Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/ba6b0b-382e-440f-8db9-35afb5c248b6/1/gYFwFXAK2_0ceMC1BWiZevMouiQ.roa
File: gYFwFXAK2_0ceMC1BWiZevMouiQ.roa (raw, json)
Hash identifier: AolZoJvPmnsWTS9I0T7wBIiIWE2MmObF8oYbjeR5iJw=
Subject key identifier: 81:81:70:15:70:0A:DB:FD:1C:78:C0:B5:05:68:99:7A:F3:28:BA:24
Certificate issuer: /CN=44818ef06efd6e22d471404ab538a4b9c807efe0
Certificate serial: 176E305E
Authority key identifier: 44:81:8E:F0:6E:FD:6E:22:D4:71:40:4A:B5:38:A4:B9:C8:07:EF:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIGO8G79biLUcUBKtTikucgH7-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/ba6b0b-382e-440f-8db9-35afb5c248b6/1/gYFwFXAK2_0ceMC1BWiZevMouiQ.roa
Signing time: Sat 01 Jan 2022 10:03:47 +0000
ROA not before: Sat 01 Jan 2022 10:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12290
IP address blocks: 178.250.72.0/21 maxlen: 21
2a02:1658::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393097310 (0x176e305e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44818ef06efd6e22d471404ab538a4b9c807efe0
Validity
Not Before: Jan 1 10:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81817015700adbfd1c78c0b50568997af328ba24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8d:f1:f0:50:93:b5:bd:2c:76:86:8a:4d:22:
1a:0c:da:43:f2:94:24:f3:e0:53:25:fc:67:7c:5a:
8c:e9:9c:e8:13:2e:26:4e:af:26:f6:00:58:45:49:
0a:b8:80:0f:25:30:d0:a5:5d:af:96:b2:e3:56:50:
e4:ce:ed:66:82:41:13:f1:4c:37:24:c9:ba:06:82:
de:93:be:17:00:ea:ed:3e:4f:96:52:b1:1e:b0:91:
ba:b2:63:8b:c4:da:c0:ca:3e:0d:77:c7:ae:54:4c:
97:e1:43:e9:11:46:03:3a:89:f0:54:d6:c4:9c:8a:
32:c4:40:f8:31:26:e1:c9:4c:42:8f:b3:ce:c5:7a:
fb:97:32:bd:e9:1a:36:8d:18:0c:e6:c9:2a:35:5b:
15:25:58:19:df:a3:ad:2c:9e:7e:4e:e2:cd:ea:a0:
cf:c0:e4:62:db:59:05:0b:a5:5f:53:02:74:ff:19:
66:b7:e9:41:e4:39:7d:ec:71:dd:d0:f4:33:39:ec:
cf:0f:70:a3:8f:12:a6:4e:67:6f:50:e0:52:06:75:
3a:66:8e:a1:4d:b2:59:55:b0:3e:6d:f6:f6:37:2f:
59:7d:9e:d8:bf:f6:c7:f4:4e:5f:1a:1e:49:5e:02:
76:5e:eb:fd:d7:bf:a1:f9:b7:ca:11:a8:14:b6:9f:
31:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:81:70:15:70:0A:DB:FD:1C:78:C0:B5:05:68:99:7A:F3:28:BA:24
X509v3 Authority Key Identifier:
keyid:44:81:8E:F0:6E:FD:6E:22:D4:71:40:4A:B5:38:A4:B9:C8:07:EF:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIGO8G79biLUcUBKtTikucgH7-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/ba6b0b-382e-440f-8db9-35afb5c248b6/1/gYFwFXAK2_0ceMC1BWiZevMouiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/ba6b0b-382e-440f-8db9-35afb5c248b6/1/RIGO8G79biLUcUBKtTikucgH7-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.250.72.0/21
IPv6:
2a02:1658::/32
Signature Algorithm: sha256WithRSAEncryption
22:7b:30:b6:e6:49:1c:1d:37:e8:e7:5e:b2:31:a9:a6:d3:e7:
e6:b8:b1:50:58:9d:48:04:43:4c:9f:8f:4e:2c:50:05:57:2f:
86:02:26:2d:d8:d1:9d:d4:9e:57:36:d9:e8:8d:f6:cf:b6:87:
34:b2:41:5a:00:c1:b9:d6:5b:4a:d4:5d:e7:12:3a:89:d8:41:
70:1f:1d:ff:e5:da:e8:90:6e:1e:2f:af:74:a0:59:34:da:1c:
f3:71:f6:ab:31:16:72:59:89:fb:f5:47:b3:42:70:ea:d7:4a:
e0:66:16:81:8a:72:d0:d7:c8:db:a1:34:c5:b5:16:87:e6:18:
69:0d:6a:01:1e:7e:e0:8c:34:ab:e5:6d:9b:2f:00:ba:4a:25:
fd:d5:22:32:1f:c6:d6:a1:29:ac:44:9d:57:ef:8d:b2:b3:5b:
c9:ce:ed:64:f6:13:63:d3:b4:2e:c7:cb:b9:17:2e:b8:75:d2:
9c:d7:87:3c:ca:8a:a9:ef:e5:36:77:10:0b:4e:73:45:4a:86:
f8:74:52:bd:ab:a6:b6:8e:b9:db:27:fc:f2:58:f1:3e:c1:df:
7f:f6:d0:24:e1:12:92:3b:2f:d3:78:5d:f3:7b:ed:13:29:ae:
62:77:d9:9f:b7:9c:10:51:ae:c9:cd:86:ad:90:99:4a:c4:58:
89:42:09:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:59 2024 by rpki-client on console-fra.rpki-client.org