Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/zIu9EWFObVSTGb6kc0aZipfDVqI.roa
File: zIu9EWFObVSTGb6kc0aZipfDVqI.roa (raw, json)
Hash identifier: XxaaGBqlbrDfvPBiWYnrrMdw/iyAYo5TD6FpOklMq5o=
Subject key identifier: CC:8B:BD:11:61:4E:6D:54:93:19:BE:A4:73:46:99:8A:97:C3:56:A2
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01838FD7322441E144523BA9A4598176C8DB
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/zIu9EWFObVSTGb6kc0aZipfDVqI.roa
Signing time: Fri 30 Sep 2022 19:19:48 +0000
ROA not before: Fri 30 Sep 2022 19:19:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35608
IP address blocks: 217.78.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8f:d7:32:24:41:e1:44:52:3b:a9:a4:59:81:76:c8:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Sep 30 19:19:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc8bbd11614e6d549319bea47346998a97c356a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5f:bc:bc:bc:2f:ff:fc:a2:4e:98:c5:20:20:
69:e0:e7:38:13:c2:5b:71:91:9e:f9:a7:ba:c6:38:
22:e6:3f:60:f4:f3:d7:3e:85:75:6b:42:ca:c5:34:
72:38:96:1e:85:3b:c2:ff:6b:12:de:b9:73:40:84:
91:34:82:cb:f6:16:12:a7:54:79:ff:12:cd:58:0b:
d1:30:26:77:de:7d:b9:39:1c:3e:69:a9:f3:e5:6f:
ea:13:41:e3:81:fa:b3:06:98:49:94:fd:20:f4:06:
5a:a4:53:9f:8d:40:d1:c8:cd:e0:46:db:94:67:2c:
fa:ad:7b:54:1f:af:74:4a:38:7a:57:44:6f:e3:e5:
7c:d8:40:a2:b7:fe:b6:03:ad:83:58:ee:a3:d4:43:
94:74:89:1b:3c:91:1d:3a:28:93:65:42:67:cd:89:
c7:81:bc:73:e1:4d:c8:66:29:d6:b3:24:3b:87:f1:
d9:7d:b0:7a:b7:b9:b4:41:ba:ee:08:e8:66:a8:2c:
63:38:84:2f:46:1b:ad:0a:77:dc:13:4d:28:c0:46:
e8:af:13:a0:13:9a:ec:23:2a:44:bc:86:9f:c4:eb:
7a:b8:1b:24:79:68:82:66:59:60:5c:21:cc:94:5a:
59:59:41:2f:3c:a9:b4:f9:a4:f1:62:5f:a5:8b:2a:
7c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8B:BD:11:61:4E:6D:54:93:19:BE:A4:73:46:99:8A:97:C3:56:A2
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/zIu9EWFObVSTGb6kc0aZipfDVqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.78.237.0/24
Signature Algorithm: sha256WithRSAEncryption
40:76:e7:fb:2c:2f:ce:b4:fe:40:3f:fe:98:56:d4:4b:7d:91:
a3:50:8e:68:d4:63:31:5e:d4:82:33:57:08:7c:c8:00:36:a6:
8c:98:1a:39:ff:d4:df:62:0f:fb:41:a5:56:3e:6f:31:24:b9:
a7:ec:d2:7f:3b:cc:94:04:c5:eb:1e:1f:ac:ff:9c:66:af:ab:
2c:ea:56:6b:d4:0c:b1:c3:0e:8f:5d:e2:b7:d5:b9:f2:23:d4:
29:1d:3c:b5:5b:0b:8f:61:81:bf:eb:7b:03:06:6b:c1:fb:e6:
04:d7:cb:dc:75:f3:56:f5:80:80:03:a5:09:80:04:2b:4e:29:
90:d7:1d:c2:c5:b9:c9:95:50:51:9f:a8:0b:a3:36:4f:10:b3:
d2:d0:d3:3d:dd:b6:6c:eb:d7:4d:a9:49:24:0b:59:77:7f:89:
0b:62:c8:20:bd:c2:70:55:b4:6e:96:07:41:f0:d2:3c:cc:42:
a8:23:8e:88:53:38:d7:f1:67:fc:38:e0:27:8a:a8:9f:46:2a:
39:bb:aa:ed:e4:be:b2:d4:20:de:73:96:59:84:60:03:fb:95:
a2:86:f1:8f:f2:0e:74:dd:3c:02:5f:99:ae:22:ce:7a:53:19:
14:20:b8:41:3b:5d:a5:c7:33:fd:9f:36:25:b6:42:c3:e9:7b:
d0:92:3b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:01 2023 by rpki-client on console-ams.rpki-client.org