Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/9KvGH6jA8Hz9c4-Bp1ePa8LZaTA.roa
File: 9KvGH6jA8Hz9c4-Bp1ePa8LZaTA.roa (raw, json)
Hash identifier: jHyHu23Z0WqawdmYux5HF2R/9a1Fq19OMkOJYgPGdMw=
Subject key identifier: F4:AB:C6:1F:A8:C0:F0:7C:FD:73:8F:81:A7:57:8F:6B:C2:D9:69:30
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 0593B2A8
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/9KvGH6jA8Hz9c4-Bp1ePa8LZaTA.roa
Signing time: Sat 01 Jan 2022 12:06:18 +0000
ROA not before: Sat 01 Jan 2022 12:06:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 178.171.0.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93565608 (0x593b2a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Jan 1 12:06:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4abc61fa8c0f07cfd738f81a7578f6bc2d96930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:aa:9f:93:99:71:56:af:c1:1f:a2:45:35:3e:
8c:15:56:72:3f:5e:21:68:b1:3f:bf:4a:06:10:47:
c7:cc:9b:bf:cb:ae:fb:0e:4e:8d:89:a2:14:d2:67:
7b:3f:cc:d5:e4:6d:9b:c9:a1:07:85:47:18:68:91:
49:ea:a8:2d:86:18:8c:3f:e3:d2:cb:14:75:88:e3:
96:ba:cc:1a:bc:74:c2:50:f7:5d:16:75:9e:d8:08:
97:5e:64:8d:1d:28:88:ba:d9:84:90:8c:55:42:6f:
43:e5:4b:50:b2:f9:88:b7:cf:c5:9d:d6:5d:5f:1f:
70:ac:85:a5:94:b4:10:05:30:78:16:78:04:7a:f1:
93:53:ca:eb:82:40:06:8e:94:92:e3:ca:e9:b9:43:
52:f4:c6:af:94:72:be:b5:3e:57:19:9c:9a:62:19:
67:91:fc:86:ca:57:19:48:d3:8b:a8:d7:e0:ec:a8:
7a:ab:70:25:de:da:2c:49:38:54:2e:d9:b4:bd:2f:
38:06:4a:d7:e5:0c:41:89:a1:62:49:4c:82:b5:f1:
08:0a:d6:1e:87:31:15:b3:2e:4f:3c:5d:e8:3e:0a:
74:4b:2b:30:51:88:58:a5:3b:4d:a7:db:75:9a:f5:
6d:3e:ee:21:61:6d:8c:c8:c0:15:1e:3b:86:a8:14:
65:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:AB:C6:1F:A8:C0:F0:7C:FD:73:8F:81:A7:57:8F:6B:C2:D9:69:30
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/9KvGH6jA8Hz9c4-Bp1ePa8LZaTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.171.0.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:f6:55:ab:e7:73:a7:72:7c:81:2a:40:af:6d:23:62:c5:0f:
67:b5:dc:de:cf:79:2e:f7:35:44:a5:ae:67:34:6f:5d:a1:d3:
89:63:f6:32:92:09:3b:1f:00:6b:49:ff:ad:b8:27:9c:53:57:
b6:6d:aa:e3:24:28:eb:76:76:38:f6:c4:3f:07:b5:ea:b9:24:
a6:db:8d:f3:24:d8:fe:15:1c:fc:31:83:6d:1e:da:aa:8b:8e:
1b:de:d3:57:98:5a:dc:44:38:3d:34:ff:39:f6:a0:b9:84:3d:
5b:15:9b:ce:3a:07:dc:85:7c:7e:30:df:6e:5f:a3:c6:3f:cd:
dc:6d:db:ea:f6:01:de:12:8f:59:28:93:c1:e9:01:6c:b4:ac:
cb:ce:b3:50:37:04:82:ad:81:72:05:03:9f:ed:fa:ae:73:35:
2c:4b:8e:12:ac:98:d8:e7:6a:d8:56:b6:fc:f1:39:98:b3:ba:
f8:6d:6a:76:97:45:47:38:91:b0:f3:ef:a9:83:c4:2a:8a:11:
b6:db:52:1e:84:82:6b:e3:3d:3d:cd:c4:23:19:0e:f1:3a:53:
b4:ec:f8:0a:e7:a6:75:d6:c2:2a:6d:65:9e:20:d3:01:53:e6:
08:6c:95:c7:1f:ae:ad:61:18:be:be:d1:31:43:45:80:c9:90:
f4:f0:01:ce
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBZOyqDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDExY2IwMTVkZjliYWFiNjEyMjhkYmJjZTE3ZGQ0ZTAwZTYzYzEzMB4XDTIyMDEw
MTEyMDYxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjRhYmM2MWZhOGMw
ZjA3Y2ZkNzM4ZjgxYTc1NzhmNmJjMmQ5NjkzMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMiqn5OZcVavwR+iRTU+jBVWcj9eIWixP79KBhBHx8ybv8uu
+w5OjYmiFNJnez/M1eRtm8mhB4VHGGiRSeqoLYYYjD/j0ssUdYjjlrrMGrx0wlD3
XRZ1ntgIl15kjR0oiLrZhJCMVUJvQ+VLULL5iLfPxZ3WXV8fcKyFpZS0EAUweBZ4
BHrxk1PK64JABo6UkuPK6blDUvTGr5RyvrU+VxmcmmIZZ5H8hspXGUjTi6jX4Oyo
eqtwJd7aLEk4VC7ZtL0vOAZK1+UMQYmhYklMgrXxCArWHocxFbMuTzxd6D4KdEsr
MFGIWKU7TafbdZr1bT7uIWFtjMjAFR47hqgUZRUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT0q8YfqMDwfP1zj4GnV49rwtlpMDAfBgNVHSMEGDAWgBSNEcsBXfm6q2Ei
jbvOF91OAOY8EzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pSSExBVjM1dXF0aElvMjd6aGZkVGdEbVBCTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvNWQ4OTE1LWM0NDgtNDBlNy04Y2FhLWJhNzcxZmZkMjY5Yy8x
LzlLdkdINmpBOEh6OWM0LUJwMWVQYThMWmFUQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
NWQ4OTE1LWM0NDgtNDBlNy04Y2FhLWJhNzcxZmZkMjY5Yy8xL2pSSExBVjM1dXF0
aElvMjd6aGZkVGdEbVBCTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBLKrADANBgkqhkiG9w0BAQsFAAOC
AQEAL/ZVq+dzp3J8gSpAr20jYsUPZ7Xc3s95Lvc1RKWuZzRvXaHTiWP2MpIJOx8A
a0n/rbgnnFNXtm2q4yQo63Z2OPbEPwe16rkkptuN8yTY/hUc/DGDbR7aqouOG97T
V5ha3EQ4PTT/OfaguYQ9WxWbzjoH3IV8fjDfbl+jxj/N3G3b6vYB3hKPWSiTwekB
bLSsy86zUDcEgq2BcgUDn+36rnM1LEuOEqyY2Odq2Fa2/PE5mLO6+G1qdpdFRziR
sPPvqYPEKooRtttSHoSCa+M9Pc3EIxkO8TpTtOz4CuemddbCKm1lniDTAVPmCGyV
xx+urWEYvr7RMUNFgMmQ9PABzg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:39 2024 by rpki-client on console-fra.rpki-client.org