Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/Axo9ttYPkFz32k-eI_88zcyq6So.roa
File: Axo9ttYPkFz32k-eI_88zcyq6So.roa (raw, json)
Hash identifier: f0vSmbB9qigNUuw1H9iIV3HjUqw2P5O5jB7qdxqWXWk=
Subject key identifier: 03:1A:3D:B6:D6:0F:90:5C:F7:DA:4F:9E:23:FF:3C:CD:CC:AA:E9:2A
Certificate issuer: /CN=c9b232958097b5863eafd047bb315171eaa01fb7
Certificate serial: 390D6330
Authority key identifier: C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/Axo9ttYPkFz32k-eI_88zcyq6So.roa
Signing time: Fri 29 Apr 2022 05:19:04 +0000
ROA not before: Fri 29 Apr 2022 05:19:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42890
IP address blocks: 178.255.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 957178672 (0x390d6330)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b232958097b5863eafd047bb315171eaa01fb7
Validity
Not Before: Apr 29 05:19:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=031a3db6d60f905cf7da4f9e23ff3ccdccaae92a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d0:e8:9c:8c:54:3d:d9:9e:41:c4:88:6e:db:
e4:63:0d:9b:0d:9d:2e:89:bf:f1:c7:39:a0:ec:9c:
65:a8:a0:70:fd:64:24:e0:75:ac:93:5c:3e:89:eb:
f8:f6:a0:34:db:ef:2d:49:a6:88:a0:18:08:a7:cf:
33:4c:73:74:0c:22:fc:b0:ba:fe:c2:5d:39:3b:7c:
68:08:91:f7:71:1e:13:de:f4:01:c3:89:3a:80:47:
55:39:d8:e1:4e:4c:3b:05:58:fa:1b:42:f9:25:c5:
98:c9:b7:2e:cc:ac:45:c9:45:4a:be:90:af:a2:ab:
5f:04:2d:d7:2f:54:46:d8:63:9f:f4:38:ca:10:46:
95:4b:92:45:d2:e6:63:c8:f4:62:1f:92:0a:17:78:
40:74:1d:21:2d:8d:ba:9d:26:9a:ca:41:cc:56:2c:
0f:f1:82:d5:8b:c4:52:4c:44:02:6c:58:30:7c:cd:
dc:1c:8a:e7:38:42:14:c6:eb:c8:d3:73:1b:f7:c4:
ac:ff:e3:58:a6:a2:0e:d5:1a:2d:a3:c5:a1:70:48:
3d:14:a1:88:4b:40:db:6c:c1:be:9b:68:f3:ff:b9:
e0:36:f1:9e:15:79:fd:d2:62:5c:ce:d0:85:cd:f9:
07:05:d1:c9:b5:9a:b8:42:e9:df:75:98:d7:15:b7:
84:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:1A:3D:B6:D6:0F:90:5C:F7:DA:4F:9E:23:FF:3C:CD:CC:AA:E9:2A
X509v3 Authority Key Identifier:
keyid:C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/Axo9ttYPkFz32k-eI_88zcyq6So.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/ybIylYCXtYY-r9BHuzFRceqgH7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.32.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:10:3b:f5:22:69:91:1f:e3:b5:fd:b0:e8:05:dc:be:91:44:
b7:2b:26:09:33:ba:c7:d7:12:57:78:b2:37:fc:e8:09:65:3c:
72:93:2f:44:f0:4d:6e:39:bc:05:73:5e:92:67:db:b7:99:be:
05:63:f1:ff:d1:d4:d5:23:ee:df:2d:f7:e2:66:aa:9a:5c:b0:
3f:f4:8f:31:63:6c:ba:2a:02:54:6b:a1:c5:dd:02:9a:7d:75:
39:50:c9:19:5c:f7:05:62:79:84:26:8d:63:5d:dd:61:7b:dc:
fd:be:2d:f6:a6:b4:48:20:cf:1f:68:c7:e7:c8:b5:d4:e3:1a:
af:7d:e1:be:30:6d:7e:8b:36:10:eb:8e:c4:0e:ed:a1:d6:16:
a7:83:8c:99:80:ed:ee:01:5b:68:7a:89:f6:08:ae:8b:a0:9d:
c1:a7:cf:0f:5c:2c:36:de:1d:94:b9:c4:c0:14:74:43:d9:57:
33:1a:5a:4f:65:f1:c7:56:7b:5c:fe:06:26:79:68:bc:85:ab:
9e:b7:64:23:1d:d6:f3:84:2f:4a:9f:62:a5:ac:74:23:7d:32:
f6:6e:5e:19:09:ce:36:b5:52:a3:d9:63:a2:30:50:d1:07:dd:
5e:be:4c:a9:18:b4:7e:c8:96:25:55:a1:7f:3d:67:56:e5:0c:
bb:0c:38:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:10 2024 by rpki-client on console-ams.rpki-client.org