Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f7f53d-068c-444e-ad1e-b7c2696bae50/1/S0baHJsDBE2zilJaDVou7-ES_Hg.roa
File: S0baHJsDBE2zilJaDVou7-ES_Hg.roa (raw, json)
Hash identifier: UjQD0reWD9cDrmo/R0icC85qt/I1FWt8suqC++TsZbw=
Subject key identifier: 4B:46:DA:1C:9B:03:04:4D:B3:8A:52:5A:0D:5A:2E:EF:E1:12:FC:78
Certificate issuer: /CN=34d0ec7ac4c391e4ecba9d0a3749191b18ebf934
Certificate serial: 0184A5390E6063D888CF49316FAC9FA7243C
Authority key identifier: 34:D0:EC:7A:C4:C3:91:E4:EC:BA:9D:0A:37:49:19:1B:18:EB:F9:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NNDsesTDkeTsup0KN0kZGxjr-TQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f7f53d-068c-444e-ad1e-b7c2696bae50/1/S0baHJsDBE2zilJaDVou7-ES_Hg.roa
Signing time: Wed 23 Nov 2022 16:01:30 +0000
ROA not before: Wed 23 Nov 2022 16:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34083
IP address blocks: 178.219.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a5:39:0e:60:63:d8:88:cf:49:31:6f:ac:9f:a7:24:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34d0ec7ac4c391e4ecba9d0a3749191b18ebf934
Validity
Not Before: Nov 23 16:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b46da1c9b03044db38a525a0d5a2eefe112fc78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8b:a7:23:52:6c:67:95:41:f7:84:1c:07:62:
bc:46:61:78:46:d9:ff:d9:87:72:23:24:9a:6f:c4:
7c:bd:a6:03:bc:16:40:27:38:79:39:78:b7:10:11:
e8:ed:e2:4f:1e:b1:b3:68:20:84:dc:13:09:e2:25:
eb:b7:e3:72:b4:37:3b:1e:db:76:7f:f4:78:38:2c:
58:9b:ea:a2:05:61:07:60:fa:19:0f:e9:b9:eb:36:
f3:86:21:32:05:a1:a3:34:6b:59:ad:d8:08:c4:3c:
77:bc:c0:2b:0b:0f:bf:ec:27:70:20:8c:dc:32:69:
f9:a6:a7:d6:06:21:6c:ed:97:c9:8d:ff:09:cd:f8:
b7:6b:ea:f1:e3:e3:73:f8:32:32:e3:ab:fe:41:85:
95:fe:3b:21:44:6e:3d:0a:8d:1f:61:13:85:70:be:
c0:97:f6:1f:36:cb:b0:81:c2:5a:7d:d3:d4:02:6d:
83:6a:c1:11:ad:3b:44:a2:ef:54:18:c1:b5:4a:c6:
23:20:64:a2:bc:d1:0b:c7:01:fe:09:09:51:ec:d3:
da:3b:46:be:14:1c:ff:fa:59:8a:e1:1f:61:d0:a4:
01:cc:05:75:46:63:6f:c4:52:ea:49:d9:f9:12:b8:
c6:cd:09:a4:04:a0:fb:25:23:ad:15:bf:92:63:0d:
28:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:46:DA:1C:9B:03:04:4D:B3:8A:52:5A:0D:5A:2E:EF:E1:12:FC:78
X509v3 Authority Key Identifier:
keyid:34:D0:EC:7A:C4:C3:91:E4:EC:BA:9D:0A:37:49:19:1B:18:EB:F9:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NNDsesTDkeTsup0KN0kZGxjr-TQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f7f53d-068c-444e-ad1e-b7c2696bae50/1/S0baHJsDBE2zilJaDVou7-ES_Hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f7f53d-068c-444e-ad1e-b7c2696bae50/1/NNDsesTDkeTsup0KN0kZGxjr-TQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.48.0/21
Signature Algorithm: sha256WithRSAEncryption
41:79:36:0c:f0:af:c9:55:c3:ee:f7:84:fc:ba:a8:77:de:18:
bd:41:b7:a4:04:46:61:94:84:36:fb:33:d9:34:63:0d:5b:2c:
a5:cb:04:8a:62:78:ec:c0:35:03:6c:a1:27:25:bc:ac:04:eb:
c8:84:53:35:c6:cf:7e:58:3f:36:74:e0:35:e3:91:83:cf:54:
e1:43:12:9a:8e:40:48:9b:7e:07:54:14:d2:2b:35:7e:9d:74:
11:07:75:eb:08:c2:f1:44:f0:65:6c:1c:1c:cf:23:a6:11:6b:
d7:cc:75:e0:fa:d4:1d:ad:e5:9e:32:f2:d3:2c:84:bc:93:77:
e4:b1:06:db:0a:22:07:2d:4a:e0:e9:71:7d:43:06:2f:a1:44:
17:c6:3c:c7:f2:e2:58:f9:15:be:c7:85:dd:f7:d8:01:1f:0a:
2f:5c:d7:21:71:d7:a7:65:37:84:51:de:fb:14:94:65:f2:25:
86:b0:13:e6:88:c2:b9:1b:3d:a1:c9:6b:29:bb:0d:ba:df:29:
7a:7b:91:8a:e7:e9:38:aa:ad:57:b2:b1:c2:7f:e9:13:c5:d9:
c1:0e:5c:44:12:5c:e9:b6:f4:a2:25:c7:ee:9c:fa:51:71:87:
9f:7b:bc:f4:d2:86:a4:90:72:e8:83:43:6c:ee:6f:da:5c:f7:
ed:19:f7:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:24 2023 by rpki-client on console-fra.rpki-client.org