Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/cZqkuKOu2M2PO-iny4LvMnQHjo0.roa
File: cZqkuKOu2M2PO-iny4LvMnQHjo0.roa (raw, json)
Hash identifier: Uen3FHEX+h0YYqFFlXMZWoCwGVgxtprO5dRwq0HOWls=
Subject key identifier: 71:9A:A4:B8:A3:AE:D8:CD:8F:3B:E8:A7:CB:82:EF:32:74:07:8E:8D
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 0693703C
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/cZqkuKOu2M2PO-iny4LvMnQHjo0.roa
Signing time: Thu 14 Apr 2022 16:13:09 +0000
ROA not before: Thu 14 Apr 2022 16:13:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 178.171.48.0/23 maxlen: 23
178.171.50.0/23 maxlen: 23
178.171.62.0/23 maxlen: 23
178.171.60.0/23 maxlen: 23
178.171.104.0/24 maxlen: 24
158.46.196.0/22 maxlen: 22
178.171.0.0/20 maxlen: 20
178.171.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110325820 (0x693703c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Apr 14 16:13:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=719aa4b8a3aed8cd8f3be8a7cb82ef3274078e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d5:ba:bc:c2:39:7b:63:c2:5d:4d:49:e7:07:
7d:95:bb:c9:62:00:04:c9:2a:b0:05:ba:7d:42:52:
51:58:ba:c9:db:64:99:38:5f:21:ac:17:2e:48:b9:
aa:3f:1f:24:c4:9f:af:d4:4d:27:c2:a4:43:d3:77:
bd:a9:a3:2d:5c:c4:ed:67:3a:d3:ab:de:18:41:60:
63:c3:2d:dc:4b:25:56:63:60:b6:93:c2:85:3d:b5:
40:75:48:5a:46:aa:1a:a4:31:8a:a3:28:1f:81:79:
80:85:de:ba:d8:c8:03:7c:70:58:38:2e:db:ec:cb:
6a:22:1b:e1:80:6e:46:6e:26:b1:d0:b4:75:d0:4f:
a8:10:5c:cb:fb:77:e8:e7:bc:51:cf:a8:72:9f:e0:
a6:ce:21:97:32:d3:5b:66:74:a1:80:5b:da:4e:50:
1a:43:6f:64:4c:98:dc:e7:61:57:c6:c9:e5:65:4f:
eb:ba:d3:ba:82:00:7e:41:27:3d:34:e0:d3:d5:25:
00:0b:25:b5:a6:ae:06:4f:b0:8e:96:1e:96:18:2f:
b4:99:72:74:c8:a7:b9:50:10:f2:db:01:d4:21:4e:
e1:9a:28:ec:fa:b2:e2:8e:68:16:5c:66:4b:08:91:
ca:3f:03:72:2b:f6:a3:2a:6c:07:8f:ff:51:23:68:
6e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:9A:A4:B8:A3:AE:D8:CD:8F:3B:E8:A7:CB:82:EF:32:74:07:8E:8D
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/cZqkuKOu2M2PO-iny4LvMnQHjo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.46.196.0/22
178.171.0.0/20
178.171.48.0/22
178.171.60.0/22
178.171.104.0/24
178.171.119.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:52:a1:4f:62:46:20:e7:9d:03:27:eb:63:4e:3a:9d:e5:66:
e2:8d:c8:9f:6d:0e:c4:51:a9:b7:50:ba:b8:5d:ba:db:96:9a:
f0:fe:f3:8d:1a:da:cb:90:4f:d0:de:08:61:eb:d2:5d:aa:7e:
15:4b:b6:13:1d:0c:a4:89:ea:09:77:76:c5:70:d1:19:fe:2b:
ff:c5:58:ac:9b:a9:be:a2:b8:ac:e6:51:18:f3:fd:f9:b5:23:
d5:f9:6b:6f:f9:aa:42:d6:0b:cf:eb:1a:e6:88:c2:73:14:90:
69:6a:3b:15:ef:d0:b0:49:0a:15:bd:fb:6b:80:61:9b:a6:1e:
74:4a:8d:75:30:c4:5d:2f:d6:57:4d:d8:77:11:07:dc:e6:78:
27:1a:92:a6:8d:ce:35:ba:77:f6:f5:e0:70:5d:84:5c:54:12:
72:51:cd:3e:7c:d0:01:62:8e:f0:be:4e:8c:1b:5b:18:05:7a:
22:c8:18:60:8e:13:35:fc:5b:1a:39:8d:05:94:de:85:aa:69:
22:39:33:a8:7a:ba:01:4a:e7:b8:63:44:b0:e4:82:46:e1:b8:
37:54:64:c1:54:c1:ff:ff:32:e2:6f:c9:78:af:39:a3:13:b0:
f7:bb:07:3b:c5:c5:83:fa:5f:fc:f3:58:98:0e:29:bf:e4:cf:
f1:07:cb:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:39 2024 by rpki-client on console-fra.rpki-client.org