Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/P84IFmA2Sp3JhahUm_K9KeUnog8.roa
File: P84IFmA2Sp3JhahUm_K9KeUnog8.roa (raw, json)
Hash identifier: dQ9t4uU6aH1DmqM1zPxtb1GkIRL24ifzBXQ0VqY0sAg=
Subject key identifier: 3F:CE:08:16:60:36:4A:9D:C9:85:A8:54:9B:F2:BD:29:E5:27:A2:0F
Certificate issuer: /CN=12b9846d8f75d645ff6308ce030087a297e6b359
Certificate serial: 0488FE14
Authority key identifier: 12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/P84IFmA2Sp3JhahUm_K9KeUnog8.roa
Signing time: Sat 01 Jan 2022 15:07:06 +0000
ROA not before: Sat 01 Jan 2022 15:07:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204389
IP address blocks: 178.218.192.0/24 maxlen: 24
185.250.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76086804 (0x488fe14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b9846d8f75d645ff6308ce030087a297e6b359
Validity
Not Before: Jan 1 15:07:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fce081660364a9dc985a8549bf2bd29e527a20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cd:08:fb:d5:52:0a:26:72:ec:c7:ec:4e:e8:
b0:51:89:78:bc:96:5e:fd:a5:f7:c3:ce:ad:2e:0b:
69:85:84:65:4f:57:be:79:24:56:5b:f5:32:7b:b1:
3e:ae:37:75:2e:f6:aa:e8:32:10:36:d6:78:5a:09:
d7:d6:a4:8f:60:bb:c3:f5:c1:c5:4b:61:54:e2:f3:
da:1f:8e:ba:3a:ed:6a:eb:b1:cc:48:32:6f:4a:cf:
a5:5d:64:27:fb:72:ce:34:bd:b9:5d:8e:8e:72:fb:
04:d6:d8:63:05:5c:4a:d3:1d:46:a5:97:2e:14:1b:
00:18:7e:9c:a7:13:7a:b9:51:e4:9b:78:b7:c8:2a:
dc:f6:fd:94:9d:b4:b3:73:74:0c:37:a0:c7:a8:7f:
95:bc:8c:c4:3a:e7:aa:7c:b7:48:06:29:bd:ac:c1:
01:08:ef:7b:b9:6d:4f:ba:0c:cb:fc:1f:27:90:d9:
2a:f5:7c:44:93:a3:7d:92:96:4f:d3:d2:e2:f9:3e:
29:b6:81:78:01:b8:9d:9b:7e:cf:63:8d:da:7e:e0:
83:83:e3:05:37:41:55:c7:bc:46:37:23:49:d8:a7:
2b:40:4b:a5:7e:5c:0d:99:bc:16:f7:cc:06:67:9a:
fb:ab:fc:c4:a4:84:e3:6c:f0:c2:01:89:a9:0d:2a:
80:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:CE:08:16:60:36:4A:9D:C9:85:A8:54:9B:F2:BD:29:E5:27:A2:0F
X509v3 Authority Key Identifier:
keyid:12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/P84IFmA2Sp3JhahUm_K9KeUnog8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.218.192.0/24
185.250.140.0/22
Signature Algorithm: sha256WithRSAEncryption
22:39:d9:1b:7f:4a:70:ee:8f:7f:37:24:41:de:0a:bc:e4:3d:
46:02:31:bb:da:7e:ad:30:1c:2d:da:49:a6:22:fe:ad:73:e4:
e9:81:8e:b0:8d:b9:f7:1e:a7:5f:84:aa:3d:e3:65:a5:8a:e4:
e9:1d:32:d2:2f:1d:e2:b7:fc:ca:f5:8b:51:9f:6b:92:7b:02:
9b:71:40:d0:3b:86:ec:f7:22:26:ae:5c:6f:21:b4:66:73:02:
50:10:12:64:9e:66:c7:27:ec:72:09:ee:79:f7:b0:1e:7e:f2:
95:8b:3d:50:c3:ed:54:bf:96:a9:4a:e1:46:cf:91:1d:ec:a9:
6a:54:1f:7c:34:8d:44:c8:a4:35:5a:4c:de:30:09:d1:ae:33:
21:fa:b1:ea:6f:39:c5:c4:e6:fe:7c:6f:48:38:c7:b8:d3:0b:
29:53:b1:2b:78:b9:17:71:31:86:d7:fc:f3:cc:e8:d7:fa:07:
c6:2b:4a:eb:ee:77:31:05:22:cd:63:52:a1:78:33:c3:a1:09:
a9:a4:77:77:9b:d9:bd:57:a0:2e:ca:dd:72:b4:d7:bb:4a:86:
3a:36:22:de:92:a5:fc:94:e0:de:41:9c:c8:7d:20:2c:8b:82:
31:fd:66:56:cf:73:88:6a:ac:64:9c:a2:59:f6:90:06:d5:23:
58:8d:91:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:46 2024 by rpki-client on console-ams.rpki-client.org