Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/krkfZGWBiAT-QnqKdM2yWePOyc0.roa
File: krkfZGWBiAT-QnqKdM2yWePOyc0.roa (raw, json)
Hash identifier: VYtoaz/WQhuUhNn5tyqpw60iKPkvEWCcs3wUYWIlcLE=
Subject key identifier: 92:B9:1F:64:65:81:88:04:FE:42:7A:8A:74:CD:B2:59:E3:CE:C9:CD
Certificate issuer: /CN=593b53fb9306346f272494928d77839cbaf9ddc7
Certificate serial: 074E8F7E
Authority key identifier: 59:3B:53:FB:93:06:34:6F:27:24:94:92:8D:77:83:9C:BA:F9:DD:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WTtT-5MGNG8nJJSSjXeDnLr53cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/krkfZGWBiAT-QnqKdM2yWePOyc0.roa
Signing time: Sat 01 Jan 2022 04:53:35 +0000
ROA not before: Sat 01 Jan 2022 04:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43128
IP address blocks: 178.218.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122589054 (0x74e8f7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=593b53fb9306346f272494928d77839cbaf9ddc7
Validity
Not Before: Jan 1 04:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92b91f6465818804fe427a8a74cdb259e3cec9cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bf:d5:19:c9:c5:09:cb:aa:f7:4f:9c:4a:52:
5e:71:6e:0d:ea:61:60:db:24:58:79:86:ba:4b:86:
05:4d:39:98:f6:04:fe:8f:33:19:27:cd:72:76:64:
b9:f2:df:1a:0e:31:90:f5:6f:2f:86:23:1f:41:14:
68:7f:6f:bf:cf:ba:ba:16:4c:59:65:03:52:82:35:
6d:2e:06:39:66:eb:57:42:b4:8b:d6:4a:3f:1e:5a:
68:60:71:1d:07:22:60:39:18:bf:23:ab:9d:35:4a:
35:0e:7b:80:9d:83:41:d7:d1:a0:20:bc:f5:b0:3b:
04:e2:db:3b:c6:3f:e9:bd:16:05:55:6c:af:f8:b9:
75:0d:2a:02:6b:82:53:2b:05:45:3f:87:25:4f:c8:
77:cf:b7:d1:0a:5d:b9:80:95:6e:8f:67:cd:88:1d:
bb:9c:bf:99:07:20:9a:05:31:62:b8:8a:fa:b8:cd:
16:e9:bb:de:75:99:dc:3d:de:d0:c1:65:78:66:1e:
d7:3e:30:50:ce:d2:35:1c:60:5a:77:18:44:c5:22:
b2:0e:da:97:31:44:c3:16:9a:6b:ce:14:30:61:2a:
e8:74:26:a3:56:22:44:2e:33:73:b3:72:e7:d7:25:
37:fd:58:5f:a3:e0:fb:f9:3b:be:c1:73:5a:63:ed:
b4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B9:1F:64:65:81:88:04:FE:42:7A:8A:74:CD:B2:59:E3:CE:C9:CD
X509v3 Authority Key Identifier:
keyid:59:3B:53:FB:93:06:34:6F:27:24:94:92:8D:77:83:9C:BA:F9:DD:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WTtT-5MGNG8nJJSSjXeDnLr53cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/krkfZGWBiAT-QnqKdM2yWePOyc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/12fc9e-ea3b-41c0-950e-4475a9bf250e/1/WTtT-5MGNG8nJJSSjXeDnLr53cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.218.175.0/24
Signature Algorithm: sha256WithRSAEncryption
