Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/58Wb6hhJsYfOC9jZP429gJH4IPU.roa
File: 58Wb6hhJsYfOC9jZP429gJH4IPU.roa (raw, json)
Hash identifier: igndiCjoOyWx4FHxuqMPnpplrhWe7AEg/jQ8TsvmA4M=
Subject key identifier: E7:C5:9B:EA:18:49:B1:87:CE:0B:D8:D9:3F:8D:BD:80:91:F8:20:F5
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 06AE6E69
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/58Wb6hhJsYfOC9jZP429gJH4IPU.roa
Signing time: Mon 25 Apr 2022 15:01:46 +0000
ROA not before: Mon 25 Apr 2022 15:01:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 178.171.48.0/23 maxlen: 23
178.171.50.0/23 maxlen: 23
178.171.62.0/23 maxlen: 23
178.171.60.0/23 maxlen: 23
158.46.188.0/22 maxlen: 24
178.171.104.0/24 maxlen: 24
158.46.196.0/22 maxlen: 22
178.171.0.0/20 maxlen: 20
178.171.119.0/24 maxlen: 24
178.171.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112094825 (0x6ae6e69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Apr 25 15:01:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7c59bea1849b187ce0bd8d93f8dbd8091f820f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:69:71:68:fe:11:87:04:f0:4c:02:1d:fc:d2:
4b:3d:bb:08:b0:78:72:ba:32:d3:e0:c8:fb:11:6b:
eb:e7:39:cc:7b:ca:16:ef:9b:a5:f6:17:4f:0f:3a:
09:95:26:c3:8f:a6:da:9d:23:42:7a:aa:49:10:ef:
ce:5c:64:21:a4:ec:2f:1b:66:ac:18:92:64:ad:a0:
4d:0c:b9:4f:e1:79:f7:c2:60:39:9c:b5:89:9d:0e:
e3:58:b0:9e:2d:7b:ed:15:38:c8:13:ac:cd:68:5b:
ce:dc:3f:e6:48:4b:c2:1e:3e:61:23:2d:18:6a:93:
2d:83:82:bc:f1:b0:c1:62:59:55:e8:bf:45:58:39:
41:21:75:8c:ef:8c:5c:95:9f:0e:99:06:a5:00:4e:
01:5c:6d:6f:8b:4d:03:e3:84:6d:a9:a7:30:23:38:
94:65:8d:6e:5d:8d:ad:5d:c9:cc:f5:35:c1:80:fa:
97:fa:e5:a1:a8:2b:9f:9a:45:eb:7e:57:ab:c6:a6:
19:29:fc:0c:2b:51:23:44:ce:aa:f9:3c:f1:5c:92:
4b:bf:8b:e4:bf:4f:ba:56:a1:29:7e:d7:75:61:fd:
d4:b8:ce:88:28:d0:1e:1d:0d:5a:6a:8e:f7:28:5b:
a8:c5:36:bc:03:b7:b4:d6:f4:88:85:44:bb:57:3c:
d5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C5:9B:EA:18:49:B1:87:CE:0B:D8:D9:3F:8D:BD:80:91:F8:20:F5
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/58Wb6hhJsYfOC9jZP429gJH4IPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.46.188.0/22
158.46.196.0/22
178.171.0.0/20
178.171.20.0/22
178.171.48.0/22
178.171.60.0/22
178.171.104.0/24
178.171.119.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:b2:48:3a:79:db:ef:3b:65:0d:a5:52:5b:4e:37:b3:f3:9f:
fb:95:d0:a3:a6:1c:fa:5d:61:ff:b9:76:44:33:9c:0d:3c:5b:
6b:9d:a9:b4:4a:ec:33:80:ce:d0:39:99:e4:31:33:19:97:c4:
df:75:91:0a:e3:cd:2f:59:c3:ad:04:e9:82:85:49:18:f6:94:
fa:b5:99:3f:17:78:5f:7d:6a:66:a6:f3:5e:72:5b:ba:bc:c6:
6f:f3:ec:5c:03:ea:87:bb:3b:0a:f3:f0:94:41:ea:19:2d:0b:
e7:2e:ef:eb:4e:8c:43:f9:13:ad:9c:0c:1a:5b:90:a2:bd:80:
57:8e:e0:46:06:91:e8:dd:86:c0:2d:d1:6b:90:02:0d:c5:73:
ed:a8:2f:57:8f:54:a5:38:a2:48:fa:98:f8:8f:aa:b0:2b:c3:
3d:fc:83:0f:5f:bd:fc:19:b2:c7:f3:6a:48:17:cb:fe:01:72:
0a:30:88:d8:e2:b0:1b:a6:54:96:f4:44:95:fb:9f:5e:e5:de:
d9:ad:0c:c9:d7:91:f4:6b:80:02:04:cb:62:e3:d1:54:12:de:
94:0a:83:a9:2c:c4:91:5e:67:15:7f:a4:b2:ba:7a:3e:85:3d:
cc:ea:c9:20:51:f6:c5:bf:70:38:44:43:e2:4a:28:0f:6f:3f:
ab:2f:da:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:09 2024 by rpki-client on console-ams.rpki-client.org