Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Zmy52lULb_0QIzu1UlmmOAEW4Qg.roa
File: Zmy52lULb_0QIzu1UlmmOAEW4Qg.roa (raw, json)
Hash identifier: D8lSM37VH4l8ljoTu2pYCQT1V0MgHwjtqmjAFGfkHio=
Subject key identifier: 66:6C:B9:DA:55:0B:6F:FD:10:23:3B:B5:52:59:A6:38:01:16:E1:08
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0184894E0AA0085348DFA8FC4C7C8421C583
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Zmy52lULb_0QIzu1UlmmOAEW4Qg.roa
Signing time: Fri 18 Nov 2022 05:55:03 +0000
ROA not before: Fri 18 Nov 2022 05:55:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211193
IP address blocks: 5.178.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:89:4e:0a:a0:08:53:48:df:a8:fc:4c:7c:84:21:c5:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Nov 18 05:55:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=666cb9da550b6ffd10233bb55259a6380116e108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:83:e0:9d:bc:ba:86:21:df:9b:58:e1:05:a5:
66:7d:60:fa:b0:f4:7d:b2:3a:1b:99:63:6c:5b:19:
93:1d:3f:90:23:19:c7:e9:27:a0:b0:35:00:84:d1:
a9:0f:de:f2:2a:5f:55:0e:f0:5a:ca:fc:64:1c:a8:
c6:e8:5c:6e:46:6b:86:e1:d3:49:f0:7d:87:94:d9:
52:03:23:b5:c0:2e:b3:10:19:be:13:11:59:dd:b0:
b7:88:1f:44:bd:db:b0:63:15:bb:45:a0:a8:e4:42:
c8:d0:f8:c8:57:58:73:f7:56:9d:f4:49:be:10:ae:
f1:81:ee:9b:5e:64:4a:1d:95:60:a5:aa:d7:a4:cd:
11:aa:a2:f0:4e:07:d8:f7:b0:33:8d:46:9d:71:b4:
48:61:1e:f6:a2:33:5e:03:e8:ad:d6:4f:bd:76:65:
aa:8e:72:01:4a:4f:27:9a:1c:c8:37:61:dd:75:90:
b1:29:09:f1:62:7c:3c:ff:ec:3b:99:2c:f2:54:28:
c8:c7:f0:20:ad:90:4d:a7:c1:7e:a7:c5:f5:4f:29:
08:92:64:bd:cc:20:ef:5e:80:6b:27:26:13:df:36:
8d:2e:b7:c7:05:24:09:f5:a2:06:76:6e:4c:40:8f:
02:3e:ed:a4:30:8c:ca:3e:6d:47:25:7f:0b:b1:4b:
a6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6C:B9:DA:55:0B:6F:FD:10:23:3B:B5:52:59:A6:38:01:16:E1:08
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Zmy52lULb_0QIzu1UlmmOAEW4Qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.3.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:a7:a0:41:4b:a3:fb:71:a4:02:d0:24:ce:e4:11:bc:b4:3a:
c0:b4:2c:03:e6:d5:e3:52:64:7f:23:b8:cf:d4:f8:79:fb:fb:
63:1b:26:79:6c:b4:f6:fb:03:88:17:64:66:54:3f:78:ab:b4:
b9:35:ea:c8:a3:7f:a5:67:71:47:16:b6:b1:85:4a:7f:8f:e9:
2c:d6:a0:f8:16:c0:fa:f4:45:5c:7b:f0:ff:84:42:ba:fc:76:
91:ab:71:84:46:85:bf:a9:fd:e3:40:0f:08:bf:cb:7c:52:08:
ac:65:8b:67:5e:9b:7e:22:5c:f1:17:45:8a:24:07:21:6e:8d:
f3:11:78:0f:da:f6:95:2f:b7:54:a3:a7:f0:b2:e7:20:e7:c1:
38:15:2e:0b:f6:f8:bc:33:40:5a:ba:00:a3:8d:ca:08:45:e2:
7f:17:2e:38:c2:19:3f:82:74:ff:d3:55:fd:82:5e:a5:d3:57:
9a:02:50:2f:b3:25:47:0e:37:3a:9e:54:34:02:1c:9e:7b:c3:
00:d0:e1:2a:a0:2b:17:dd:c8:43:db:8f:8c:7b:c9:a6:a0:d2:
78:e2:54:a7:09:fa:98:d0:ed:1d:c5:9c:ac:01:31:df:a3:56:
19:fa:cb:68:c2:1e:b7:8e:d8:d0:60:3c:53:9e:90:ed:91:14:
cb:33:93:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org