Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/PU_QukifqSEtajLddXLACVLFPNE.roa
File: PU_QukifqSEtajLddXLACVLFPNE.roa (raw, json)
Hash identifier: tglu4rbH/KwOWwGGpZJy6OlF5Xi1MPKAzviBLj4LlM4=
Subject key identifier: 3D:4F:D0:BA:48:9F:A9:21:2D:6A:32:DD:75:72:C0:09:52:C5:3C:D1
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 06A98B6B
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/PU_QukifqSEtajLddXLACVLFPNE.roa
Signing time: Mon 25 Apr 2022 14:57:49 +0000
ROA not before: Mon 25 Apr 2022 14:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 178.171.119.0/24 maxlen: 24
178.171.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111774571 (0x6a98b6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Apr 25 14:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d4fd0ba489fa9212d6a32dd7572c00952c53cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7d:1f:72:8d:2a:a9:69:0f:cc:9a:d8:5c:23:
b3:d7:13:35:2e:b4:25:e9:fe:45:22:29:ec:c1:f0:
d4:5c:02:54:63:37:6d:d5:37:5d:30:f1:57:2f:8a:
93:63:be:4d:84:80:28:ec:e2:c4:58:a2:98:f9:be:
20:2e:08:c9:d8:d6:61:f6:c8:5a:90:1c:d3:9f:2e:
45:20:2d:b7:dc:07:c3:55:6f:e4:d8:02:eb:6f:3a:
d1:dc:96:4c:86:f3:38:d9:85:b5:5a:c8:21:c5:d1:
a6:09:85:87:f8:c0:07:05:72:38:7f:cb:c9:83:68:
9a:60:5e:ae:b6:75:cd:ed:81:49:ed:0c:db:70:5a:
63:b9:10:bd:51:09:1a:10:ad:06:fe:2c:d8:ca:d2:
f8:d0:60:c4:c0:c6:fa:53:e5:66:1a:b8:e0:c3:aa:
f0:24:cb:ed:96:6b:4c:de:cf:01:ee:7f:08:18:ce:
36:cf:72:c3:3b:d7:83:99:91:2b:89:21:c0:2a:b2:
a5:c3:16:8d:d3:cb:36:fd:a3:8f:a3:c6:9a:11:09:
51:c7:f5:25:09:e1:84:3e:3e:2f:4f:b1:53:5a:74:
cc:4d:2f:d9:ff:c7:78:5e:38:e2:0d:44:99:71:61:
4b:5e:69:1e:e5:2a:96:76:9d:f0:11:db:e2:02:39:
31:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4F:D0:BA:48:9F:A9:21:2D:6A:32:DD:75:72:C0:09:52:C5:3C:D1
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/PU_QukifqSEtajLddXLACVLFPNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.171.20.0/22
178.171.119.0/24
Signature Algorithm: sha256WithRSAEncryption
09:18:d8:0b:a2:51:f3:31:6e:d8:68:a2:2d:d1:98:b7:8d:65:
26:a2:3c:70:3e:12:ec:32:20:35:44:ff:ee:30:04:10:50:ff:
d5:a3:64:8d:8f:ef:25:8a:50:2d:6f:16:e0:97:0f:9e:b2:9a:
eb:5c:42:97:16:0e:19:4d:c8:4c:40:e4:f3:67:43:e6:8f:91:
2a:15:aa:8a:a0:10:00:33:3e:f2:1b:f3:1e:ae:08:38:a9:1b:
db:49:c4:a7:dd:62:35:68:74:ec:26:48:a8:fe:b6:b1:f6:43:
2f:11:d6:fd:af:9e:12:6d:71:8b:40:ce:42:d3:fe:02:e8:d5:
6a:07:23:4c:b0:6f:37:df:4e:39:66:cc:86:52:16:45:bd:09:
03:b8:44:b6:70:01:c9:9b:26:84:ad:49:2e:a1:2f:96:c3:53:
65:43:e8:e3:3c:bf:ca:19:f9:5e:db:34:04:b8:9c:80:c7:56:
89:eb:d2:91:74:b7:56:63:fc:0c:fd:66:35:6e:55:1a:28:71:
07:dc:85:a8:fa:91:80:7b:c2:64:f5:bc:75:e8:b5:11:10:ed:
b5:4e:3a:f7:f3:7c:90:be:ad:88:57:3d:a9:70:c3:d1:cd:ed:
ac:92:f8:25:36:d8:dc:8a:7f:1c:24:84:fa:84:c2:ea:e1:53:
c7:40:71:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:09 2024 by rpki-client on console-ams.rpki-client.org