Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ySqKlPqKMV0GAZcXtVZGDyqsDZE.roa
File: ySqKlPqKMV0GAZcXtVZGDyqsDZE.roa (raw, json)
Hash identifier: 74GTsO35CF7/hjsmNQwVRkySkvGbejY7mGW8m+L/dwo=
Subject key identifier: C9:2A:8A:94:FA:8A:31:5D:06:01:97:17:B5:56:46:0F:2A:AC:0D:91
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 0185061713DA2414F924D0C9219B97EE7816
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ySqKlPqKMV0GAZcXtVZGDyqsDZE.roa
Signing time: Mon 12 Dec 2022 11:27:33 +0000
ROA not before: Mon 12 Dec 2022 11:27:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8263
IP address blocks: 178.176.225.0/24 maxlen: 24
178.176.224.0/24 maxlen: 24
178.176.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:17:13:da:24:14:f9:24:d0:c9:21:9b:97:ee:78:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Dec 12 11:27:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c92a8a94fa8a315d06019717b556460f2aac0d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5d:b1:c0:a5:a4:d2:d4:d8:db:09:59:83:8e:
7d:e1:3f:0c:06:ab:0f:af:fa:ed:90:45:d2:ca:7e:
e2:a8:7d:8f:02:7b:29:fe:af:0a:96:76:be:7d:13:
c2:39:6e:ba:cd:5f:07:77:5f:af:85:fd:23:6c:6e:
0b:8a:1d:59:64:71:dc:af:fe:f5:47:93:11:dc:37:
ac:39:b0:c5:0f:b2:ae:0c:e5:9b:08:28:81:6f:04:
b2:46:f9:16:3b:94:02:1e:bb:e9:71:8d:f9:65:76:
85:43:d8:f4:88:b0:40:4f:9d:28:3f:d3:1b:df:61:
2a:de:cf:51:7a:da:48:03:bc:24:a0:9c:c6:28:09:
f5:7a:8e:30:10:a3:17:33:08:b6:96:7d:0f:62:68:
05:1c:29:46:c7:54:03:d2:7b:9f:f1:ba:f6:00:c9:
4d:30:e8:67:86:66:46:89:c0:41:25:69:41:19:92:
38:b6:9f:56:23:72:3d:1f:58:8d:cd:f6:e2:95:80:
f8:22:d3:d3:05:00:88:c6:4f:af:59:2a:4c:ea:e7:
61:a5:9c:68:ef:99:fc:f5:ab:e1:c6:a5:0b:93:ea:
11:2b:68:77:4b:5b:59:7a:e7:bd:22:50:a7:d6:2a:
bd:23:58:db:f5:22:28:4e:a1:2c:24:36:7d:9b:8e:
67:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2A:8A:94:FA:8A:31:5D:06:01:97:17:B5:56:46:0F:2A:AC:0D:91
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ySqKlPqKMV0GAZcXtVZGDyqsDZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.176.224.0-178.176.226.255
Signature Algorithm: sha256WithRSAEncryption
29:cc:60:5b:da:49:5e:e1:ac:f0:d6:c6:cf:f4:bc:87:fd:75:
5e:ee:c5:08:97:cc:d6:f9:3b:ce:e1:94:6c:03:3b:5e:fb:61:
6f:1e:46:f4:08:02:00:e6:6a:16:ed:6b:f4:4e:1f:f6:43:4b:
ff:cd:40:91:32:b7:b4:43:2e:28:5b:31:93:57:7e:92:cc:fd:
91:4e:63:4b:8f:c2:e5:d0:d9:58:d9:2c:fe:33:7a:b9:b6:b4:
9f:c7:9a:97:17:11:c7:67:06:1e:72:d2:7e:c6:04:63:4b:cd:
63:82:07:f5:ba:7f:95:9f:4e:74:d2:c2:57:d0:81:70:6a:09:
11:be:4d:b7:20:7a:33:4e:0c:fa:30:44:26:1a:28:d4:69:96:
77:47:d6:43:cb:a2:13:dd:19:24:42:ef:e9:5d:fa:d8:a4:93:
25:bb:f6:f3:92:a2:f1:67:1c:5f:4b:ba:b1:24:5a:b8:82:89:
10:e1:93:5e:41:a9:0c:17:22:6a:4a:14:08:f2:23:d6:c2:fc:
3c:64:39:40:4d:e0:9d:c9:1b:f6:72:7f:6f:ce:73:33:fa:d5:
65:e1:2d:c0:d2:a7:5b:03:a6:b7:7d:2b:5f:6a:fa:3b:76:6b:
83:7b:02:4c:c6:82:51:d8:ee:68:5d:c3:52:82:02:ef:55:8d:
de:2d:76:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:12 2025 by rpki-client