Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/7cag3TTUnCC4UFGLjE1nWGEdJas.roa
File: 7cag3TTUnCC4UFGLjE1nWGEdJas.roa (raw, json)
Hash identifier: Fyc2mNBPYAjvXvdI+ACPpKzq85HROEIH8d9RecBA9xY=
Subject key identifier: ED:C6:A0:DD:34:D4:9C:20:B8:50:51:8B:8C:4D:67:58:61:1D:25:AB
Certificate issuer: /CN=09f0dcceb74f1185acd97aeeaac25dda5e9b0936
Certificate serial: 01852994CAB27D847237661EDB8D86E1D5EC
Authority key identifier: 09:F0:DC:CE:B7:4F:11:85:AC:D9:7A:EE:AA:C2:5D:DA:5E:9B:09:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CfDczrdPEYWs2XruqsJd2l6bCTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/7cag3TTUnCC4UFGLjE1nWGEdJas.roa
Signing time: Mon 19 Dec 2022 08:51:35 +0000
ROA not before: Mon 19 Dec 2022 08:51:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13301
IP address blocks: 178.248.116.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:94:ca:b2:7d:84:72:37:66:1e:db:8d:86:e1:d5:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09f0dcceb74f1185acd97aeeaac25dda5e9b0936
Validity
Not Before: Dec 19 08:51:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edc6a0dd34d49c20b850518b8c4d6758611d25ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b0:05:22:b2:f9:3e:c8:ce:2d:91:2e:d2:13:
c3:37:17:3c:73:87:b2:66:61:fb:91:7a:2c:a6:84:
90:3a:bc:00:d3:78:cf:60:a8:0a:d9:16:28:d2:15:
a9:f5:a9:d0:ba:01:fb:44:69:63:14:9d:c3:4e:00:
d6:d9:02:90:99:d9:dc:be:f6:04:57:6f:32:f2:9c:
c0:5b:27:89:a8:44:01:5a:19:28:9a:ff:a7:ea:c7:
c5:15:74:1c:9a:01:a0:3d:f8:02:07:39:93:5a:c7:
f9:d5:05:20:6c:79:e2:eb:c5:87:6b:26:8f:e2:27:
61:fb:f2:b0:e6:7d:ac:b0:ba:00:25:b5:1a:4c:73:
58:b2:24:12:fc:13:77:23:a7:eb:66:74:a4:5c:77:
d1:a5:14:dd:52:1c:29:98:08:0c:5c:59:ee:76:fe:
78:7b:81:93:5f:13:6d:e2:ac:62:d8:10:ad:d4:20:
d8:ef:86:74:40:bb:57:2f:a7:25:91:f1:36:87:aa:
65:a2:92:89:eb:c3:78:22:2f:c7:f6:1a:d5:35:3e:
c6:d9:01:d3:09:18:39:f8:eb:61:ce:de:ad:ff:ef:
59:59:be:f0:8a:8b:eb:63:97:f1:c9:c3:2c:f2:fa:
1a:6f:a9:8f:11:75:18:48:0d:21:51:56:6b:01:48:
38:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C6:A0:DD:34:D4:9C:20:B8:50:51:8B:8C:4D:67:58:61:1D:25:AB
X509v3 Authority Key Identifier:
keyid:09:F0:DC:CE:B7:4F:11:85:AC:D9:7A:EE:AA:C2:5D:DA:5E:9B:09:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CfDczrdPEYWs2XruqsJd2l6bCTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/7cag3TTUnCC4UFGLjE1nWGEdJas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/CfDczrdPEYWs2XruqsJd2l6bCTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.116.0/23
Signature Algorithm: sha256WithRSAEncryption
60:92:42:c1:fb:7f:ba:56:22:f9:8c:14:3c:1a:c8:57:99:22:
48:45:12:ab:f7:41:4e:b8:34:34:13:4d:55:fd:4a:c9:f4:be:
8c:7f:8f:7f:bf:9a:03:33:5a:20:d9:36:ff:e9:58:56:4e:4a:
50:1e:2f:29:a3:fa:0b:b3:79:bc:9b:b5:3d:d8:7b:6c:74:10:
08:58:26:1f:f4:37:78:8b:b3:29:89:4d:3e:39:6c:99:a2:41:
58:d7:eb:a7:2f:1c:44:6b:c6:1d:06:da:c7:f5:7e:e3:97:af:
c8:0f:f8:f6:1f:04:1f:e7:8e:29:11:b2:24:86:08:5f:47:ad:
66:9d:62:d8:3d:6f:06:0e:8b:51:66:07:9d:53:e4:f3:16:bc:
df:ca:7d:0a:8a:d1:3a:14:25:7f:6f:9f:06:28:68:59:4b:49:
e8:58:28:04:0d:80:74:d6:a3:65:5c:f6:63:8b:3b:82:34:18:
eb:dc:af:5f:be:b9:d9:57:e2:a5:8f:7d:6b:c4:59:70:64:7c:
92:5d:df:f7:26:12:13:42:2c:28:ed:51:4f:9e:ce:2d:82:b9:
7c:85:2c:8c:f9:3a:bc:57:62:a5:e2:8e:ca:f7:60:e5:19:51:
c1:79:bd:11:66:3a:05:dd:0b:9d:6f:02:ae:73:7c:ea:c9:4f:
0b:18:c0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:17 2023 by rpki-client on console-fra.rpki-client.org