Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/kV7wIM6KDNK4SgySygjn8sQBYw4.roa
File: kV7wIM6KDNK4SgySygjn8sQBYw4.roa (raw, json)
Hash identifier: 9S17dv35skIjbcTHO1xgZcCX0tx6NeK0pQKJm6PtQ4U=
Subject key identifier: 91:5E:F0:20:CE:8A:0C:D2:B8:4A:0C:92:CA:08:E7:F2:C4:01:63:0E
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0184971B41D00EE89B9A5D908ECE4427ED34
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/kV7wIM6KDNK4SgySygjn8sQBYw4.roa
Signing time: Sun 20 Nov 2022 22:14:16 +0000
ROA not before: Sun 20 Nov 2022 22:14:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212728
IP address blocks: 178.239.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:97:1b:41:d0:0e:e8:9b:9a:5d:90:8e:ce:44:27:ed:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Nov 20 22:14:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=915ef020ce8a0cd2b84a0c92ca08e7f2c401630e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f9:9c:93:64:44:22:1f:cf:60:42:c1:e8:fc:
32:81:ca:93:bd:23:11:8f:5a:f6:fe:6a:37:b0:57:
d8:c0:4f:c0:9d:ba:07:3d:51:c1:25:67:5c:19:94:
9a:3b:8e:b8:65:1d:e9:cb:9d:e7:52:c0:b1:0e:39:
23:95:28:20:0e:30:ed:e8:d8:76:a0:52:e0:3b:f8:
f2:6d:4c:3d:9b:f8:36:c1:60:2d:bd:43:c3:6b:62:
0d:38:ee:cd:a7:65:47:46:0d:62:27:47:b4:ab:b3:
21:1d:7b:25:73:5e:e4:7e:79:cd:b6:b2:29:59:0d:
96:cd:fe:eb:ca:47:31:2f:84:dd:55:a3:ca:89:9a:
ac:7c:9c:b3:d7:fe:71:b1:64:86:7f:69:a7:1d:63:
5b:0d:ff:6c:68:f5:83:b6:52:09:de:39:33:c7:90:
30:2f:5d:06:ba:07:8e:df:6d:6a:5f:12:3f:c3:ac:
f1:9f:1d:cf:a5:4a:52:79:f4:1b:cf:f1:1b:5e:db:
8b:03:03:88:49:49:59:02:bb:14:1c:83:37:c9:a9:
10:8a:46:b4:ad:88:d0:01:2a:46:70:75:93:3d:e9:
a7:52:96:e0:78:f2:bd:00:ae:81:51:c2:61:08:46:
3d:8c:67:3f:9f:33:ba:5f:59:1c:b8:d4:e0:dd:cf:
7c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:5E:F0:20:CE:8A:0C:D2:B8:4A:0C:92:CA:08:E7:F2:C4:01:63:0E
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/kV7wIM6KDNK4SgySygjn8sQBYw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.197.0/24
Signature Algorithm: sha256WithRSAEncryption
21:12:fe:76:a3:3a:6f:f4:ce:ee:af:af:89:98:5b:d5:3a:ee:
34:35:57:e2:3e:ec:23:76:b7:fc:55:39:a9:f9:a9:43:ff:29:
a1:f9:6b:52:81:68:2f:3e:90:c0:1b:26:22:79:b8:cc:b3:7e:
46:97:6a:d3:0a:34:e8:3b:54:27:1b:88:ee:02:73:c3:3c:f1:
17:2d:b4:a6:db:3b:5b:95:87:5e:7f:2a:a3:72:77:cb:97:d2:
48:59:26:45:1b:00:d3:cd:57:d6:a9:53:e2:07:88:fa:c1:11:
31:e2:c2:9a:3b:3c:e4:c7:cd:e0:7e:b6:ca:1a:65:61:a3:bc:
08:a7:35:05:13:ad:74:30:78:98:87:48:6b:25:11:fa:d4:03:
22:0f:1e:ae:f2:d8:39:04:2b:b0:a6:b5:fa:9b:e0:3e:1d:c5:
e0:34:10:67:0b:2c:87:8c:f9:bf:2b:46:a4:be:dd:bb:68:ec:
c9:3d:bf:7b:f1:04:cf:50:81:97:5d:55:e4:d7:10:79:b0:83:
12:75:89:0a:a9:84:98:b8:9e:f0:31:a2:dd:21:75:b7:86:b8:
ab:41:c4:13:cc:4c:93:d6:2b:52:45:0c:86:8c:c4:21:58:8a:
3d:cc:cd:8e:c4:08:32:d3:27:82:f8:29:50:9f:b4:0d:e7:9b:
77:01:41:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:03 2023 by rpki-client on console-fra.rpki-client.org