38:0a:e9:80:1d:83:2b:36:cb:28:31:06:43:b6:5a:a8:53:8c:
ca:b1:f9:bb:d3:1e:1c:42:de:26:d8:a3:47:b7:da:fe:aa:44:
d5:89:fb:90:43:10:29:6d:d1:6c:98:8a:fc:9d:88:1f:89:48:
93:66:37:6a:29:1e:78:0b:18:fe:62:1d:f8:1d:65:41:f9:fc:
0c:35:ba:91:af:36:e5:61:fd:d8:fd:cc:ae:c3:c0:a2:b9:db:
7a:89:8c:8f:08:f8:ba:46:60:d2:a6:f2:4a:2a:29:b9:6e:0e:
b1:f8:6d:f4:11:29:43:cd:e3:92:c3:d1:3a:76:e5:36:01:b2:
3d:d1:9b:c1:b6:77:96:a1:05:77:ff:8a:d1:da:86:d1:b5:0e:
79:82:d0:0f:f5:73:51:55:d7:f4:c9:5a:a1:73:a2:8d:8b:3e:
70:82:e3:f9:24:a1:76:c4:1a:6d:fc:74:18:e7:5d:78:83:be:
9f:9b:bc:30:cf:bd:c0:85:e0:de:45:2f:8a:22:1f:da:5a:f0:
60:ff:cf:42:44:99:49:c0:2a:a3:e8:c9:bb:09:95:8a:a0:bc:
37:4b:4d:99:26:dd:1c:72:82:93:a5:ee:19:6b:c6:c9:19:0a:
2b:c4:8b:52:0c:14:21:c4:b1:f1:00:9f:a4:d9:90:bd:78:39:
57:33:e4:05
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB06PfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
OTNiNTNmYjkzMDYzNDZmMjcyNDk0OTI4ZDc3ODM5Y2JhZjlkZGM3MB4XDTIyMDEw
MTA0NTMzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTJiOTFmNjQ2NTgx
ODgwNGZlNDI3YThhNzRjZGIyNTllM2NlYzljZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJu/1RnJxQnLqvdPnEpSXnFuDephYNskWHmGukuGBU05mPYE
/o8zGSfNcnZkufLfGg4xkPVvL4YjH0EUaH9vv8+6uhZMWWUDUoI1bS4GOWbrV0K0
i9ZKPx5aaGBxHQciYDkYvyOrnTVKNQ57gJ2DQdfRoCC89bA7BOLbO8Y/6b0WBVVs
r/i5dQ0qAmuCUysFRT+HJU/Id8+30QpduYCVbo9nzYgdu5y/mQcgmgUxYriK+rjN
Fum73nWZ3D3e0MFleGYe1z4wUM7SNRxgWncYRMUisg7alzFEwxaaa84UMGEq6HQm
o1YiRC4zc7Ny59clN/1YX6Pg+/k7vsFzWmPttFsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSSuR9kZYGIBP5Ceop0zbJZ487JzTAfBgNVHSMEGDAWgBRZO1P7kwY0byck
lJKNd4OcuvndxzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dUdFQtNU1HTkc4bkpKU1NqWGVEbkxyNTNjYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjgvMTJmYzllLWVhM2ItNDFjMC05NTBlLTQ0NzVhOWJmMjUwZS8x
L2tya2ZaR1dCaUFULVFucUtkTTJ5V2VQT3ljMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjgv
MTJmYzllLWVhM2ItNDFjMC05NTBlLTQ0NzVhOWJmMjUwZS8xL1dUdFQtNU1HTkc4
bkpKU1NqWGVEbkxyNTNjYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALLarzANBgkqhkiG9w0BAQsFAAOC
AQEAOArpgB2DKzbLKDEGQ7ZaqFOMyrH5u9MeHELeJtijR7fa/qpE1Yn7kEMQKW3R
bJiK/J2IH4lIk2Y3aikeeAsY/mId+B1lQfn8DDW6ka825WH92P3MrsPAornbeomM
jwj4ukZg0qbySiopuW4Osfht9BEpQ83jksPROnblNgGyPdGbwbZ3lqEFd/+K0dqG
0bUOeYLQD/VzUVXX9MlaoXOijYs+cILj+SShdsQabfx0GOddeIO+n5u8MM+9wIXg
3kUviiIf2lrwYP/PQkSZScAqo+jJuwmViqC8N0tNmSbdHHKCk6XuGWvGyRkKK8SL
UgwUIcSx8QCfpNmQvXg5VzPkBQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:40 2025 by rpki-client