Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/WRbThoOc-zOw5PYGmYBxiPTpnPk.roa
File: WRbThoOc-zOw5PYGmYBxiPTpnPk.roa (raw, json)
Hash identifier: p48yJ1vJUMp/X2WQe4uz7CCMsEPl1n6R4a+6ceVIZbM=
Subject key identifier: 59:16:D3:86:83:9C:FB:33:B0:E4:F6:06:99:80:71:88:F4:E9:9C:F9
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 063C31EB
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/WRbThoOc-zOw5PYGmYBxiPTpnPk.roa
Signing time: Thu 10 Mar 2022 13:46:24 +0000
ROA not before: Thu 10 Mar 2022 13:46:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 178.171.0.0/20 maxlen: 20
178.171.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104608235 (0x63c31eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Mar 10 13:46:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5916d386839cfb33b0e4f60699807188f4e99cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c3:6c:1d:49:60:b8:93:d0:d9:39:c3:fe:1a:
6a:1d:a7:b4:73:96:b7:39:db:13:f6:dc:5f:f3:e0:
c0:51:8c:f0:95:14:18:a1:12:60:a3:4c:20:d2:d9:
09:a3:07:b9:86:3e:df:32:6f:19:c6:c4:43:b7:3f:
56:00:07:26:39:6a:88:ec:c8:f3:44:8f:6d:a7:bf:
73:91:7b:e7:4e:a0:95:03:82:37:ff:3e:7c:20:16:
a9:c7:2c:e6:6a:6a:8e:d3:f0:21:2d:ef:29:88:28:
fc:12:c8:69:2c:55:bd:6d:97:0e:9e:47:ef:e9:d2:
98:36:50:9f:e5:fe:af:a3:49:95:59:41:ed:1e:dc:
83:45:c6:6b:21:86:3e:27:5c:62:00:22:67:57:6d:
64:43:90:ba:11:e1:39:08:e7:36:c6:5f:a3:e5:e3:
61:1f:bd:9f:b9:63:57:2a:d5:eb:69:91:4b:87:69:
3b:73:5f:8e:d1:83:9c:46:95:8c:5b:58:e8:f0:1e:
8f:4f:9c:67:9c:b0:97:97:89:70:cd:52:bf:35:8b:
51:0d:44:36:92:9d:58:17:e5:30:5e:28:7e:9d:4f:
e0:fd:1b:fa:a7:5b:e6:ad:df:de:e5:87:87:fe:ac:
79:ff:93:77:52:3e:5c:6b:4e:d1:0e:74:80:56:9c:
34:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:16:D3:86:83:9C:FB:33:B0:E4:F6:06:99:80:71:88:F4:E9:9C:F9
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/WRbThoOc-zOw5PYGmYBxiPTpnPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.171.0.0/20
178.171.119.0/24
Signature Algorithm: sha256WithRSAEncryption
28:dc:40:ca:91:f8:f7:51:60:0c:c7:e4:5a:47:8e:28:6a:74:
71:08:69:e2:2b:2a:e5:53:9d:27:3e:ae:d5:3d:8c:f9:fd:d8:
6d:84:a7:81:bb:4e:b3:64:56:af:83:a2:2f:5a:7a:84:75:e4:
e7:5d:df:9c:6d:02:5b:0a:5b:2c:d2:fb:9c:c9:03:8a:a7:70:
6c:bc:38:78:b5:88:56:10:d2:cd:31:59:32:9a:8d:05:ef:9f:
9a:5d:7b:fe:54:69:61:01:df:59:87:5e:b9:97:fe:bd:3c:0f:
fd:3f:54:f8:dd:80:e1:ea:fb:96:a6:9a:74:00:2a:39:65:aa:
3f:a9:ee:8b:de:ab:0e:94:c3:9e:65:be:d8:dd:30:10:d6:9c:
7b:8e:17:9c:c4:f6:69:ee:48:e1:04:0f:34:66:19:4c:14:04:
a0:3c:54:d5:09:1a:92:ab:46:3c:f6:00:f9:53:79:b7:c0:f0:
3e:7c:04:87:72:91:5c:c0:87:a2:0f:4f:e3:00:66:f5:46:47:
bd:13:2d:72:dc:7c:77:24:f5:74:e7:ee:76:5f:dc:c1:8f:71:
1f:71:91:91:2e:0b:bf:f6:99:87:26:73:58:11:19:d8:1b:c6:
98:85:2f:50:40:ea:66:20:c3:cc:1b:cb:ab:34:d2:3f:c3:b9:
2c:13:6f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:39 2024 by rpki-client on console-fra.rpki-client.org