Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/ETwDdegWM_GsURMtgniDPAVW_2Y.roa
File: ETwDdegWM_GsURMtgniDPAVW_2Y.roa (raw, json)
Hash identifier: PdfVX5hcnXHTo2XU/t0BVQkDxD49j45JIqwyMaRuvTg=
Subject key identifier: 11:3C:03:75:E8:16:33:F1:AC:51:13:2D:82:78:83:3C:05:56:FF:66
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0182C5B08380A8D33BCBAFB4F63833AEA74D
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/ETwDdegWM_GsURMtgniDPAVW_2Y.roa
Signing time: Mon 22 Aug 2022 13:14:15 +0000
ROA not before: Mon 22 Aug 2022 13:14:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 5.178.4.0/24 maxlen: 24
5.178.6.0/24 maxlen: 24
5.178.7.0/24 maxlen: 24
5.178.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:b0:83:80:a8:d3:3b:cb:af:b4:f6:38:33:ae:a7:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Aug 22 13:14:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=113c0375e81633f1ac51132d8278833c0556ff66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:24:0e:7c:e3:0f:82:b8:8d:4d:ca:d0:31:16:
99:75:52:8e:a7:ac:cf:53:cb:cf:18:f9:31:53:7e:
ea:48:84:3f:58:4a:e0:cb:12:b2:06:07:17:87:f1:
0a:db:21:95:d8:3b:ea:ed:ff:0f:d9:0a:72:ca:e4:
cf:cf:97:29:d4:6c:ba:2b:27:65:26:98:ec:3b:de:
34:f7:5c:6a:c8:44:c8:96:27:b7:1c:07:50:47:05:
5f:5f:a5:a4:bc:c1:f2:52:7e:fd:c9:d0:77:c3:e3:
6f:24:80:05:ff:16:be:01:25:cb:d2:f7:d2:22:36:
be:2b:ea:e1:82:8f:9b:e0:f2:4c:6f:b6:6b:1e:47:
94:af:f9:db:4f:8c:12:5d:b5:a7:2d:b2:c8:bb:f4:
0c:ea:11:c8:db:e2:90:7c:bc:8c:be:28:aa:73:58:
e5:23:48:13:71:e2:62:49:13:f5:c1:b8:db:fe:00:
3c:20:80:f9:98:57:fe:49:1a:8e:02:22:f6:12:13:
db:11:4f:3e:7b:45:ba:f8:49:de:46:b6:29:de:cd:
85:d2:25:d5:0a:b2:25:04:f8:97:16:18:5e:89:f3:
8c:47:8b:c3:b4:96:12:29:53:51:14:0e:88:12:62:
a1:b7:f9:fa:6c:7d:ed:cb:ed:b8:75:e9:dc:cf:8e:
c0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3C:03:75:E8:16:33:F1:AC:51:13:2D:82:78:83:3C:05:56:FF:66
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/ETwDdegWM_GsURMtgniDPAVW_2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.4.0/22
Signature Algorithm: sha256WithRSAEncryption
d6:24:38:eb:de:c5:7d:29:35:f6:01:87:2a:ca:7b:57:30:f8:
29:b0:2f:49:b1:ea:ae:59:a2:49:da:3f:06:a4:78:25:0a:80:
ab:37:50:3e:5d:65:78:91:7c:9a:76:74:6d:aa:f1:91:2c:cb:
23:a0:ea:a5:84:03:2d:a7:37:11:75:94:42:c2:62:f4:04:d2:
fb:e9:e6:68:21:cd:d1:db:29:0b:07:80:a3:c1:dc:b9:7c:c2:
cf:d3:3d:5b:19:c6:c1:ea:1c:08:84:91:6c:9d:58:6e:ba:00:
7e:8b:7f:70:1f:ae:a3:ea:99:4d:6a:87:fb:07:2a:b7:5b:fe:
f2:41:03:20:ae:10:a9:48:3a:2c:15:f8:83:fb:73:ed:4d:84:
f5:48:a1:1f:9e:47:17:0b:47:b7:64:4d:91:57:1a:03:99:73:
0f:b9:60:99:64:1b:2d:ca:91:b7:8b:03:e2:85:ef:e3:80:7c:
9f:46:fe:f2:0d:63:8c:15:77:44:6d:08:7e:6b:75:37:c0:e0:
01:1c:13:1b:cf:db:83:44:7c:da:46:02:0c:42:4f:f3:0f:b0:
59:8d:40:30:d3:1d:8a:2e:7f:c1:d8:3b:f9:ec:73:cf:bf:64:
45:35:77:70:a3:fd:5d:2c:26:6f:23:f2:dc:dc:57:3c:42:34:
a3:88:b6:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org