:87:C6:3F:7A:FC:2A:E7:3A:30:5A:06:D6:A6:6C
Certificate issuer: /CN=f3b2805d8776eedeb7aa4cbe5af568cdb2629fc2
Certificate serial: F9D24B
Authority key identifier: F3:B2:80:5D:87:76:EE:DE:B7:AA:4C:BE:5A:F5:68:CD:B2:62:9F:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87KAXYd27t63qky-WvVozbJin8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/2V2fMh_Zh8Y_evwq5zowWgbWpmw.roa
Signing time: Thu 27 Jan 2022 19:23:37 +0000
ROA not before: Thu 27 Jan 2022 19:23:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 178.255.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16372299 (0xf9d24b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3b2805d8776eedeb7aa4cbe5af568cdb2629fc2
Validity
Not Before: Jan 27 19:23:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d95d9f321fd987c63f7afc2ae73a305a06d6a66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:94:87:a2:bc:d7:8d:99:5f:62:15:19:5b:1c:
dc:da:46:96:08:ea:66:24:98:e5:b5:e5:63:14:74:
56:96:d6:92:f9:40:a8:b5:ea:63:97:3e:ab:c2:90:
56:fc:5f:ba:2e:00:4b:35:4a:2f:35:f5:3f:da:0d:
35:55:51:a1:7f:71:8a:ff:47:83:92:0b:78:06:30:
e0:1d:f2:64:cf:2f:20:b4:41:4d:4e:aa:c3:06:be:
a3:ca:c8:97:cc:8f:60:c7:38:88:9a:86:65:f3:e0:
49:99:a6:4d:a1:5d:e2:d7:5d:ee:8a:dd:b9:54:61:
ba:7a:15:8a:c7:a9:ee:c8:86:a5:c0:8b:07:b7:79:
5d:0d:f2:19:d3:5b:47:77:e5:e7:8b:19:9c:c1:1c:
eb:f7:e8:e2:53:be:94:90:92:37:17:fb:61:5f:81:
79:4d:3b:a8:ff:af:f3:5e:8d:01:33:7d:1e:ba:58:
13:6a:fd:f5:0b:df:98:7b:b6:64:d2:c2:37:23:12:
99:e9:83:44:8f:2e:15:5c:25:04:09:7c:5f:d5:e5:
08:77:44:7f:cd:b6:30:50:58:96:4c:e7:f1:37:20:
72:ea:0b:05:5d:63:31:8a:a8:18:32:b6:20:16:ce:
16:54:e7:a5:6d:7a:6c:a2:6c:b4:9f:b1:7b:70:e7:
65:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5D:9F:32:1F:D9:87:C6:3F:7A:FC:2A:E7:3A:30:5A:06:D6:A6:6C
X509v3 Authority Key Identifier:
keyid:F3:B2:80:5D:87:76:EE:DE:B7:AA:4C:BE:5A:F5:68:CD:B2:62:9F:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87KAXYd27t63qky-WvVozbJin8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/2V2fMh_Zh8Y_evwq5zowWgbWpmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/87KAXYd27t63qky-WvVozbJin8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.219.0/24
Signature Algorithm: sha256WithRSAEncryption
67:1a:81:63:2f:f8:67:da:31:eb:4a:e0:ae:8e:43:01:64:e0:
a1:3b:dc:f3:04:4e:f6:7a:3d:f3:76:85:91:05:4c:bc:61:7b:
7d:e9:37:03:b0:f7:25:6b:bf:58:ba:16:91:45:4e:ff:50:c4:
4e:06:e1:8f:3b:cd:94:b0:6e:35:a8:f8:bc:07:db:25:de:03:
89:23:83:78:84:5e:f1:d2:ca:f4:50:3f:00:21:ea:02:27:cf:
d6:02:46:53:b4:93:35:2d:fd:7a:fb:6f:75:bf:73:90:01:95:
65:d6:a1:0f:b3:d7:04:88:db:09:41:73:e5:2d:f9:9d:a8:43:
78:0d:df:0b:71:40:67:0d:39:12:4d:63:ad:8a:d4:8b:b9:b6:
cc:63:2c:12:7a:ab:9c:00:92:a8:f3:93:95:a8:1e:09:98:f7:
94:8d:68:d2:47:e3:be:ec:a0:da:f0:e6:4a:a2:a1:7b:03:31:
38:d1:01:56:e6:4a:e4:00:1d:17:f5:6d:b1:ed:23:2c:e1:bd:
4f:b4:49:f0:cd:df:79:c3:e0:60:2b:4f:49:6d:28:c1:c0:b7:
0a:47:22:66:07:12:0a:ae:75:cb:c4:32:d3:97:45:ad:84:75:
20:08:93:42:24:31:be:04:c3:61:6b:d2:74:d7:4f:de:a2:dc:
1b:11:53:9f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAPnSSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
M2IyODA1ZDg3NzZlZWRlYjdhYTRjYmU1YWY1NjhjZGIyNjI5ZmMyMB4XDTIyMDEy
NzE5MjMzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDk1ZDlmMzIxZmQ5
ODdjNjNmN2FmYzJhZTczYTMwNWEwNmQ2YTY2YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJeUh6K8142ZX2IVGVsc3NpGlgjqZiSY5bXlYxR0VpbWkvlA
qLXqY5c+q8KQVvxfui4ASzVKLzX1P9oNNVVRoX9xiv9Hg5ILeAYw4B3yZM8vILRB
TU6qwwa+o8rIl8yPYMc4iJqGZfPgSZmmTaFd4tdd7orduVRhunoVisep7siGpcCL
B7d5XQ3yGdNbR3fl54sZnMEc6/fo4lO+lJCSNxf7YV+BeU07qP+v816NATN9HrpY
E2r99QvfmHu2ZNLCNyMSmemDRI8uFVwlBAl8X9XlCHdEf822MFBYlkzn8TcgcuoL
BV1jMYqoGDK2IBbOFlTnpW16bKJstJ+xe3DnZTUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTZXZ8yH9mHxj96/CrnOjBaBtambDAfBgNVHSMEGDAWgBTzsoBdh3bu3req
TL5a9WjNsmKfwjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzg3S0FYWWQyN3Q2M3FreS1XdlZvemJKaW44SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjQvYjg2MmQzLTY4NDQtNDZmNy1iZDk4LTgzYmM3OTcyNzhlMi8x
LzJWMmZNaF9aaDhZX2V2d3E1em93V2diV3Btdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjQv
Yjg2MmQzLTY4NDQtNDZmNy1iZDk4LTgzYmM3OTcyNzhlMi8xLzg3S0FYWWQyN3Q2
M3FreS1XdlZvemJKaW44SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALL/2zANBgkqhkiG9w0BAQsFAAOC
AQEAZxqBYy/4Z9ox60rgro5DAWTgoTvc8wRO9no983aFkQVMvGF7fek3A7D3JWu/
WLoWkUVO/1DETgbhjzvNlLBuNaj4vAfbJd4DiSODeIRe8dLK9FA/ACHqAifP1gJG
U7STNS39evtvdb9zkAGVZdahD7PXBIjbCUFz5S35nahDeA3fC3FAZw05Ek1jrYrU
i7m2zGMsEnqrnACSqPOTlageCZj3lI1o0kfjvuyg2vDmSqKhewMxONEBVuZK5AAd
F/Vtse0jLOG9T7RJ8M3fecPgYCtPSW0owcC3CkciZgcSCq51y8Qy05dFrYR1IAiT
QiQxvgTDYWvSdNdP3qLcGxFTnw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:28 2023 by rpki-client on console-ams.rpki-client.org