Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/pAQBQLsLCYYleoPmVo_0bI5m61A.roa
File: pAQBQLsLCYYleoPmVo_0bI5m61A.roa (raw, json)
Hash identifier: Bb9nhLRcubgy/bLCyb+N+I6fjddZDAQDlZFCpUfbAuY=
Subject key identifier: A4:04:01:40:BB:0B:09:86:25:7A:83:E6:56:8F:F4:6C:8E:66:EB:50
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018483AED6E7568741F9CF263715C5A98B9F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/pAQBQLsLCYYleoPmVo_0bI5m61A.roa
Signing time: Thu 17 Nov 2022 03:43:04 +0000
ROA not before: Thu 17 Nov 2022 03:43:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 178.253.12.0/24 maxlen: 24
178.253.13.0/24 maxlen: 24
178.253.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:83:ae:d6:e7:56:87:41:f9:cf:26:37:15:c5:a9:8b:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 17 03:43:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4040140bb0b0986257a83e6568ff46c8e66eb50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9f:d0:94:98:cb:4c:35:67:2c:6f:c8:5c:c4:
58:e2:2e:3f:92:63:3b:c2:9c:64:5b:fd:bc:af:a3:
21:d2:a6:90:e4:b2:f3:ff:e1:19:82:40:42:ac:37:
ea:71:9f:25:8c:26:ff:0f:e8:5f:3c:91:14:85:0c:
c4:1d:cd:69:48:ff:aa:f2:70:ea:b8:f5:17:7d:0b:
e0:6c:00:4c:7b:88:30:c5:28:a0:6d:9e:bc:90:0a:
50:89:0e:fa:c2:da:f9:f8:ba:9d:b5:1f:60:d5:b6:
64:55:bc:85:6d:c1:e8:60:bd:43:d7:f6:dd:d1:91:
17:ab:31:ad:e5:f9:b3:0e:37:c4:19:c1:a5:e0:24:
82:0a:88:ad:32:1f:d1:b8:fa:e1:d2:46:8d:bf:51:
74:cc:b4:75:5d:3f:13:7d:40:1f:8e:3d:d3:99:b5:
f4:e2:4d:e1:81:f1:08:96:c3:99:4b:63:28:0d:be:
c9:0c:0f:4e:29:cd:13:bb:1c:e0:d9:5f:d6:db:e9:
ec:c2:58:ae:d7:86:86:e6:fd:9d:dd:72:99:f2:9d:
d7:d3:4e:00:af:61:d7:27:d5:df:6c:27:ac:d3:76:
d2:69:19:14:04:ca:28:09:c3:86:31:da:a3:2f:49:
48:b5:e8:5c:c2:0b:ba:0b:07:50:32:9c:ca:c5:cc:
e3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:04:01:40:BB:0B:09:86:25:7A:83:E6:56:8F:F4:6C:8E:66:EB:50
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/pAQBQLsLCYYleoPmVo_0bI5m61A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.12.0/23
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
26:63:9a:fc:7b:dc:e4:5f:24:48:90:6f:33:0e:5d:40:58:f0:
41:1e:83:b4:85:e3:2f:23:7e:cb:c7:8d:ab:96:bc:84:3d:82:
c2:68:bd:1d:fa:97:72:b5:47:8e:b5:4b:b2:14:e1:1e:f4:fb:
c5:1f:ae:59:ba:39:17:26:0a:c7:7c:d3:de:70:3f:b5:20:c6:
5d:bd:dc:2e:bc:b5:83:73:1c:08:00:1a:38:9f:e1:5c:73:5d:
76:a5:64:d8:c0:83:52:9f:ae:3f:93:73:9c:2c:d7:fc:b5:28:
54:b4:97:55:36:9b:a4:c5:fd:21:84:2b:f3:2c:f3:8a:f5:ca:
d8:7e:88:6a:2b:1f:b6:aa:5d:79:36:4f:3d:dd:f9:c1:95:d8:
8d:bc:17:39:eb:9f:54:4d:b9:84:ca:5a:40:53:fe:98:d7:a0:
d1:eb:1c:7d:cb:00:23:75:bf:90:e4:28:e0:f7:c0:7f:d3:cb:
bf:d8:94:0c:52:3b:20:86:e0:fa:8c:b5:c0:1a:19:d1:83:de:
14:03:50:cc:85:a6:f2:0d:20:c4:a2:fd:92:2a:18:cf:3e:be:
df:06:9c:5d:bd:ab:2b:67:65:eb:9d:c2:df:17:81:f3:49:24:
e0:f2:02:c3:c0:a6:a9:fe:dc:4e:c7:49:ab:b6:cb:8d:a8:6b:
fe:f5:84:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org