Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/ca7c6f-aaca-4fdc-bf23-9783421e51ba/1/JCxFDlc1chMNL0EVsYrkA__3xhk.roa
File: JCxFDlc1chMNL0EVsYrkA__3xhk.roa (raw, json)
Hash identifier: IEfJq3zALfvfEBmt7T9lGojatTl/LYQShwukc0lRAsU=
Subject key identifier: 24:2C:45:0E:57:35:72:13:0D:2F:41:15:B1:8A:E4:03:FF:F7:C6:19
Certificate issuer: /CN=8e14557e1f9b84c94802453f4ec199acf855b3a4
Certificate serial: 0195EA89
Authority key identifier: 8E:14:55:7E:1F:9B:84:C9:48:02:45:3F:4E:C1:99:AC:F8:55:B3:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhRVfh-bhMlIAkU_TsGZrPhVs6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/ca7c6f-aaca-4fdc-bf23-9783421e51ba/1/JCxFDlc1chMNL0EVsYrkA__3xhk.roa
Signing time: Sun 13 Mar 2022 14:43:11 +0000
ROA not before: Sun 13 Mar 2022 14:43:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 178.212.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26602121 (0x195ea89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e14557e1f9b84c94802453f4ec199acf855b3a4
Validity
Not Before: Mar 13 14:43:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=242c450e573572130d2f4115b18ae403fff7c619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:49:4d:30:e3:00:45:eb:7d:98:43:39:1e:e8:
aa:e3:b6:db:d1:40:7f:31:1a:6c:d1:b3:21:a5:e2:
6e:ae:5c:73:36:59:98:4b:08:ac:f1:d2:ab:b0:49:
c8:37:91:d6:8a:86:9c:4f:fb:6a:30:37:15:f9:12:
db:13:08:aa:b9:58:30:9f:8d:9e:d9:07:39:82:ef:
d0:87:54:62:14:a9:0c:64:40:b5:f6:8a:29:3a:ce:
51:6a:86:08:8b:9c:9e:31:bf:a5:62:16:e5:58:de:
b5:8e:a7:be:b4:b3:13:85:d6:a0:e7:bf:0d:cc:03:
54:af:ab:76:a6:21:df:68:59:ee:1c:08:b0:f3:09:
73:c3:5d:99:c2:49:06:7c:25:20:c9:72:26:7c:28:
00:28:b7:d4:7f:3d:c6:71:10:3f:d6:4c:50:3a:9d:
56:3f:b2:c5:b4:33:c1:f8:13:e7:2e:f5:cc:91:ed:
4c:1b:f1:6b:f2:e9:f1:d0:03:67:4c:f9:8b:01:a7:
f7:33:35:01:e6:64:9d:8c:13:4c:39:95:5b:e8:1c:
d3:5d:91:bd:9c:72:99:67:01:25:e9:da:99:87:ac:
31:b4:30:78:7e:ae:89:90:6c:0c:35:3b:cb:7c:c6:
a7:d7:51:45:c1:b3:d2:51:f4:29:c2:8b:28:ef:77:
8e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:2C:45:0E:57:35:72:13:0D:2F:41:15:B1:8A:E4:03:FF:F7:C6:19
X509v3 Authority Key Identifier:
keyid:8E:14:55:7E:1F:9B:84:C9:48:02:45:3F:4E:C1:99:AC:F8:55:B3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhRVfh-bhMlIAkU_TsGZrPhVs6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ca7c6f-aaca-4fdc-bf23-9783421e51ba/1/JCxFDlc1chMNL0EVsYrkA__3xhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/ca7c6f-aaca-4fdc-bf23-9783421e51ba/1/jhRVfh-bhMlIAkU_TsGZrPhVs6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.76.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:d6:34:c0:eb:08:63:fa:fa:92:a0:73:a3:55:b3:85:91:c2:
