Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/5c8818-54d4-4f78-b31d-517f6ff3e4f9/1/Bjq2SXM43kSNkJMVmTAdSd6JwMk.roa
File: Bjq2SXM43kSNkJMVmTAdSd6JwMk.roa (raw, json)
Hash identifier: aYLcLPmgCiRJgEDHzfswfdGpLzXq+epvDjV6zz6IEJQ=
Subject key identifier: 06:3A:B6:49:73:38:DE:44:8D:90:93:15:99:30:1D:49:DE:89:C0:C9
Certificate issuer: /CN=7c1bc58ad95da78492b42d8863d45e8f6aa6aa24
Certificate serial: 03E3F027
Authority key identifier: 7C:1B:C5:8A:D9:5D:A7:84:92:B4:2D:88:63:D4:5E:8F:6A:A6:AA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fBvFitldp4SStC2IY9Rej2qmqiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/5c8818-54d4-4f78-b31d-517f6ff3e4f9/1/Bjq2SXM43kSNkJMVmTAdSd6JwMk.roa
Signing time: Sat 01 Jan 2022 04:00:55 +0000
ROA not before: Sat 01 Jan 2022 04:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48964
IP address blocks: 178.216.224.0/21 maxlen: 21
178.216.224.0/23 maxlen: 23
178.216.226.0/23 maxlen: 23
178.216.228.0/23 maxlen: 23
178.216.230.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65269799 (0x3e3f027)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c1bc58ad95da78492b42d8863d45e8f6aa6aa24
Validity
Not Before: Jan 1 04:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=063ab6497338de448d90931599301d49de89c0c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ee:87:7c:25:75:c2:79:6a:82:36:56:e3:46:
76:34:0d:8a:be:b3:93:ad:d9:68:6b:b6:ed:71:60:
c0:06:4e:a1:e2:03:65:df:ac:d5:8c:a7:7e:b0:c6:
3c:15:13:ce:5c:7c:67:7f:55:eb:47:21:99:ed:24:
c9:d3:0d:ca:de:38:48:1d:84:59:34:c9:3a:27:39:
9f:da:2a:b1:01:13:20:cd:6a:3a:34:27:ee:0f:58:
26:cc:26:ee:87:3b:fb:39:4d:84:a1:38:3f:56:19:
bb:71:dc:6e:f8:c4:40:e8:40:64:85:38:6f:13:8e:
a9:65:85:ae:a8:7b:7b:e4:2c:00:50:41:db:0f:cb:
8b:06:f6:0c:c1:4e:37:73:c4:94:1a:e0:bc:80:23:
e3:4f:7d:ba:bd:0e:d3:e8:3c:9c:e5:c2:35:46:c8:
c0:5f:00:d4:3e:7c:e2:f1:f2:51:f5:89:65:bf:0f:
78:31:e5:52:ec:ef:bc:3b:43:d3:3b:99:ad:e7:d3:
f3:a6:20:0f:ea:e2:76:1f:bf:ec:bc:09:08:21:13:
57:0d:88:cd:22:50:e6:88:9b:17:45:fa:b2:bf:ec:
f8:85:16:55:a9:41:71:ce:73:6e:bc:74:b4:ec:5f:
1e:f3:a9:6d:82:a5:31:a3:86:e2:0e:29:7a:8f:e7:
88:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3A:B6:49:73:38:DE:44:8D:90:93:15:99:30:1D:49:DE:89:C0:C9
X509v3 Authority Key Identifier:
keyid:7C:1B:C5:8A:D9:5D:A7:84:92:B4:2D:88:63:D4:5E:8F:6A:A6:AA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fBvFitldp4SStC2IY9Rej2qmqiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/5c8818-54d4-4f78-b31d-517f6ff3e4f9/1/Bjq2SXM43kSNkJMVmTAdSd6JwMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/5c8818-54d4-4f78-b31d-517f6ff3e4f9/1/fBvFitldp4SStC2IY9Rej2qmqiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.216.224.0/21
Signature Algorithm: sha256WithRSAEncryption
5f:5b:fa:f3:16:55:06:9e:7b:d9:ac:2b:2b:49:dc:cc:22:3a:
4a:e6:a4:cc:be:31:7b:c2:bf:3b:95:f4:99:a5:09:f5:ae:bf:
37:97:45:ce:ff:4b:63:57:24:4b:db:1b:a0:c8:04:f5:7a:2d:
64:49:e9:7b:b3:f1:4a:2f:8b:2d:02:89:f6:13:9b:e7:4f:da:
6f:09:03:97:80:6c:3a:6c:5e:a1:f4:e5:01:ba:dd:4d:f9:33:
b4:53:8b:03:0c:92:33:5d:02:d9:17:96:06:f5:5b:75:6a:8d:
07:a9:35:86:6b:bc:94:77:37:95:19:00:50:49:40:89:33:e9:
69:53:39:e4:de:2a:1f:15:bb:fc:22:78:d3:b1:25:66:79:4e:
05:c4:f6:20:c7:a1:a5:c3:1b:20:96:ff:b4:a3:7f:4a:d1:46:
e0:c2:17:95:15:3f:93:1b:74:3c:4f:df:87:ab:7d:e6:66:69:
78:92:38:10:77:43:ba:1f:c7:c0:e4:7f:2a:78:f6:c5:09:82:
34:2a:89:9f:eb:3f:2c:7b:37:82:11:ac:f7:23:41:24:94:23:
dc:e7:50:36:24:f1:42:bc:9d:ee:75:66:93:af:58:e9:3f:e3:
b9:9e:7b:c5:3b:81:31:1c:57:81:b6:fd:b3:e1:e8:aa:e7:26:
21:d1:e2:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:45 2024 by rpki-client on console-ams.rpki-client.org