Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/KuO8zT7_4lygLoMyRC6oUqZK658.roa
File: KuO8zT7_4lygLoMyRC6oUqZK658.roa (raw, json)
Hash identifier: +flLUd+pOuO1ILNJ0J6bV50qbH/nIIPMVV/mvJdx/5M=
Subject key identifier: 2A:E3:BC:CD:3E:FF:E2:5C:A0:2E:83:32:44:2E:A8:52:A6:4A:EB:9F
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 095BDB83
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/KuO8zT7_4lygLoMyRC6oUqZK658.roa
Signing time: Sat 14 May 2022 19:35:41 +0000
ROA not before: Sat 14 May 2022 19:35:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 178.253.32.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157014915 (0x95bdb83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 14 19:35:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ae3bccd3effe25ca02e8332442ea852a64aeb9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:46:94:c8:45:ee:da:28:d6:b2:2c:80:23:01:
98:be:60:3b:ce:47:5b:1c:5c:18:7e:e7:c0:45:47:
cf:66:cd:42:fc:67:77:dd:c9:b6:d1:d4:e6:96:13:
23:78:60:de:ce:1f:44:2f:f8:10:86:33:87:3c:94:
53:f2:de:d7:99:10:81:55:25:1f:c1:ea:df:12:92:
2a:e1:a3:83:6a:1b:81:a0:8f:17:c9:1d:ad:4b:9a:
e5:32:48:16:80:24:e0:48:3a:b6:47:ff:01:f3:29:
81:5e:d7:18:7f:18:e0:f7:76:88:e6:1a:d0:94:4b:
4d:8c:47:e7:51:08:2c:9b:11:27:5e:69:96:6e:8e:
75:7b:d3:dd:36:76:5d:7a:83:d9:71:99:41:9d:f3:
8c:e6:26:41:ae:20:44:90:1e:33:7c:de:8f:0c:06:
0b:c3:b2:62:72:94:f9:73:22:21:39:86:22:1d:4b:
d6:02:03:fc:bb:b8:b8:d0:fc:56:aa:41:1d:d5:6d:
c3:49:a6:42:10:9d:f7:96:84:72:ed:b0:6d:b1:37:
e2:13:eb:7c:1b:0a:e5:d2:55:c4:c6:19:0c:0c:16:
d6:35:29:e4:c9:7b:25:7b:bf:7f:11:62:af:03:6e:
c1:18:b0:d8:2c:b2:d7:b5:f8:f3:40:74:5c:1f:a9:
0d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E3:BC:CD:3E:FF:E2:5C:A0:2E:83:32:44:2E:A8:52:A6:4A:EB:9F
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/KuO8zT7_4lygLoMyRC6oUqZK658.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.32.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:fb:05:76:b9:26:65:df:f6:d3:61:1b:2e:23:57:8b:5d:e9:
fa:25:74:f9:16:b0:04:3b:30:1f:c0:52:be:0a:ab:18:79:b0:
82:32:2c:f7:d6:ea:8d:af:60:7c:23:f5:b3:8b:b9:cd:3c:16:
6f:fb:1e:1b:ef:8b:1f:49:d5:4e:fe:a6:06:63:09:60:90:83:
de:89:27:c2:30:77:5c:6f:74:60:d3:6c:42:3d:23:21:8d:63:
db:a9:1f:c5:ec:87:d9:3a:ed:33:e8:73:92:d6:75:b1:1d:f4:
8c:43:e1:fb:30:a3:7c:af:ec:bd:9c:29:3a:6b:1e:ad:3a:73:
93:b5:f9:5c:e4:aa:f8:4e:7b:dd:a1:31:4b:75:4a:ef:25:44:
35:a9:c6:c5:f1:d5:73:2c:c3:a1:68:aa:8b:dd:41:b7:0c:20:
a1:2e:3c:9c:e1:7b:9a:ec:7e:8b:f6:d5:d3:ca:73:f9:2b:3e:
0a:3a:8a:f6:06:30:9f:cb:9d:13:e0:dd:df:72:1c:46:7a:e7:
24:28:c2:c8:0e:bf:54:93:00:27:55:13:65:9f:e9:b2:c1:f4:
37:3a:4f:56:f3:5a:e8:00:43:f0:c4:43:b0:d6:65:8f:8e:e9:
c3:03:82:ed:39:37:4f:c3:c8:34:b3:1a:34:91:25:7b:c2:f1:
85:fb:33:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org