Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jAgfiFaSd1YDG0aWkN3J4AyvwbM.roa
File: jAgfiFaSd1YDG0aWkN3J4AyvwbM.roa (raw, json)
Hash identifier: xHGRtU0K4Z8aDIMIk/PbAPjjxZ0RX43o5Mux3fHfutI=
Subject key identifier: 8C:08:1F:88:56:92:77:56:03:1B:46:96:90:DD:C9:E0:0C:AF:C1:B3
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 092E75C6
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jAgfiFaSd1YDG0aWkN3J4AyvwbM.roa
Signing time: Sat 01 Jan 2022 05:55:28 +0000
ROA not before: Sat 01 Jan 2022 05:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48039
IP address blocks: 178.18.149.0/24 maxlen: 32
94.103.160.0/20 maxlen: 32
178.18.156.0/22 maxlen: 32
2a02:7a0::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154039750 (0x92e75c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 05:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c081f8856927756031b469690ddc9e00cafc1b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a1:45:d6:24:f5:8c:08:16:00:a6:bc:36:ea:
bb:73:a5:d8:4c:91:71:b3:ca:a0:86:57:2e:4a:71:
8f:ce:05:b8:25:cf:ba:09:46:14:25:4d:13:03:99:
8b:19:53:92:35:a3:c5:64:5e:5d:16:ed:50:b6:57:
31:e6:41:8b:ef:6a:b1:44:4e:c1:7c:25:0a:07:fa:
66:fc:9e:14:a3:f8:d8:8d:63:6b:69:38:4d:1a:5e:
7f:c0:de:91:4c:d3:1c:c7:b1:5f:9d:73:69:e5:de:
a8:59:3b:c6:94:50:6f:68:8c:75:6a:0a:63:98:3d:
14:6b:52:24:d7:73:05:31:42:97:89:71:f9:a3:c5:
3e:de:d8:82:a6:31:08:5c:4f:8a:ea:16:b2:0c:09:
da:cd:47:32:61:78:ac:6a:d8:29:b7:75:5d:81:e7:
76:6e:c8:62:56:f7:69:7a:1d:32:04:94:bf:f8:5e:
f7:b1:10:ab:46:fd:80:fc:b7:35:17:7c:9b:74:fb:
ae:7b:10:08:eb:f1:54:07:a6:21:33:0a:d8:c8:f5:
ce:4d:6c:10:98:ff:6f:97:1d:fa:6f:c2:98:56:0b:
1a:3b:67:e5:b4:4f:cd:1a:9b:56:4a:28:53:d3:c0:
17:f7:7a:3b:8c:b5:30:5c:d4:56:65:75:a4:34:a1:
0a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:08:1F:88:56:92:77:56:03:1B:46:96:90:DD:C9:E0:0C:AF:C1:B3
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jAgfiFaSd1YDG0aWkN3J4AyvwbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.160.0/20
178.18.149.0/24
178.18.156.0/22
IPv6:
2a02:7a0::/32
Signature Algorithm: sha256WithRSAEncryption
8a:37:8c:5a:db:04:82:7f:07:b6:d3:08:ea:b3:be:11:71:af:
3f:20:10:0c:3a:2b:a0:1d:26:e7:5b:be:10:67:2e:5e:fc:b5:
25:19:57:85:8d:b5:dc:fe:b5:ed:a6:37:a7:84:92:e1:00:3b:
1f:56:b6:30:a0:51:db:8b:d4:10:81:0b:d9:ee:5d:63:7e:b3:
1a:91:34:ee:a4:a6:a6:b5:ff:f5:5f:3b:c4:28:a5:e8:55:ec:
d3:ac:00:15:d9:d4:9c:36:7f:a6:a6:a3:e1:cc:3a:54:23:33:
24:89:27:c6:5b:9d:54:5c:ba:46:12:6e:f4:8c:08:2a:13:4b:
8f:3e:65:56:37:ae:24:b2:18:bf:04:dd:72:9b:44:d1:e3:3d:
9f:bf:cb:43:16:f3:59:1d:e4:d8:c2:03:38:99:8e:90:67:1b:
a2:cc:e8:79:0f:8f:b4:28:38:49:5f:06:ce:ec:30:4a:38:d6:
89:9f:49:6d:33:af:1f:83:3d:df:6f:88:b9:3b:19:69:43:11:
87:ca:9d:f1:86:97:15:0f:41:5c:98:8d:1b:14:ba:92:28:8b:
c2:3a:a2:ab:49:9b:81:62:bb:45:88:e0:03:a6:45:11:73:c0:
ac:3b:20:b2:d2:c2:f3:3e:b2:76:eb:83:7a:be:98:1f:73:63:
1f:fa:84:11
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:30 2024 by rpki-client on console-fra.rpki-client.org