Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/qUXAOHtuPa0RoZpndwh9zySCZT8.roa
File: qUXAOHtuPa0RoZpndwh9zySCZT8.roa (raw, json)
Hash identifier: qmjAHXMOvrgqPQU0YsvNkEvh5XzRWja4TYpKRTIo+J0=
Subject key identifier: A9:45:C0:38:7B:6E:3D:AD:11:A1:9A:67:77:08:7D:CF:24:82:65:3F
Certificate issuer: /CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Certificate serial: 01DDB166
Authority key identifier: E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/qUXAOHtuPa0RoZpndwh9zySCZT8.roa
Signing time: Sat 01 Jan 2022 06:57:28 +0000
ROA not before: Sat 01 Jan 2022 06:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 178.159.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31306086 (0x1ddb166)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Validity
Not Before: Jan 1 06:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a945c0387b6e3dad11a19a6777087dcf2482653f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:96:d5:63:8f:25:da:dc:e4:dd:1b:73:38:33:
b6:e9:4e:2e:5e:dc:cb:cb:f3:87:16:47:fe:69:43:
ed:6f:6c:f6:96:53:c3:cb:ed:d0:b4:8e:77:c6:d9:
a6:06:51:53:78:79:43:14:16:3e:3c:e0:89:93:da:
f2:06:13:e2:29:3f:f7:83:e5:22:30:93:88:e1:74:
10:44:e6:c3:1a:fe:e6:5a:0e:72:31:b4:9e:c1:91:
aa:4b:cc:3d:16:6f:bf:4e:17:a1:31:38:63:e4:e6:
9f:13:4b:48:a9:77:61:fd:34:98:78:80:7c:6f:45:
f3:3a:ee:bc:3e:04:dd:a9:7c:41:5e:72:34:83:34:
07:d8:70:1b:6e:4c:1a:16:72:f0:65:b4:5c:85:32:
3d:15:c6:e8:b2:85:7e:d4:89:21:a1:ff:0e:cc:8e:
a5:ea:5f:55:ba:b1:a2:f9:36:01:61:e3:c4:fc:49:
5b:4e:3f:4f:4a:47:98:78:ce:55:7d:97:6c:bf:eb:
17:39:e2:c8:8b:11:a3:49:15:c5:3e:8b:75:26:32:
75:d9:41:16:cf:dd:bb:31:f0:ac:32:6e:dd:9d:cb:
ea:e0:ac:28:ea:c3:a1:a3:2b:2b:24:cf:eb:91:a6:
ec:53:31:ad:a1:e8:6f:84:3e:5f:54:70:89:ad:49:
67:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:45:C0:38:7B:6E:3D:AD:11:A1:9A:67:77:08:7D:CF:24:82:65:3F
X509v3 Authority Key Identifier:
keyid:E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/qUXAOHtuPa0RoZpndwh9zySCZT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/4xnQzWVZPZaejUU4KhlKqnPA_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.65.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:fa:f9:c5:fd:f4:83:45:a1:92:80:bd:b4:42:a5:0c:ca:97:
db:67:db:16:8c:c5:88:56:df:08:d3:dc:e0:2e:48:34:58:2f:
34:9b:32:46:32:8c:bb:18:cb:b6:c2:74:93:e6:84:0d:cd:1d:
fb:e3:a2:e0:2e:43:c8:f6:94:89:1d:cc:e9:55:5f:58:9b:aa:
88:77:cb:a1:91:6b:b1:d1:9c:cd:ab:1e:ef:83:4d:64:d5:25:
fc:3c:43:ff:c5:2b:4d:fc:61:90:90:78:ff:00:8f:27:65:23:
99:56:e8:e4:ce:0c:64:26:55:15:f6:90:30:65:3e:bf:69:67:
50:ed:ab:b6:0d:89:83:f1:24:8a:6c:5d:46:e8:f8:27:53:1c:
38:59:2b:29:31:eb:c8:c8:f1:2c:76:9f:48:ff:d8:e0:d3:9f:
d2:bd:5a:c1:b2:c2:07:8e:85:41:cd:ee:55:c3:de:62:31:45:
02:0a:26:a2:6e:a0:1b:5e:ee:08:fa:21:f2:83:a6:7f:5c:68:
ae:a8:1c:5f:49:a6:16:77:e0:51:8a:07:9c:b0:c7:60:c7:73:
14:44:73:6e:42:c6:47:1e:f0:12:53:57:d6:15:be:09:23:6a:
cd:2d:c3:25:f8:64:f8:38:f6:21:fe:cf:28:2d:1b:58:45:2f:
73:3a:4a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:53 2024 by rpki-client on console-fra.rpki-client.org