5b:77:e3:cf:ad:e9:34:43:1d:32:00:66:c8:25:90:24:82:29:
e8:cf:c7:a7:e0:c1:d4:cf:2c:df:e8:f1:a2:85:3d:4c:3c:3d:
0c:0c:62:63:e9:56:d2:84:61:92:bd:ac:5e:e1:81:97:c3:9a:
8b:31:f0:d0:5e:d3:3c:6a:f4:60:6a:01:00:16:b7:2c:ce:e9:
89:c8:c6:0d:b5:53:1e:b0:e5:6c:d0:ed:b0:f7:33:ca:c6:1a:
65:0e:29:8b:de:6a:d7:2f:b9:f0:50:1b:36:13:2a:24:62:3a:
9b:a9:08:ff:c5:c8:ba:c8:b2:68:a4:e1:8a:ad:51:1b:49:42:
41:6f:22:09:ed:0a:11:dc:64:9a:e9:98:d5:08:f8:44:b6:4e:
95:b0:42:f1:84:25:3f:f4:17:fc:1c:6d:bf:ad:d9:c6:62:8d:
63:a6:d1:b3:2b:43:76:93:b5:4a:1b:1b:18:25:9d:fc:6a:b0:
36:31:da:75:e9:89:c6:b7:79:21:e2:f5:29:a0:a9:57:53:3d:
5e:bd:e5:43:87:98:4d:18:2a:fe:3d:af:61:45:aa:8a:1f:c2:
e5:ad:12:40:b7:1b:4f:42:5b:95:4b:2b:11:6c:7c:a5:3f:c2:
4c:7e:e2:c3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAZXqiTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTE0NTU3ZTFmOWI4NGM5NDgwMjQ1M2Y0ZWMxOTlhY2Y4NTViM2E0MB4XDTIyMDMx
MzE0NDMxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjQyYzQ1MGU1NzM1
NzIxMzBkMmY0MTE1YjE4YWU0MDNmZmY3YzYxOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAORJTTDjAEXrfZhDOR7oquO229FAfzEabNGzIaXibq5cczZZ
mEsIrPHSq7BJyDeR1oqGnE/7ajA3FfkS2xMIqrlYMJ+NntkHOYLv0IdUYhSpDGRA
tfaKKTrOUWqGCIucnjG/pWIW5VjetY6nvrSzE4XWoOe/DcwDVK+rdqYh32hZ7hwI
sPMJc8NdmcJJBnwlIMlyJnwoACi31H89xnEQP9ZMUDqdVj+yxbQzwfgT5y71zJHt
TBvxa/Lp8dADZ0z5iwGn9zM1AeZknYwTTDmVW+gc012RvZxymWcBJenamYesMbQw
eH6uiZBsDDU7y3zGp9dRRcGz0lH0KcKLKO93jkUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQkLEUOVzVyEw0vQRWxiuQD//fGGTAfBgNVHSMEGDAWgBSOFFV+H5uEyUgC
RT9OwZms+FWzpDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2poUlZmaC1iaE1sSUFrVV9Uc0daclBoVnM2US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTQvY2E3YzZmLWFhY2EtNGZkYy1iZjIzLTk3ODM0MjFlNTFiYS8x
L0pDeEZEbGMxY2hNTkwwRVZzWXJrQV9fM3hoay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTQv
Y2E3YzZmLWFhY2EtNGZkYy1iZjIzLTk3ODM0MjFlNTFiYS8xL2poUlZmaC1iaE1s
SUFrVV9Uc0daclBoVnM2US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALLUTDANBgkqhkiG9w0BAQsFAAOC
AQEAK9Y0wOsIY/r6kqBzo1WzhZHCW3fjz63pNEMdMgBmyCWQJIIp6M/Hp+DB1M8s
3+jxooU9TDw9DAxiY+lW0oRhkr2sXuGBl8OaizHw0F7TPGr0YGoBABa3LM7picjG
DbVTHrDlbNDtsPczysYaZQ4pi95q1y+58FAbNhMqJGI6m6kI/8XIusiyaKThiq1R
G0lCQW8iCe0KEdxkmumY1Qj4RLZOlbBC8YQlP/QX/Bxtv63ZxmKNY6bRsytDdpO1
ShsbGCWd/GqwNjHademJxrd5IeL1KaCpV1M9Xr3lQ4eYTRgq/j2vYUWqih/C5a0S
QLcbT0JblUsrEWx8pT/CTH7iww==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:30 2023 by rpki-client on console-fra.rpki-client.org