Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/zXc6pFAjj6oiRes_JxzVwzdYfoA.roa
File: zXc6pFAjj6oiRes_JxzVwzdYfoA.roa (raw, json)
Hash identifier: twSL45JhLCx0xleHvDTw573wxQPv1haKY/cWy1lOFtM=
Subject key identifier: CD:77:3A:A4:50:23:8F:AA:22:45:EB:3F:27:1C:D5:C3:37:58:7E:80
Certificate issuer: /CN=a42000c4f4ec4a03cd4d3657e01b70034ec23b97
Certificate serial: 08B2726E
Authority key identifier: A4:20:00:C4:F4:EC:4A:03:CD:4D:36:57:E0:1B:70:03:4E:C2:3B:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCAAxPTsSgPNTTZX4BtwA07CO5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/zXc6pFAjj6oiRes_JxzVwzdYfoA.roa
Signing time: Sat 01 Jan 2022 16:02:06 +0000
ROA not before: Sat 01 Jan 2022 16:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15533
IP address blocks: 178.218.242.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145912430 (0x8b2726e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42000c4f4ec4a03cd4d3657e01b70034ec23b97
Validity
Not Before: Jan 1 16:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd773aa450238faa2245eb3f271cd5c337587e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7c:ea:fe:56:dc:ab:e9:be:f2:38:6d:73:75:
ac:ef:3e:25:c3:24:ab:30:17:c9:9d:7a:99:63:d5:
f4:29:1f:80:c3:78:24:df:53:43:ab:bb:63:55:15:
5f:89:93:cb:0b:ab:87:eb:ff:41:bc:36:cf:f7:26:
e9:93:77:fa:1d:0d:71:5e:e8:98:c3:66:39:44:86:
7b:81:32:60:cd:a0:bf:19:bd:8f:76:d7:b3:e6:59:
66:29:3b:0c:42:50:0b:c2:8c:2c:44:38:95:d9:ae:
5f:03:7a:9c:da:ef:b6:d8:ef:9a:9f:7c:30:b8:43:
a3:a4:8b:4f:b1:e0:22:c4:d5:88:e1:75:71:31:c0:
7c:76:55:82:48:80:28:87:25:35:50:0a:e0:4f:52:
2e:ed:03:e3:f3:c3:b4:0d:f0:9f:d6:d1:4b:80:16:
12:30:f6:76:b2:46:89:d0:98:bd:d5:ac:f2:4c:bb:
66:d4:5a:42:80:57:4a:99:6e:49:0c:c9:66:5b:a1:
31:3e:40:ec:3d:6f:69:50:67:02:bb:db:c4:7b:3e:
fc:ba:ff:d6:91:78:7c:70:9e:6e:e9:10:5f:87:4e:
da:df:93:f2:b9:54:df:43:13:c9:45:a4:9a:33:30:
22:bc:fb:80:7a:ae:3f:c1:85:e7:01:51:65:85:8a:
fa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:77:3A:A4:50:23:8F:AA:22:45:EB:3F:27:1C:D5:C3:37:58:7E:80
X509v3 Authority Key Identifier:
keyid:A4:20:00:C4:F4:EC:4A:03:CD:4D:36:57:E0:1B:70:03:4E:C2:3B:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCAAxPTsSgPNTTZX4BtwA07CO5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/zXc6pFAjj6oiRes_JxzVwzdYfoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/163d77-4fea-4131-becb-0f22d89689a0/1/pCAAxPTsSgPNTTZX4BtwA07CO5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.218.242.0/23
Signature Algorithm: sha256WithRSAEncryption
68:64:b2:f0:5c:3f:f5:ee:77:6e:d9:f5:91:7a:35:fd:5e:61:
5a:f6:87:95:66:37:e9:24:fd:9d:3a:c7:ca:6f:9a:13:c6:de:
e5:bb:25:74:3a:26:bd:57:66:38:b0:17:fb:63:80:a9:71:15:
7d:85:bc:d6:47:94:70:a7:21:b7:47:1a:14:cf:0e:3f:cd:d5:
17:a6:b6:47:6f:3e:39:1f:3b:a3:72:ef:17:c6:c9:31:ef:cc:
f2:40:19:8f:16:7c:e1:2c:1e:96:9c:10:9a:cb:9b:cf:6b:c0:
4a:46:da:a0:23:34:94:0f:39:f3:f9:9d:6a:ae:c1:16:91:da:
d8:99:2c:ba:68:92:40:87:91:35:4a:8e:33:38:4f:27:3b:7d:
07:68:2a:4c:62:0c:68:e8:42:2e:66:e9:bb:a8:6c:ed:ef:29:
c8:bd:92:55:bc:fd:43:f7:54:5b:84:e4:e6:5e:15:cc:3a:f2:
d3:36:65:05:4b:b1:3b:54:fd:5e:65:93:4e:35:82:01:16:e9:
be:5a:d7:8e:d3:4c:2b:ea:4a:b4:b1:6a:1d:2c:98:89:12:44:
6c:0e:c9:df:32:be:86:1c:b7:d4:47:a1:3e:f1:13:cb:bb:78:
18:47:00:a7:4f:98:0d:57:27:df:21:0d:a6:36:39:1e:b2:79:
77:79:31:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:05 2024 by rpki-client on console-fra.rpki-client.org