Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/i9mN_HA4ra-jvQ0-Ri1dDAAE1l8.roa
File: i9mN_HA4ra-jvQ0-Ri1dDAAE1l8.roa (raw, json)
Hash identifier: PYPaJYkgrWrXSEA/qzR3urG1TMDE85PTJrvK9B5ivpo=
Subject key identifier: 8B:D9:8D:FC:70:38:AD:AF:A3:BD:0D:3E:46:2D:5D:0C:00:04:D6:5F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01850617157A5F9BA6A19983BE9984690806
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/i9mN_HA4ra-jvQ0-Ri1dDAAE1l8.roa
Signing time: Mon 12 Dec 2022 11:27:34 +0000
ROA not before: Mon 12 Dec 2022 11:27:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24866
IP address blocks: 178.176.229.0/24 maxlen: 24
178.176.228.0/24 maxlen: 24
178.176.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:17:15:7a:5f:9b:a6:a1:99:83:be:99:84:69:08:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 11:27:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bd98dfc7038adafa3bd0d3e462d5d0c0004d65f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:57:36:31:ca:8c:32:a2:ee:3a:32:4b:82:a7:
ac:ab:ad:9a:1a:c1:41:ce:4d:62:44:80:08:93:48:
e3:5c:1f:66:39:80:91:75:d0:8c:a3:4b:59:e2:bb:
65:5a:e3:30:0f:5e:a2:c0:ee:5f:d5:e3:13:20:8a:
3b:4a:b6:72:1c:aa:b1:96:07:10:32:f6:9b:35:e0:
85:39:14:d6:7d:9d:d1:8a:ca:82:c3:c0:d6:7c:0b:
c1:34:a1:5f:93:e4:4b:83:94:ce:5e:23:6b:5c:c0:
e0:37:b8:83:57:b9:6f:c2:28:95:f1:7e:e7:cc:16:
d2:d5:b7:2c:59:5a:6f:1e:fc:cb:01:be:38:f2:f3:
eb:a8:4b:2b:53:d7:9e:8a:f4:94:d4:89:de:97:69:
11:74:ee:95:2c:ef:7a:c0:3e:57:7d:49:f0:45:b4:
80:f9:13:7e:87:d7:e0:ae:a7:4e:87:11:42:cb:c9:
17:4c:a2:d4:da:b4:31:81:91:fc:95:5e:33:79:0c:
63:45:ca:5e:3e:09:79:f8:72:fd:d2:82:ec:3e:f2:
b4:0d:cb:b5:2d:29:d1:c8:5d:ec:84:49:38:9a:df:
82:0f:87:90:36:0c:46:f8:0b:c4:b3:8b:73:c6:1b:
0f:05:22:c3:56:19:b0:d6:1d:a9:f8:8a:49:08:b9:
ad:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D9:8D:FC:70:38:AD:AF:A3:BD:0D:3E:46:2D:5D:0C:00:04:D6:5F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/i9mN_HA4ra-jvQ0-Ri1dDAAE1l8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.176.227.0-178.176.229.255
Signature Algorithm: sha256WithRSAEncryption
4a:dc:d2:bf:c0:ac:c0:2b:ec:12:f2:4e:82:20:18:6d:71:9a:
8d:a9:5b:a4:a4:c6:56:38:48:59:7d:07:03:c3:0f:a1:dc:55:
7f:ba:ac:cb:32:68:83:d3:39:c8:87:44:47:6b:2a:93:f9:ff:
36:50:e7:3f:1c:01:fd:15:01:ad:c8:a4:07:8f:11:ae:1a:a3:
66:c2:1b:57:c0:51:5c:87:21:66:f1:b8:0a:34:49:da:6b:42:
8d:9d:a2:b1:29:e9:ee:40:14:de:3e:70:1e:62:b2:03:9d:88:
ea:00:96:61:3a:52:b3:08:af:1a:bb:07:e6:06:0b:ce:c3:aa:
2e:0a:98:e4:a3:5c:9b:76:87:4d:e3:b5:db:33:ee:ab:08:fd:
d8:e5:be:3e:ef:ef:7e:59:5f:e3:f5:72:90:b6:a2:d4:dc:2d:
6e:b6:8b:c9:96:d2:96:e4:5d:1c:da:c3:de:30:74:80:1a:7a:
98:41:c6:92:05:c2:1f:1c:af:b1:b9:4b:22:2e:69:21:93:ff:
45:68:d5:18:b9:6f:ef:6e:08:f9:ac:4a:9c:6c:d3:6b:c0:52:
fa:0a:f9:f9:4f:8d:03:1e:7b:88:94:d3:28:30:6f:ef:ff:44:
26:51:67:0f:87:f8:5c:6c:07:c9:55:d8:fe:8a:53:35:4c:76:
1d:dd:99:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org