Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/04a0f2-9b24-4491-b9ad-30fc6baf85f5/1/8Hplx06XmoXf8OiJO7GyrOUrHd0.roa
File: 8Hplx06XmoXf8OiJO7GyrOUrHd0.roa (raw, json)
Hash identifier: YWCvtNPLLyw6T/7p5VxJN466q7CAONXQKzvl/DOUEj0=
Subject key identifier: F0:7A:65:C7:4E:97:9A:85:DF:F0:E8:89:3B:B1:B2:AC:E5:2B:1D:DD
Certificate issuer: /CN=c13a8d7e3549fadf56b4e83fa49c16b73c9940b5
Certificate serial: 195256BE
Authority key identifier: C1:3A:8D:7E:35:49:FA:DF:56:B4:E8:3F:A4:9C:16:B7:3C:99:40:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wTqNfjVJ-t9WtOg_pJwWtzyZQLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/04a0f2-9b24-4491-b9ad-30fc6baf85f5/1/8Hplx06XmoXf8OiJO7GyrOUrHd0.roa
Signing time: Sat 01 Jan 2022 09:00:32 +0000
ROA not before: Sat 01 Jan 2022 09:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38915
IP address blocks: 178.21.216.0/21 maxlen: 21
193.203.220.0/23 maxlen: 23
2a00:1de0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 424826558 (0x195256be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c13a8d7e3549fadf56b4e83fa49c16b73c9940b5
Validity
Not Before: Jan 1 09:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f07a65c74e979a85dff0e8893bb1b2ace52b1ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9d:b3:83:37:44:f7:ff:89:6d:8a:2e:73:c0:
e6:5b:b9:c6:44:a6:55:77:0d:80:36:b2:8c:eb:87:
c6:9d:12:27:a7:02:b6:f6:34:6f:a5:9f:6b:13:2a:
b9:51:9f:22:fd:d7:c0:6c:93:25:54:48:73:15:64:
18:b1:06:4e:17:ef:b6:80:8b:63:6c:77:24:b0:02:
ea:4d:c6:0f:c4:cf:42:d8:ca:f6:11:1f:a4:6a:c8:
c4:32:90:d5:8d:4e:98:34:32:e0:e9:00:81:6d:4e:
29:ec:61:45:59:8a:5d:12:e4:0e:aa:59:0a:5e:02:
d3:13:3e:90:dc:7c:71:bb:c2:5e:a5:a3:3b:56:35:
0c:39:3b:6d:b7:b5:cf:01:25:38:d6:4b:b8:ce:e6:
cc:cb:12:94:dd:c6:17:44:6a:4f:da:35:ec:f9:f1:
f6:d6:eb:a5:00:65:43:31:9f:e7:d5:d8:6c:a7:7a:
6d:f3:9b:ce:1a:31:b4:43:5c:dd:ff:31:54:5f:af:
95:2a:54:cd:ef:58:09:d5:6c:0d:7b:ec:2c:f5:92:
1c:8e:90:41:bf:87:db:37:b1:a5:d7:13:ad:84:f1:
2c:03:09:5b:d7:69:83:af:f5:96:30:49:77:cf:cb:
a0:ad:86:9d:b2:e9:dc:e7:e2:8c:74:c1:b4:24:52:
e6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7A:65:C7:4E:97:9A:85:DF:F0:E8:89:3B:B1:B2:AC:E5:2B:1D:DD
X509v3 Authority Key Identifier:
keyid:C1:3A:8D:7E:35:49:FA:DF:56:B4:E8:3F:A4:9C:16:B7:3C:99:40:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wTqNfjVJ-t9WtOg_pJwWtzyZQLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/04a0f2-9b24-4491-b9ad-30fc6baf85f5/1/8Hplx06XmoXf8OiJO7GyrOUrHd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/04a0f2-9b24-4491-b9ad-30fc6baf85f5/1/wTqNfjVJ-t9WtOg_pJwWtzyZQLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.21.216.0/21
193.203.220.0/23
IPv6:
2a00:1de0::/32
Signature Algorithm: sha256WithRSAEncryption
82:dc:37:9a:e7:3d:e9:40:86:ef:6f:a2:48:0a:f2:23:3d:3b:
39:84:07:05:b5:13:8b:75:1d:65:88:9a:c2:d9:dd:50:52:8f:
ea:7a:84:ee:2a:f0:e1:6e:06:1e:4d:20:4d:ca:bc:d5:09:38:
fa:0c:08:38:c8:45:cc:33:9c:ae:a8:d1:2d:ac:c3:2f:ad:ff:
09:6c:de:98:c1:25:cf:c9:25:e7:0a:eb:04:a0:30:c7:b0:2f:
d2:87:f4:c6:f3:4f:09:c1:e3:e5:10:67:e9:83:f7:bb:96:85:
c5:9c:af:c6:56:db:60:2a:7b:f7:a2:14:b9:9f:de:58:14:08:
1f:37:2a:a1:d6:3d:5e:da:73:b2:3a:94:29:77:69:35:23:db:
ae:00:a4:4a:24:78:c3:36:c8:1d:41:2e:82:92:c6:39:29:81:
0f:72:9a:4e:4b:9b:0a:2d:de:06:50:cf:d3:1a:12:d8:68:c0:
6d:65:0e:2d:d5:99:3b:5f:18:2b:23:db:8f:50:16:49:9f:4d:
a4:8b:83:e6:3d:d4:78:52:b1:1c:77:f6:5f:4c:4f:0c:ff:a6:
56:32:c4:cf:14:ac:57:9f:6a:1e:ed:ab:a5:1f:e1:a9:fc:07:
4a:53:7e:2f:6e:3c:ab:be:93:ac:d3:49:30:11:c9:10:15:0d:
ad:de:0e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:33 2023 by rpki-client on console-ams.rpki-client.org