Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/MmQCigSeNifCqRkTvU1UzluNgG8.roa
File: MmQCigSeNifCqRkTvU1UzluNgG8.roa (raw, json)
Hash identifier: ebYmyoRFXISRrccXkQqN2zTX+BzOjGaL8LE/GsIUinQ=
Subject key identifier: 32:64:02:8A:04:9E:36:27:C2:A9:19:13:BD:4D:54:CE:5B:8D:80:6F
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0184DEE03DB3370B20023B52D8294207CC55
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/MmQCigSeNifCqRkTvU1UzluNgG8.roa
Signing time: Sun 04 Dec 2022 20:42:28 +0000
ROA not before: Sun 04 Dec 2022 20:42:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 178.253.12.0/24 maxlen: 24
178.253.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:de:e0:3d:b3:37:0b:20:02:3b:52:d8:29:42:07:cc:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Dec 4 20:42:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3264028a049e3627c2a91913bd4d54ce5b8d806f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:06:b5:ac:6c:5f:cd:18:7b:52:47:60:9b:11:
3f:ba:6b:c0:b5:a6:90:fe:45:b5:4d:28:11:f2:b9:
dd:be:ca:bc:42:e8:47:0d:63:23:f9:02:88:60:af:
22:e2:58:bc:11:26:75:0c:76:cf:0d:59:7b:51:3d:
da:86:b1:79:b9:a9:41:70:6b:f0:fa:a7:d4:45:8a:
1b:b9:40:9e:88:e4:d0:5f:cd:f5:b5:6f:34:6d:0e:
55:d7:e9:0e:d4:99:a3:74:1a:19:5d:89:d0:97:f2:
86:94:c1:f5:b0:d2:61:ee:8f:3f:5e:9d:65:6f:06:
4b:eb:69:9e:dc:52:0b:5f:7c:21:47:73:8b:0f:83:
ea:39:47:9b:c0:30:ff:d1:11:96:1c:29:a1:1e:49:
8f:ce:82:fb:f6:a6:6b:b7:af:3f:14:7b:17:51:4c:
50:76:4e:e2:ff:d5:f8:59:17:4b:47:a2:ec:91:8f:
49:54:07:07:a9:ac:6c:86:b0:5a:4b:e5:31:66:f6:
c1:69:01:24:6d:76:90:64:2c:3d:c6:17:8f:b2:c2:
89:da:42:1b:9d:b4:13:c1:3a:91:73:e5:b1:ae:08:
9a:ca:b1:dd:f2:8d:d2:44:78:66:72:6e:d7:22:38:
b7:be:60:b7:7c:95:6b:13:f9:7c:d0:1c:15:b6:a1:
1d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:64:02:8A:04:9E:36:27:C2:A9:19:13:BD:4D:54:CE:5B:8D:80:6F
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/MmQCigSeNifCqRkTvU1UzluNgG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.12.0/23
Signature Algorithm: sha256WithRSAEncryption
17:25:c7:fd:3c:35:68:6a:ad:79:6e:f5:58:1e:56:19:94:c2:
e7:1d:99:bb:0d:64:be:07:f4:9f:dd:6f:aa:e5:f2:95:56:92:
d3:df:75:be:f3:5d:bd:6b:c3:80:bb:71:f9:c9:ab:99:1b:e9:
27:60:57:b3:3e:dc:4f:95:a6:2a:ca:c5:59:32:93:ed:40:44:
f4:f6:37:51:47:aa:b3:06:88:46:ea:b5:b4:8f:ab:ff:17:63:
ca:0d:ae:ec:58:33:6b:27:3b:95:f9:ef:52:26:31:f9:cf:d2:
89:b1:53:11:4f:13:e6:ac:27:c8:5d:e0:b1:24:ea:b8:6f:1c:
a8:26:20:0c:c2:8c:11:20:8e:bf:a1:9a:c4:0f:77:7e:d9:99:
f2:a3:f4:3f:26:93:5c:a8:66:16:78:f7:fb:67:e9:c8:7e:56:
8f:eb:26:25:49:17:ce:50:1e:5b:b5:b2:fe:43:c7:9e:b0:08:
08:f9:8a:27:3a:83:89:b9:eb:7a:65:d0:78:da:9f:d0:55:dd:
2d:de:e4:50:a5:8e:f5:b8:00:0f:3b:62:63:2f:32:31:6c:3a:
ff:79:e5:2d:f0:5d:d9:bc:83:ec:21:65:ca:ee:44:ac:f3:ff:
e8:63:92:1f:bb:bc:46:3b:49:ed:2a:b2:bd:72:ba:55:3f:0d:
21:71:2c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org