Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/cUtqUbnJl9toCJ5eEpqrtedDZe0.roa
File: cUtqUbnJl9toCJ5eEpqrtedDZe0.roa (raw, json)
Hash identifier: qe2Wf8lKp2S40xu6aHljtldpVMuSJ3woX/V3iK3SrCM=
Subject key identifier: 71:4B:6A:51:B9:C9:97:DB:68:08:9E:5E:12:9A:AB:B5:E7:43:65:ED
Certificate issuer: /CN=d367d1635b46b3c2274b287505bbbd7d915dcaf5
Certificate serial: 1692F7FF
Authority key identifier: D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02fRY1tGs8InSyh1Bbu9fZFdyvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/cUtqUbnJl9toCJ5eEpqrtedDZe0.roa
Signing time: Sat 01 Jan 2022 01:01:56 +0000
ROA not before: Sat 01 Jan 2022 01:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35838
IP address blocks: 178.255.80.0/21 maxlen: 21
2a02:1788::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378730495 (0x1692f7ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d367d1635b46b3c2274b287505bbbd7d915dcaf5
Validity
Not Before: Jan 1 01:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=714b6a51b9c997db68089e5e129aabb5e74365ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f7:f7:c9:59:34:d3:73:68:38:a7:3d:92:4d:
71:b1:d7:66:fe:f1:a1:fd:bf:5c:d1:24:f5:28:50:
6d:db:a4:82:29:5c:bb:58:f6:90:57:03:db:f2:bc:
f5:5d:e8:3c:e9:ca:90:4d:6d:e5:53:be:1d:25:9f:
dd:26:80:a6:47:47:40:4d:0f:ab:a2:9f:cc:46:31:
df:2a:00:fa:2a:56:46:56:19:a5:dd:a5:d7:bf:c7:
bd:4f:a1:eb:26:12:1c:50:71:e3:a3:24:70:59:da:
83:fe:21:84:89:7f:7a:e9:18:39:17:39:b4:13:36:
43:5b:07:5c:fd:42:bf:60:ec:1e:bc:e0:52:fb:09:
de:27:13:b9:f5:c1:47:c7:6b:21:6a:77:a2:a9:ec:
9d:00:c7:05:c0:4e:71:b6:f8:7d:0a:cf:e4:af:f9:
56:26:9f:5a:14:ad:e7:ad:2e:1c:0b:4d:ad:21:f6:
a1:af:6d:3b:db:cf:cf:c9:82:d4:36:c1:6f:0f:79:
2b:7c:64:2e:02:3c:f7:e9:49:49:8d:6b:e2:31:35:
65:e4:be:58:0a:26:9d:08:a5:5b:c3:97:a9:bf:b6:
81:d7:a6:ef:c7:2b:4c:56:76:08:18:fd:71:3f:90:
9d:b3:35:36:4d:a1:f3:c6:2c:f4:5d:e0:dd:a3:80:
76:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:4B:6A:51:B9:C9:97:DB:68:08:9E:5E:12:9A:AB:B5:E7:43:65:ED
X509v3 Authority Key Identifier:
keyid:D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02fRY1tGs8InSyh1Bbu9fZFdyvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/cUtqUbnJl9toCJ5eEpqrtedDZe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/02fRY1tGs8InSyh1Bbu9fZFdyvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.80.0/21
IPv6:
2a02:1788::/32
Signature Algorithm: sha256WithRSAEncryption
4b:44:40:ff:32:d0:57:e6:a1:13:dd:28:91:5c:7d:72:d4:16:
0a:90:bc:83:8d:c4:ab:8d:3d:bd:5d:b5:08:39:d8:2c:06:d7:
d3:6a:ca:ca:ed:f6:89:7f:a3:c6:60:11:69:3d:12:43:86:5a:
54:6b:8c:20:cc:0f:56:9b:0b:fe:9f:04:37:86:6f:a9:a1:fa:
da:37:8a:02:c7:98:e1:fa:3b:3a:6c:c4:cf:1f:98:d0:43:e9:
ef:d3:2d:5c:97:2b:dc:c5:78:30:b9:d3:01:d2:8b:8e:14:51:
f8:06:dc:aa:1d:b0:6f:6c:a3:3e:03:e1:25:5b:e0:1b:e7:f6:
4c:e0:be:49:de:b5:d7:a3:15:aa:f2:94:d3:14:64:12:38:d6:
bf:71:09:91:95:cb:f4:a2:e3:63:79:80:c7:fe:ba:7e:20:b1:
e9:81:60:27:88:b2:85:c0:d5:67:75:0c:98:83:52:e3:81:f6:
92:a2:b5:65:34:55:2e:a1:47:dd:ce:38:24:9c:a5:fb:4a:a2:
a9:40:be:85:32:f9:c6:2a:ab:3d:4d:7e:e2:6c:9f:1d:85:a0:
c3:9e:d1:9c:61:c5:4c:0b:b1:4c:12:92:11:40:22:a1:b8:fa:
c6:b7:d9:0b:df:4e:40:11:68:99:0f:19:e9:95:ad:a8:5b:41:
fd:15:12:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:37 2023 by rpki-client on console-fra.rpki-client.org