Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/imp1MlM9AMK3GsfYfM_G9OvcqGY.roa
File: imp1MlM9AMK3GsfYfM_G9OvcqGY.roa (raw, json)
Hash identifier: m9Z0j3P52jXPLYWUELyUt7+EZkKkuiFNCxHEfsE36l4=
Subject key identifier: 8A:6A:75:32:53:3D:00:C2:B7:1A:C7:D8:7C:CF:C6:F4:EB:DC:A8:66
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 06AC8856
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/imp1MlM9AMK3GsfYfM_G9OvcqGY.roa
Signing time: Mon 25 Apr 2022 15:00:10 +0000
ROA not before: Mon 25 Apr 2022 15:00:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 178.171.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111970390 (0x6ac8856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Apr 25 15:00:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a6a7532533d00c2b71ac7d87ccfc6f4ebdca866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f0:84:36:0a:71:e8:1d:03:f2:dc:a1:2a:90:
7f:dd:63:df:f8:c7:1a:05:b8:67:9d:2b:2f:2a:60:
dd:36:a7:a2:e0:fa:70:2b:aa:59:07:29:06:a7:9f:
9a:3d:e3:09:a8:7d:fe:8a:fb:0c:ef:e7:5a:4a:8d:
7a:90:bc:fc:59:4d:f7:59:ad:70:33:cf:5d:9b:34:
c4:5a:59:b9:19:91:a4:52:a0:31:51:f3:50:bc:cd:
97:26:8b:3c:72:68:79:e9:95:20:8a:61:ba:7a:96:
f1:d5:cd:22:57:c7:79:87:51:f1:5a:df:39:f8:2b:
00:7a:73:ac:61:f7:0e:55:6c:a7:a9:8b:29:de:b0:
ba:55:75:93:47:7d:d4:db:db:87:5f:c4:00:73:d8:
98:48:a6:1c:9b:2d:72:7f:72:12:50:b5:66:10:c7:
66:d2:3f:f8:14:1b:72:7b:ce:34:b3:f4:f1:94:5a:
0b:8c:1a:68:4a:fa:41:16:0d:47:21:f5:5e:02:04:
31:bd:01:6f:59:d1:94:d5:32:b4:5c:92:7f:75:04:
37:f4:15:c4:99:f5:64:cf:47:74:e3:c8:4b:82:16:
de:a7:95:ec:6a:85:aa:a8:93:65:13:83:53:bd:d8:
f2:8f:75:8a:6d:78:9a:71:73:cf:d1:c1:a1:1a:32:
fc:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:6A:75:32:53:3D:00:C2:B7:1A:C7:D8:7C:CF:C6:F4:EB:DC:A8:66
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/imp1MlM9AMK3GsfYfM_G9OvcqGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.171.119.0/24
Signature Algorithm: sha256WithRSAEncryption
af:46:9b:5c:5a:30:5f:f1:82:2d:4b:ec:a0:d0:e8:a6:a2:31:
71:73:78:38:05:3a:4f:1c:70:0d:81:5b:93:7e:6c:02:50:2c:
e4:b2:79:db:87:cd:a4:35:07:c2:6d:5f:dc:1d:41:09:0e:32:
01:96:91:8a:60:77:c4:d0:13:62:06:de:d2:20:7c:54:e6:2a:
79:ca:c9:5a:34:ac:e3:dc:f9:53:03:b6:e4:1f:26:b4:eb:c4:
be:b1:24:91:bd:d3:6c:1f:79:26:7c:1b:47:0e:91:04:c6:53:
5e:48:3b:0c:65:d4:c9:9f:34:9b:83:1f:64:d3:7a:39:8a:67:
d1:32:c5:3b:8a:f6:96:85:43:d7:2e:23:d8:79:b4:45:b9:5b:
b1:ce:bd:d4:24:ba:7e:20:24:db:6b:83:1a:a5:89:b4:54:02:
12:7b:16:49:d0:b5:63:f8:66:6f:80:22:d4:cc:7e:35:35:48:
82:e4:c3:f6:de:55:5b:55:3c:da:65:8a:03:bf:18:cd:51:15:
dc:a6:a1:57:ef:48:d5:1d:26:d9:7c:90:2f:61:e3:48:94:1a:
8a:be:a0:10:71:4b:89:12:16:20:94:db:0a:0a:2b:71:99:22:
87:76:99:91:ed:f2:06:42:a8:c2:2e:7c:71:67:27:32:a5:26:
18:22:99:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:04 2023 by rpki-client on console-ams.rpki-client.org