Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Iu8MKVwzxIgczEfzjCT4dklCKPs.roa
File: Iu8MKVwzxIgczEfzjCT4dklCKPs.roa (raw, json)
Hash identifier: 6dmRtHM5OTZsI6h+dZ0yGsjn0PFaYD+Bbho/qDciZPw=
Subject key identifier: 22:EF:0C:29:5C:33:C4:88:1C:CC:47:F3:8C:24:F8:76:49:42:28:FB
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01843522E4627128DAB1A4A6C676BD8F0CAD
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Iu8MKVwzxIgczEfzjCT4dklCKPs.roa
Signing time: Tue 01 Nov 2022 21:39:49 +0000
ROA not before: Tue 01 Nov 2022 21:39:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 178.253.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:35:22:e4:62:71:28:da:b1:a4:a6:c6:76:bd:8f:0c:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 1 21:39:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22ef0c295c33c4881ccc47f38c24f876494228fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:90:5b:a5:a4:1a:d8:cf:66:a8:37:9d:76:b7:
2c:9a:7a:4a:42:a1:b0:6d:68:f7:9d:2c:49:1d:fd:
39:5a:c1:ca:f9:0d:bb:5b:60:5c:7c:6f:99:2e:66:
15:79:a7:92:00:af:a1:c2:63:3f:3d:d5:5c:48:f8:
72:b4:52:d3:be:73:f3:7d:6e:ba:17:74:0b:c9:b7:
6e:64:26:81:c5:be:d2:29:38:5c:99:ac:bd:35:17:
f2:bd:ff:ff:c8:0d:5a:5e:62:3e:05:8f:b4:cb:59:
f8:c5:fd:b2:fa:ea:a4:4b:e9:ee:c8:88:a8:99:15:
f8:8d:d7:c4:73:10:2b:f0:9f:9d:a2:bc:34:d7:3d:
fd:74:36:74:86:64:91:6a:e5:1a:b4:13:29:94:bb:
cd:14:ec:b3:1c:8f:f9:80:8b:8e:22:f2:23:3f:0c:
67:d2:a5:5e:0b:15:19:df:99:47:45:e1:99:29:90:
83:ce:66:0e:82:4e:5c:f3:3a:5a:f2:7d:e1:05:e0:
0f:f0:b6:29:59:3a:ba:41:20:2b:be:93:da:33:5e:
32:94:07:54:14:a5:2e:b2:81:4b:98:24:e4:4e:75:
ef:81:61:b5:e5:87:0f:1a:ec:1a:cb:2a:0c:b6:7f:
f2:1a:d0:13:e6:0e:31:33:fb:c4:b9:89:88:d9:28:
df:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:EF:0C:29:5C:33:C4:88:1C:CC:47:F3:8C:24:F8:76:49:42:28:FB
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Iu8MKVwzxIgczEfzjCT4dklCKPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.32.0/24
Signature Algorithm: sha256WithRSAEncryption
64:81:d3:80:78:9c:65:3b:ea:e4:12:9d:82:9f:78:38:50:3c:
3f:3e:7a:df:af:ea:1b:7d:59:1e:d1:a4:1d:13:51:15:58:9c:
6d:ab:3d:35:9b:b5:e8:78:f6:df:55:2c:b1:87:62:10:98:a3:
6f:74:59:cb:aa:df:a4:b1:8e:cc:9b:18:21:a0:14:d2:dc:12:
03:49:ba:8e:e4:8d:49:ec:09:1d:64:d1:6f:c1:45:fc:be:0e:
f3:81:e0:26:b3:f2:68:4e:9b:4d:68:fe:f7:5e:a4:fc:a0:32:
f1:4b:bc:fe:a3:8e:02:40:5d:1c:75:db:51:1c:d0:c1:1c:93:
a7:d3:9e:90:2e:d0:0f:3b:5f:2d:d5:65:03:b1:6d:79:16:45:
53:ae:34:09:13:a5:b3:43:29:be:66:30:06:ee:ec:95:a0:55:
5e:c5:4f:ec:e4:80:1f:f5:22:73:fd:53:e3:52:4c:f2:31:ce:
9a:1f:9c:6b:1b:00:bb:7a:a3:54:f8:fe:05:12:45:6b:d5:6c:
d7:74:33:c8:83:9e:3c:92:14:a4:6e:e1:85:36:7b:38:88:f6:
47:2e:9f:f3:d3:24:89:3c:48:7d:2a:87:7d:2f:dd:a2:7c:fc:
a7:21:28:0a:f9:c7:c3:85:19:5d:a8:75:c9:24:ce:9e:95:92:
a4:58:4e:58
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQ1IuRicSjasaSmxna9jwytMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjIxMTAxMjEzOTQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmVmMGMyOTVjMzNjNDg4MWNjYzQ3ZjM4YzI0Zjg3NjQ5NDIyOGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpBbpaQa2M9mqDeddrcsmnpKQqGw
bWj3nSxJHf05WsHK+Q27W2BcfG+ZLmYVeaeSAK+hwmM/PdVcSPhytFLTvnPzfW66
F3QLybduZCaBxb7SKThcmay9NRfyvf//yA1aXmI+BY+0y1n4xf2y+uqkS+nuyIio
mRX4jdfEcxAr8J+dorw01z39dDZ0hmSRauUatBMplLvNFOyzHI/5gIuOIvIjPwxn
0qVeCxUZ35lHReGZKZCDzmYOgk5c8zpa8n3hBeAP8LYpWTq6QSArvpPaM14ylAdU
FKUusoFLmCTkTnXvgWG15YcPGuwayyoMtn/yGtAT5g4xM/vEuYmI2SjflQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCLvDClcM8SIHMxH84wk+HZJQij7MB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvSXU4TUtWd3p4SWdjekVmempDVDRka2xDS1BzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsv0gMA0G
CSqGSIb3DQEBCwUAA4IBAQBkgdOAeJxlO+rkEp2Cn3g4UDw/Pnrfr+obfVke0aQd
E1EVWJxtqz01m7XoePbfVSyxh2IQmKNvdFnLqt+ksY7MmxghoBTS3BIDSbqO5I1J
7AkdZNFvwUX8vg7zgeAms/JoTptNaP73XqT8oDLxS7z+o44CQF0cddtRHNDBHJOn
056QLtAPO18t1WUDsW15FkVTrjQJE6WzQym+ZjAG7uyVoFVexU/s5IAf9SJz/VPj
UkzyMc6aH5xrGwC7eqNU+P4FEkVr1WzXdDPIg548khSkbuGFNns4iPZHLp/z0ySJ
PEh9Kod9L92ifPynISgK+cfDhRldqHXJJM6elZKkWE5Y
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org