Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/049a12-fe9b-4c32-b63c-ef4674562566/1/L_fZw_gWrhbeV_EgpbyKkmTA2xM.roa
File: L_fZw_gWrhbeV_EgpbyKkmTA2xM.roa (raw, json)
Hash identifier: hiJu6zTNn6VZn3YSB5ZoQ/1oQqmCuoB6itseUMS3Vb0=
Subject key identifier: 2F:F7:D9:C3:F8:16:AE:16:DE:57:F1:20:A5:BC:8A:92:64:C0:DB:13
Certificate issuer: /CN=a91f1e577ca1dbb8e05c0f56a6f678b1ea40d8ce
Certificate serial: 0109A3BD
Authority key identifier: A9:1F:1E:57:7C:A1:DB:B8:E0:5C:0F:56:A6:F6:78:B1:EA:40:D8:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qR8eV3yh27jgXA9WpvZ4sepA2M4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/049a12-fe9b-4c32-b63c-ef4674562566/1/L_fZw_gWrhbeV_EgpbyKkmTA2xM.roa
Signing time: Sat 01 Jan 2022 08:00:36 +0000
ROA not before: Sat 01 Jan 2022 08:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 178.212.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17408957 (0x109a3bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a91f1e577ca1dbb8e05c0f56a6f678b1ea40d8ce
Validity
Not Before: Jan 1 08:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ff7d9c3f816ae16de57f120a5bc8a9264c0db13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:91:5a:64:ac:2f:75:27:7b:df:3c:96:f0:af:
de:ea:17:8b:b4:94:30:ec:c0:78:08:f5:cd:5d:c3:
16:2a:c9:18:d5:fb:db:84:a5:9e:3f:af:11:d6:6f:
87:bc:ba:60:75:53:6e:37:a5:0e:04:c8:51:09:8b:
c1:c5:a8:e6:f4:e2:9b:c6:27:7a:49:7a:fb:1b:1b:
44:1f:3b:75:e3:22:b6:69:b6:26:56:1f:a9:f8:43:
9e:23:1d:b7:a7:2b:04:a0:a1:8c:b0:20:ae:6a:5d:
7d:e2:d2:59:c8:02:18:ad:51:ed:8a:ca:1c:b3:ce:
85:2e:38:ad:7c:94:e0:b6:2b:72:b4:08:14:f1:dc:
c3:fc:82:d0:32:14:60:91:a0:3e:b5:53:dd:2f:56:
b0:60:06:94:c6:32:e0:d0:8f:8d:17:9e:e5:67:4b:
45:bb:02:ce:8e:70:31:e2:e5:b3:f6:e0:75:7f:78:
e2:f5:2b:a6:f7:b2:96:81:df:31:d9:b6:77:2b:e6:
7b:c0:13:44:d0:cb:4d:68:f9:5d:86:2b:6c:e5:90:
21:8d:0d:ef:e2:ed:50:f3:17:0f:1d:24:ac:34:ba:
67:c8:72:b0:61:cf:7f:3f:8c:56:72:01:f5:3b:c8:
3d:0e:5e:1a:01:69:b6:fa:52:d2:cb:d2:34:27:21:
d7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:F7:D9:C3:F8:16:AE:16:DE:57:F1:20:A5:BC:8A:92:64:C0:DB:13
X509v3 Authority Key Identifier:
keyid:A9:1F:1E:57:7C:A1:DB:B8:E0:5C:0F:56:A6:F6:78:B1:EA:40:D8:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qR8eV3yh27jgXA9WpvZ4sepA2M4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/049a12-fe9b-4c32-b63c-ef4674562566/1/L_fZw_gWrhbeV_EgpbyKkmTA2xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/049a12-fe9b-4c32-b63c-ef4674562566/1/qR8eV3yh27jgXA9WpvZ4sepA2M4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.224.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:52:d6:3c:dd:84:dc:0f:3d:c8:63:cd:38:08:e5:82:b3:24:
c2:55:20:c0:39:bf:8f:a1:dd:4a:65:8f:50:99:d6:31:48:21:
4b:b5:f7:b0:c2:60:8b:5d:b8:ed:b1:4f:4e:1d:4d:58:96:f3:
4a:b1:7e:40:3b:d1:fa:4e:4b:0a:40:24:b9:64:92:59:46:73:
5a:46:78:43:65:bc:ff:aa:45:40:1e:31:ba:20:5f:96:73:17:
ec:9a:ff:07:b6:5f:32:b6:7d:e3:33:66:24:09:7d:ac:db:43:
f8:4e:43:b1:8f:c2:25:41:94:fa:fb:b9:66:18:97:00:76:40:
44:3d:8e:44:1b:aa:fe:05:ec:26:1e:fc:1f:12:38:86:b9:58:
8d:f9:6d:c5:20:25:2c:d5:89:ce:95:0b:2d:4e:ce:73:e0:c7:
71:24:64:aa:12:57:f7:8d:41:04:61:6c:fe:4b:68:b6:b3:e9:
8b:5f:1d:a2:c5:64:d3:1f:7d:0f:38:58:c6:f1:22:bd:84:15:
86:0a:cb:09:96:b8:04:36:28:fe:94:d9:4c:a0:cd:ec:0c:42:
50:f9:99:c5:61:29:78:1c:e1:67:92:93:a6:46:e5:49:55:38:
c5:72:1a:8b:2b:8e:63:dc:9e:2c:68:0e:b4:81:65:ac:40:31:
c3:84:6c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:59 2023 by rpki-client on console-ams.rpki-client.org