Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/EY13l0AUkDJF9adXV-yFX_THAbk.roa
File: EY13l0AUkDJF9adXV-yFX_THAbk.roa (raw, json)
Hash identifier: bLaMWwtDGeWuNDasb2kCcPPNXwsDW3DgZCNzmZwKZnI=
Subject key identifier: 11:8D:77:97:40:14:90:32:45:F5:A7:57:57:EC:85:5F:F4:C7:01:B9
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 07F0CEAF
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/EY13l0AUkDJF9adXV-yFX_THAbk.roa
Signing time: Sat 01 Jan 2022 03:02:03 +0000
ROA not before: Sat 01 Jan 2022 03:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20891
IP address blocks: 178.253.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133222063 (0x7f0ceaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 1 03:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=118d77974014903245f5a75757ec855ff4c701b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e0:32:7d:69:e3:40:87:a5:1a:74:e7:6d:ae:
ca:14:d4:9e:74:c3:e2:1d:55:08:6e:dc:b9:5f:73:
90:7b:4b:3c:fb:33:60:16:67:1a:96:43:47:46:77:
77:81:39:f1:47:da:b0:b6:49:a4:7d:a0:11:e0:8c:
68:17:a5:ef:72:29:94:81:e9:ca:c6:2b:3f:0b:00:
a9:52:ec:01:cc:29:7f:61:07:d7:9f:0e:4a:dd:15:
c7:90:21:1f:82:cb:df:97:3c:f8:3c:f8:b5:ce:a3:
2e:2c:4c:6a:b6:94:35:a3:7e:c6:3f:fd:84:bc:1c:
7a:09:18:5d:3b:25:27:25:eb:18:c7:2f:bd:3b:24:
db:14:0a:2e:e2:a8:84:5a:f7:03:0e:c2:85:4e:0d:
55:ee:0f:72:a7:b0:fa:e2:38:47:e8:f3:51:db:28:
f6:bb:58:13:bd:99:0a:84:34:83:fb:82:75:6e:66:
87:d2:64:76:f9:4e:e5:9d:24:02:71:9d:13:95:3f:
fc:66:2d:eb:b3:33:22:3d:e7:73:50:d0:3f:d8:01:
0e:19:ce:74:98:27:8e:2c:7e:14:b5:05:54:51:9e:
92:07:44:a6:f5:d4:af:f8:8d:40:3b:ec:6b:30:bd:
8c:29:98:fe:70:9f:d2:ce:03:94:35:af:dc:0d:20:
06:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8D:77:97:40:14:90:32:45:F5:A7:57:57:EC:85:5F:F4:C7:01:B9
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/EY13l0AUkDJF9adXV-yFX_THAbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.56.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:b8:11:d6:d6:0a:de:e7:a1:14:87:29:3e:66:34:6c:f2:38:
ff:a4:6f:5d:33:4a:16:c5:da:e9:e3:64:83:31:da:02:9c:ee:
56:f5:fa:91:b2:01:e7:83:a5:aa:bc:d6:01:f1:47:24:2f:4a:
1a:05:6a:79:6f:09:18:2b:1e:89:d9:cc:78:4e:d0:ac:15:d5:
e9:e2:4c:83:23:e3:9b:57:65:ad:72:97:6f:12:57:c1:3f:1d:
26:df:92:4f:93:55:9b:b2:0b:af:c4:72:35:71:3f:0d:35:99:
9e:f6:d3:fd:fa:76:31:7e:f9:48:13:13:f1:05:3f:25:20:0e:
e6:9f:f9:ce:57:88:6c:f4:7f:22:b1:06:61:92:26:ed:3d:4f:
15:f4:9e:90:cc:a0:8e:34:4c:86:fd:7a:1a:99:37:c2:36:ad:
64:6c:d8:c2:5a:10:db:13:b3:30:a7:6a:df:9b:fc:4c:2e:aa:
b0:93:96:1c:71:67:de:49:66:65:3a:2c:9b:2b:97:63:11:ad:
4b:23:c1:24:5b:03:d1:c0:05:16:62:1f:b0:ca:4f:b8:6d:47:
68:7c:de:da:c9:7f:7b:23:ab:6f:0d:74:ef:69:6c:68:12:55:
cf:a4:c4:70:c1:f8:ae:8c:1a:51:0a:1f:2f:e0:5d:0f:8e:1d:
0a:f2:8a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org