Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/3HX_pEKADA-2BHnAvU8d7B3yRQg.roa
File: 3HX_pEKADA-2BHnAvU8d7B3yRQg.roa (raw, json)
Hash identifier: njCqpE9jQaqXcd49TfN0scY/6S+cyIrYoTLyXuDRGNU=
Subject key identifier: DC:75:FF:A4:42:80:0C:0F:B6:04:79:C0:BD:4F:1D:EC:1D:F2:45:08
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185055CB8FE26EEA53722AA251A5715F5C0
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/3HX_pEKADA-2BHnAvU8d7B3yRQg.roa
Signing time: Mon 12 Dec 2022 08:04:00 +0000
ROA not before: Mon 12 Dec 2022 08:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 178.253.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:5c:b8:fe:26:ee:a5:37:22:aa:25:1a:57:15:f5:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Dec 12 08:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc75ffa442800c0fb60479c0bd4f1dec1df24508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:aa:f7:8b:01:f5:91:cb:8b:94:0e:2d:71:4d:
8e:96:e1:81:66:86:4c:8e:08:c9:53:95:35:33:f5:
ed:56:2c:1e:9d:74:3e:a8:00:9d:ec:bd:28:9e:ed:
7c:e4:ed:18:98:22:9b:70:f5:57:23:a2:f0:33:ff:
86:50:33:28:6c:c6:f8:94:9d:a5:bd:f4:42:23:02:
ed:31:84:42:96:93:52:e5:95:8c:2e:20:2b:2d:6d:
a9:25:12:77:30:92:af:8d:0d:4f:fd:ae:ab:51:06:
2c:c0:76:5f:59:f2:b0:6e:bb:a2:5e:b9:fe:d0:87:
b1:b4:19:48:61:43:95:e7:1c:d9:75:60:2f:70:b4:
30:f8:10:f5:96:e8:92:ae:14:6e:7d:65:c5:3e:f4:
d4:9d:f2:0f:4d:87:77:17:b0:ed:87:b0:b6:95:d2:
25:f1:4b:55:50:35:12:b3:1d:21:79:2f:08:00:4d:
d4:99:f3:ce:bb:b0:29:e3:85:67:0f:be:29:10:1e:
58:30:6a:f9:b7:5c:1a:f9:3e:f7:e2:d8:cb:f0:72:
da:12:d6:39:3d:b0:26:a7:2b:a0:68:5c:f0:71:c1:
dd:0b:fa:f1:49:6f:27:5e:bc:aa:56:98:38:a7:cf:
7f:27:9e:25:92:f4:fa:1e:d7:12:94:58:28:8c:62:
58:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:75:FF:A4:42:80:0C:0F:B6:04:79:C0:BD:4F:1D:EC:1D:F2:45:08
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/3HX_pEKADA-2BHnAvU8d7B3yRQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
70:ed:f8:74:a0:2c:e8:2b:91:f7:99:9f:e7:68:d3:dc:29:4e:
60:70:cf:56:4a:c2:ee:b8:cc:47:d0:59:83:d8:24:9a:d2:ec:
1f:c5:af:76:f4:62:9e:1c:49:fc:89:6e:6f:fe:d5:48:95:1c:
1d:16:d4:4e:56:11:bc:30:eb:f4:b7:3a:d0:57:e2:7d:65:7e:
7c:f2:d3:1f:94:79:68:b3:86:c9:b4:e3:ff:d0:de:00:e5:19:
c2:74:21:65:30:d1:49:af:f4:36:10:a9:df:df:8a:6e:1e:53:
98:2d:05:2e:e2:a6:83:d4:1f:a3:0c:eb:96:78:b4:d3:58:a2:
2d:1c:93:f8:bf:0a:83:c4:c7:d7:df:87:f1:8c:d4:92:88:91:
63:2b:83:2f:14:51:e3:cb:ef:08:03:7b:de:51:24:76:71:b8:
ec:52:9c:ea:24:8e:66:3d:44:37:f0:90:46:fd:bd:7a:e9:08:
4f:b9:3e:56:77:02:5b:df:13:3e:3b:79:b7:6d:3d:33:36:62:
16:d9:21:9a:23:1e:34:18:45:88:68:c0:68:52:f3:fa:36:d0:
e8:8c:5c:a5:42:e1:fe:8a:a7:4b:d0:35:c2:9f:94:54:3c:a2:
e4:6e:00:98:67:6c:7b:ce:02:4d:24:5a:e2:9d:b8:53:cb:5a:
b8:c2:87:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org