Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/9RNKOKOKra1bQCO_sobdmPRaJuo.roa
File: 9RNKOKOKra1bQCO_sobdmPRaJuo.roa (raw, json)
Hash identifier: ZQCXQJLInRLDYch32IsirNtGCul9xmkz+C/1vU/aWmw=
Subject key identifier: F5:13:4A:38:A3:8A:AD:AD:5B:40:23:BF:B2:86:DD:98:F4:5A:26:EA
Certificate issuer: /CN=bceef64a2e6e11c4dd6ad05b96eff644ddb457af
Certificate serial: D0DE15
Authority key identifier: BC:EE:F6:4A:2E:6E:11:C4:DD:6A:D0:5B:96:EF:F6:44:DD:B4:57:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vO72Si5uEcTdatBblu_2RN20V68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/9RNKOKOKra1bQCO_sobdmPRaJuo.roa
Signing time: Sat 01 Jan 2022 02:50:53 +0000
ROA not before: Sat 01 Jan 2022 02:50:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 178.212.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13688341 (0xd0de15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bceef64a2e6e11c4dd6ad05b96eff644ddb457af
Validity
Not Before: Jan 1 02:50:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5134a38a38aadad5b4023bfb286dd98f45a26ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4e:ea:2d:14:9b:44:e0:c1:e6:aa:b2:84:36:
3b:8c:75:81:93:52:e5:74:39:27:49:42:13:af:13:
d6:8b:c9:fc:3b:54:69:8e:58:26:65:4f:14:a4:5d:
51:ab:ff:20:fe:ab:00:13:2f:a3:8c:bd:24:eb:e8:
6e:a4:ac:49:78:4f:ef:e4:d1:28:f2:00:fd:8d:5b:
cb:04:47:61:22:38:67:6d:d2:35:88:2d:bd:ec:91:
19:77:85:96:e7:3d:20:c6:37:af:3c:ce:e6:17:50:
21:c6:6f:f1:a8:7c:ed:19:8a:e5:3e:f4:6e:a1:62:
9f:d4:b5:37:ae:e8:f8:9a:f2:f5:53:ac:a1:54:56:
e4:97:52:3a:99:50:ab:15:62:36:43:31:a5:4f:63:
c9:9a:89:62:8c:2f:c9:1d:cf:e6:1a:6c:e9:10:2f:
b8:c8:e8:67:8c:db:bc:59:7d:98:81:9c:d8:e4:9d:
5f:23:4b:24:d0:05:44:16:b1:f4:72:1e:c1:d0:54:
ad:10:d3:98:cb:ed:02:5c:50:2b:d9:18:93:5f:29:
3b:2e:de:4f:2b:bb:6c:ed:bb:45:cb:b1:b5:67:c1:
54:8c:3b:cc:96:13:e2:47:a3:ad:b2:b9:75:e3:a5:
3a:47:1d:d6:83:3a:d3:d7:a8:1d:8d:5e:86:8f:97:
ef:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:13:4A:38:A3:8A:AD:AD:5B:40:23:BF:B2:86:DD:98:F4:5A:26:EA
X509v3 Authority Key Identifier:
keyid:BC:EE:F6:4A:2E:6E:11:C4:DD:6A:D0:5B:96:EF:F6:44:DD:B4:57:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vO72Si5uEcTdatBblu_2RN20V68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/9RNKOKOKra1bQCO_sobdmPRaJuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/vO72Si5uEcTdatBblu_2RN20V68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.77.0/24
Signature Algorithm: sha256WithRSAEncryption
79:7c:6b:87:dc:2f:79:0f:84:2d:f1:cf:7c:05:99:a2:96:53:
94:33:44:bf:d0:56:c2:3a:39:57:b0:d4:fc:51:1c:78:9c:af:
3f:16:9d:67:d7:93:8b:01:22:43:85:5d:55:8c:f4:77:db:45:
47:f9:c7:a1:5a:4a:3b:d2:95:e3:2d:d5:7f:e7:1f:9c:b1:78:
50:ad:39:41:cc:33:5a:6b:f9:a5:b3:e8:3a:8e:2f:f7:ad:80:
af:d8:e8:00:8d:69:38:19:bb:3f:53:8b:aa:0e:f9:47:69:ea:
4b:9b:57:b0:4b:85:64:47:42:ac:4c:b9:d5:af:44:c2:5e:7f:
19:0c:7a:9e:0a:a0:0a:13:7d:10:83:7b:3f:fb:5e:c8:ec:74:
7a:7f:9a:c1:c8:36:e9:95:85:91:e0:66:58:d0:8c:b4:c6:a8:
cf:22:9e:68:94:12:11:a9:f6:c6:c2:f7:ba:80:14:25:f3:0c:
2d:5c:5e:b8:d9:ff:27:7c:03:2c:75:48:dd:e3:4c:6e:6b:55:
d4:08:0e:b0:aa:d5:f4:6e:bb:4e:2e:5c:94:57:39:22:86:21:
9b:f2:c6:9a:d8:b4:1c:c0:ad:6b:07:06:de:39:41:9c:16:00:
93:c2:45:cd:ac:fb:4e:af:bc:89:73:af:59:b5:4b:74:83:d9:
15:1b:49:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-fra.rpki-client.org