Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/PVVEvwwSa1ZeC0ZA14OkTUhzcbE.roa
File: PVVEvwwSa1ZeC0ZA14OkTUhzcbE.roa (raw, json)
Hash identifier: iWtmsE5TJZAJeyRRzLVFOdYtxP0Dq2Un30NmBPjt+SA=
Subject key identifier: 3D:55:44:BF:0C:12:6B:56:5E:0B:46:40:D7:83:A4:4D:48:73:71:B1
Certificate issuer: /CN=bceef64a2e6e11c4dd6ad05b96eff644ddb457af
Certificate serial: D519B0
Authority key identifier: BC:EE:F6:4A:2E:6E:11:C4:DD:6A:D0:5B:96:EF:F6:44:DD:B4:57:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vO72Si5uEcTdatBblu_2RN20V68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/PVVEvwwSa1ZeC0ZA14OkTUhzcbE.roa
Signing time: Sat 01 Jan 2022 02:50:55 +0000
ROA not before: Sat 01 Jan 2022 02:50:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41171
IP address blocks: 178.212.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13965744 (0xd519b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bceef64a2e6e11c4dd6ad05b96eff644ddb457af
Validity
Not Before: Jan 1 02:50:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d5544bf0c126b565e0b4640d783a44d487371b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d2:dd:ae:20:b2:e2:6c:42:dd:d3:e1:39:aa:
c8:d2:58:ad:fe:c6:61:4a:1f:01:72:8a:52:82:5b:
35:cb:23:5c:88:72:aa:86:01:97:a8:ae:2d:73:e8:
51:7f:e0:0a:f3:6d:95:8c:1e:3f:3f:c7:32:13:07:
62:99:d9:17:42:df:39:59:67:ca:3b:76:b5:82:2e:
8a:8f:a2:a0:ec:4d:2b:22:eb:7f:d4:55:b0:d3:81:
e9:08:f7:8e:ce:a2:c5:25:da:83:9b:79:3d:ca:1b:
c1:25:e2:ec:83:58:c7:ad:dd:b8:a7:e2:35:a1:9d:
24:61:56:58:91:df:43:da:10:a4:df:00:15:00:90:
80:49:d7:0d:10:c7:b2:11:1e:9f:4c:97:02:66:c4:
ea:8e:de:3b:7e:4f:10:5b:f1:d8:bf:81:ee:7a:a0:
c5:37:c1:5b:15:13:37:1f:3d:94:18:fe:72:1d:b5:
be:5f:fc:e3:e5:7a:00:32:0f:5b:15:46:47:90:c0:
22:0d:c3:75:d8:88:dc:cd:56:2b:30:51:23:86:ee:
7f:cc:6f:0d:a8:c9:c9:b8:7c:b9:92:ca:d9:f5:eb:
63:57:11:57:a9:bb:6d:46:91:94:7f:cd:30:c7:c4:
06:e6:a0:3b:df:db:1b:e8:62:98:64:9d:02:fa:42:
be:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:55:44:BF:0C:12:6B:56:5E:0B:46:40:D7:83:A4:4D:48:73:71:B1
X509v3 Authority Key Identifier:
keyid:BC:EE:F6:4A:2E:6E:11:C4:DD:6A:D0:5B:96:EF:F6:44:DD:B4:57:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vO72Si5uEcTdatBblu_2RN20V68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/PVVEvwwSa1ZeC0ZA14OkTUhzcbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f5c4bd-27bb-499a-8a09-002d89cd1f5a/1/vO72Si5uEcTdatBblu_2RN20V68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.77.0/24
Signature Algorithm: sha256WithRSAEncryption
02:f8:67:aa:b8:b2:c9:1b:a7:23:0a:1f:53:ae:8c:0d:fb:68:
49:3e:d4:cd:8d:ee:08:43:02:57:f6:6c:cb:1e:74:54:b9:e6:
6c:0b:b2:a0:af:40:46:ed:bb:a2:e5:e6:fd:cf:91:c9:74:e2:
25:6a:9a:f1:b2:6d:a1:e4:9e:53:82:ac:69:aa:9d:9f:a1:2c:
a3:d8:a1:1b:9c:a9:26:c9:b8:a6:e2:33:69:55:18:a4:bc:d7:
51:74:f3:b0:88:fc:38:88:63:73:8f:54:bf:55:f2:06:95:c8:
ed:5d:4a:4a:12:99:9b:76:d3:56:e0:a1:d1:f6:d6:50:30:a5:
46:18:ef:c3:b1:c9:00:cb:27:d1:9c:3b:78:04:6f:09:73:cb:
c4:35:c8:cf:7b:7e:bc:bc:13:9d:f6:07:ac:5e:13:de:46:3c:
cb:12:5d:06:57:18:18:23:2f:98:5a:f2:d2:48:23:a9:5e:09:
06:53:66:96:b8:d9:78:d2:fd:f8:25:a6:a4:4d:b9:d9:92:7d:
a0:5e:3c:5c:25:eb:47:fc:a0:52:c0:67:9f:7d:94:73:28:fa:
94:d1:4c:1d:05:a9:06:da:84:44:80:83:83:d7:84:9c:65:6a:
ed:5b:e6:db:b0:40:45:f3:f8:e5:a2:33:fc:e0:04:0f:27:d7:
8d:34:df:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-fra.rpki-client.org