Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/rLpbZhnPSNgGIAfn-gZ9JvWJ-38.roa
File: rLpbZhnPSNgGIAfn-gZ9JvWJ-38.roa (raw, json)
Hash identifier: 2/OvH2PbRmJnNCqSjROTFvAwECRf+Nhv+Iu8o9Jme8U=
Subject key identifier: AC:BA:5B:66:19:CF:48:D8:06:20:07:E7:FA:06:7D:26:F5:89:FB:7F
Certificate issuer: /CN=aa2a58c697a1449976b0d11d6f126025e14089c6
Certificate serial: 1F4848CF
Authority key identifier: AA:2A:58:C6:97:A1:44:99:76:B0:D1:1D:6F:12:60:25:E1:40:89:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qipYxpehRJl2sNEdbxJgJeFAicY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/rLpbZhnPSNgGIAfn-gZ9JvWJ-38.roa
Signing time: Tue 26 Apr 2022 05:44:44 +0000
ROA not before: Tue 26 Apr 2022 05:44:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50477
IP address blocks: 178.57.56.0/21 maxlen: 21
194.58.168.0/22 maxlen: 22
194.58.172.0/22 maxlen: 22
194.58.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 524830927 (0x1f4848cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa2a58c697a1449976b0d11d6f126025e14089c6
Validity
Not Before: Apr 26 05:44:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acba5b6619cf48d8062007e7fa067d26f589fb7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:92:93:84:d9:43:2c:05:a2:7b:7c:db:1b:f6:
38:66:e4:2c:73:e9:cf:a1:d9:0e:23:44:3d:0d:cf:
a4:dd:c5:79:aa:2a:2e:8d:97:f9:15:a0:d2:1f:94:
5d:e6:29:49:65:84:eb:fa:84:ff:0d:50:11:db:07:
9d:51:89:d3:49:39:8c:cf:a1:c0:54:31:58:de:34:
c3:9b:e5:68:36:89:73:9e:22:9a:6c:b6:97:df:34:
85:ac:43:dd:d5:13:34:d7:f8:09:d8:7f:c6:75:2a:
59:1a:31:cb:aa:ad:2f:42:e8:a9:e8:a2:96:50:32:
82:0c:12:f2:11:18:62:0c:da:d2:c6:39:b2:1c:91:
1b:cd:dd:00:2b:e0:da:45:07:1e:66:89:b9:76:b0:
fb:fb:98:21:95:5c:88:3f:b7:0f:61:6d:ea:e6:33:
8f:b1:28:e9:24:5d:00:3f:bb:72:e3:68:84:2f:a9:
0e:44:a4:d7:0c:56:48:a0:87:9d:4a:68:2d:7c:68:
9e:8d:07:82:5c:dc:24:a0:a7:29:92:18:7e:c7:26:
79:0c:72:e2:4e:6b:58:69:8e:c1:5a:d1:ed:5e:3c:
94:8b:54:60:6f:22:71:33:34:88:6d:1c:f2:a1:2d:
40:92:36:eb:91:f0:1a:1f:20:0a:96:26:de:11:58:
a0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BA:5B:66:19:CF:48:D8:06:20:07:E7:FA:06:7D:26:F5:89:FB:7F
X509v3 Authority Key Identifier:
keyid:AA:2A:58:C6:97:A1:44:99:76:B0:D1:1D:6F:12:60:25:E1:40:89:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qipYxpehRJl2sNEdbxJgJeFAicY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/rLpbZhnPSNgGIAfn-gZ9JvWJ-38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3142a5-d92d-4d06-8228-be622c3132df/1/qipYxpehRJl2sNEdbxJgJeFAicY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.57.56.0/21
194.58.168.0/21
194.58.184.0/21
Signature Algorithm: sha256WithRSAEncryption
31:13:05:2e:32:1f:15:fe:93:ec:b8:87:da:2e:1a:f1:17:07:
7b:40:24:47:77:3b:7d:7d:5f:f1:e7:89:56:e4:8e:b2:f5:dd:
da:9a:68:72:ba:14:ef:6b:9f:45:b9:28:7c:75:8f:27:8a:77:
95:1a:2c:2a:be:47:54:8b:49:98:fb:26:93:23:e5:ee:ba:e6:
a9:a3:bd:67:b8:c1:8f:dd:cb:47:9f:a1:a7:e1:fc:69:f0:dd:
43:3e:19:34:28:99:b3:c9:ef:c7:a1:3e:d8:01:ce:05:68:12:
05:83:7c:80:ea:f0:12:87:f4:7f:29:a8:5c:c4:15:19:dc:6b:
36:7e:04:67:a9:36:c7:c0:5f:af:ae:32:5a:87:b3:f7:b7:70:
db:05:36:e7:a4:d6:3e:01:06:f3:56:9e:50:e7:74:8a:59:5d:
23:ee:3a:9d:b6:ce:b1:b2:00:b0:13:59:55:97:ce:96:9f:26:
4b:9d:61:c4:66:27:dc:e1:de:51:70:f1:bc:45:6e:4a:36:cd:
42:c7:38:87:8a:d0:11:a2:15:02:cf:ed:9d:55:6b:d4:58:4c:
56:73:75:6c:cf:7f:63:86:82:4a:6a:60:18:76:66:c0:c8:17:
d4:1d:57:b8:f1:79:18:99:30:7f:c6:e3:b3:d0:02:75:88:6a:
6a:47:6c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:56 2024 by rpki-client on console-fra.rpki-client.org