Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3dca4c-29b2-43e9-88ec-98b9d07db797/1/VMUq7WUA3RHUVlJPw-cVIv1otss.roa
File: VMUq7WUA3RHUVlJPw-cVIv1otss.roa (raw, json)
Hash identifier: 1s8zxVmz4VOFZcijrbMJXtKTCwDJkTVR+fjPt0nIlp4=
Subject key identifier: 54:C5:2A:ED:65:00:DD:11:D4:56:52:4F:C3:E7:15:22:FD:68:B6:CB
Certificate issuer: /CN=da36405d6df5fd4c71c98e1a45b1f16f34b4314c
Certificate serial: 0196E8
Authority key identifier: DA:36:40:5D:6D:F5:FD:4C:71:C9:8E:1A:45:B1:F1:6F:34:B4:31:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jZAXW31_UxxyY4aRbHxbzS0MUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3dca4c-29b2-43e9-88ec-98b9d07db797/1/VMUq7WUA3RHUVlJPw-cVIv1otss.roa
Signing time: Tue 08 Feb 2022 02:19:19 +0000
ROA not before: Tue 08 Feb 2022 02:19:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 178.211.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104168 (0x196e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da36405d6df5fd4c71c98e1a45b1f16f34b4314c
Validity
Not Before: Feb 8 02:19:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54c52aed6500dd11d456524fc3e71522fd68b6cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:18:40:22:99:6e:59:97:cf:4a:e8:22:61:
f5:a3:52:39:b8:56:b5:af:9b:90:9f:d7:73:91:e0:
ed:94:e4:c6:b7:b2:93:de:d7:c2:58:14:77:1c:2d:
b8:f8:5d:6e:34:bb:8d:eb:77:04:e5:e3:94:40:35:
03:39:ef:d7:89:f1:7b:d0:dc:f7:20:13:9e:66:dc:
90:02:7f:43:a0:48:ec:d2:78:0b:a8:25:af:d6:6b:
58:c7:d5:c9:ee:90:6b:e1:f1:f2:d7:c0:57:ac:af:
3f:bb:f2:14:e0:fe:aa:30:35:77:e3:72:73:17:d7:
c2:ea:9e:9b:3c:a7:00:06:aa:3f:e9:60:11:c6:0a:
df:46:46:03:67:2d:33:ee:9b:c1:4f:c1:de:95:c8:
aa:5d:86:e2:32:32:5d:39:df:b9:3c:bb:f0:fb:4b:
13:05:33:12:47:93:1a:84:18:a0:ac:00:ca:f0:af:
42:9c:a6:d8:f1:15:67:90:61:35:67:71:f5:ea:66:
43:f4:2b:d2:94:8c:2d:ff:32:4a:a0:d7:31:eb:62:
13:0a:4c:e5:2a:a8:26:5c:1b:2a:3c:12:a0:54:da:
78:a6:98:35:91:42:99:92:cd:08:31:2d:6b:dc:d8:
bc:6e:05:09:5b:8b:d7:93:2b:ff:b1:3c:4a:da:c6:
9f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C5:2A:ED:65:00:DD:11:D4:56:52:4F:C3:E7:15:22:FD:68:B6:CB
X509v3 Authority Key Identifier:
keyid:DA:36:40:5D:6D:F5:FD:4C:71:C9:8E:1A:45:B1:F1:6F:34:B4:31:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jZAXW31_UxxyY4aRbHxbzS0MUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3dca4c-29b2-43e9-88ec-98b9d07db797/1/VMUq7WUA3RHUVlJPw-cVIv1otss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3dca4c-29b2-43e9-88ec-98b9d07db797/1/2jZAXW31_UxxyY4aRbHxbzS0MUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.130.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e7:81:c1:05:f8:f4:50:cd:c3:2e:d6:31:4b:43:fc:2a:c3:
1d:e8:5e:cc:96:4b:59:95:fe:9d:b3:da:e4:ee:0c:7b:e8:1a:
ba:31:bf:b0:d3:0b:71:ea:99:f8:87:e4:84:fb:38:13:45:24:
da:37:87:de:bc:ce:0e:1f:99:1a:30:25:de:06:a1:c8:0e:98:
2c:84:83:a6:36:3c:9b:3c:cc:44:ad:bd:49:ae:d0:d4:29:b7:
aa:6d:dd:c4:5f:81:ba:50:67:1f:a2:64:7c:51:2f:96:27:be:
6f:67:39:33:13:a6:5c:1d:a2:3f:e1:ed:8f:3c:f3:c6:fd:4b:
e4:17:e8:71:6e:19:43:7e:67:d9:1c:02:b7:13:28:d5:88:3b:
e3:cc:cf:20:65:fc:24:33:8d:e4:1a:22:54:4f:08:e4:a0:c1:
f2:e7:61:72:90:d1:01:15:f4:67:8c:ea:a9:86:a2:c7:20:82:
54:a5:02:75:39:02:ec:eb:f3:b2:1d:b5:d5:d7:3e:32:f7:a2:
68:7b:30:3b:a9:47:d2:f9:44:40:3c:7d:2e:af:29:e3:47:bf:
37:3b:58:0d:67:9e:ea:76:23:11:2d:bc:55:7f:b3:fd:a2:22:
62:1b:0a:f5:a6:2b:0d:d9:16:ab:90:b1:39:1a:37:40:2d:70:
f4:36:85:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:33 2023 by rpki-client on console-fra.rpki-client.org