Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/j-flQBpodrIub7xseWqhiSk95R0.roa
File: j-flQBpodrIub7xseWqhiSk95R0.roa (raw, json)
Hash identifier: vUKnIOgcKbRaHU9B+CopcVhwPFmo4EoyCfAxCu3bMq0=
Subject key identifier: 8F:E7:E5:40:1A:68:76:B2:2E:6F:BC:6C:79:6A:A1:89:29:3D:E5:1D
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 05927B7B
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/j-flQBpodrIub7xseWqhiSk95R0.roa
Signing time: Sat 01 Jan 2022 12:06:17 +0000
ROA not before: Sat 01 Jan 2022 12:06:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 178.171.104.0/24 maxlen: 24
158.46.196.0/22 maxlen: 22
178.171.0.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93485947 (0x5927b7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Jan 1 12:06:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fe7e5401a6876b22e6fbc6c796aa189293de51d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6d:14:8e:c3:44:7f:09:85:2d:bd:20:b6:7a:
a7:f4:1f:f9:35:12:5d:14:d9:9a:e2:9c:8f:15:77:
2a:08:d3:c8:9e:25:7c:e2:16:b2:b9:41:2e:70:7b:
ec:d9:9b:e8:65:27:40:8a:cb:b9:60:c3:02:32:a2:
be:c3:4d:03:c4:9d:d9:df:8b:1e:96:1e:a3:3e:07:
52:4d:13:ae:9f:cf:a8:bc:9a:62:6c:ec:28:98:a9:
e9:ae:c2:81:d2:c5:e8:dd:f8:54:6e:de:74:b7:40:
50:72:f7:9c:22:47:88:29:99:d3:3d:85:98:fc:75:
83:90:aa:f8:f2:1b:70:93:3f:a8:23:6c:85:f1:43:
22:07:a3:89:bf:34:b1:25:5e:95:a3:a7:aa:e9:7a:
84:52:19:68:d7:61:0a:44:a3:60:29:b4:ae:39:90:
3e:1b:6f:63:9e:dc:90:74:12:e3:04:26:02:61:da:
d9:0c:81:bf:48:ed:b8:98:ac:ad:9d:21:a1:e2:4f:
b7:44:c3:dc:78:dd:07:c9:b3:71:a1:0d:5c:cb:a6:
6c:b2:b6:b0:ea:ab:29:e2:53:65:f9:05:1f:f1:1d:
2d:cb:16:f6:97:38:5d:2d:40:ca:b1:e7:0e:83:d5:
da:a5:f3:97:68:41:56:3a:4c:82:1e:3d:0b:1c:a1:
f4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E7:E5:40:1A:68:76:B2:2E:6F:BC:6C:79:6A:A1:89:29:3D:E5:1D
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/j-flQBpodrIub7xseWqhiSk95R0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.46.196.0/22
178.171.0.0/20
178.171.104.0/24
Signature Algorithm: sha256WithRSAEncryption
99:c9:83:99:3a:e0:9e:11:7c:27:6c:68:ed:0c:98:72:ab:37:
68:d8:1e:30:d2:97:93:57:69:d2:97:2d:9c:fd:72:d6:90:49:
da:b2:fa:f0:16:6b:4f:c5:24:1a:98:98:6f:21:b4:db:9a:4e:
8a:f2:91:66:65:27:af:9b:cb:23:b1:76:0f:53:30:22:25:0d:
0c:b5:a8:e1:72:79:a5:83:72:9c:ee:60:0e:63:bc:5d:5c:3d:
a0:46:71:47:9a:e2:b2:77:76:be:6c:3a:1a:dd:b5:55:33:cb:
22:7d:56:57:49:8e:30:e6:2f:eb:db:82:f3:8c:d2:2f:83:d5:
cf:c0:4d:33:85:48:74:6e:b8:77:0a:0d:eb:f9:56:ca:27:46:
b3:5c:61:2e:ce:13:73:6d:26:c0:4c:77:fc:7b:44:55:8a:43:
2a:95:35:26:7f:95:b6:0b:79:3c:b8:67:e0:97:aa:c2:62:aa:
c8:2a:c2:4d:93:cb:23:8f:2f:5c:63:ce:ce:68:5c:b9:7a:8d:
22:1d:67:b1:56:32:b0:c9:3b:2a:5e:1c:d9:f8:e4:6b:f0:54:
41:61:54:d9:f7:e3:57:e9:13:3c:17:ae:69:86:c8:50:bc:c7:
e1:88:d6:a2:c2:23:e3:b9:8f:44:43:04:2c:d4:bb:b7:fa:24:
df:52:e0:52
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBZJ7ezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZDExY2IwMTVkZjliYWFiNjEyMjhkYmJjZTE3ZGQ0ZTAwZTYzYzEzMB4XDTIyMDEw
MTEyMDYxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGZlN2U1NDAxYTY4
NzZiMjJlNmZiYzZjNzk2YWExODkyOTNkZTUxZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALZtFI7DRH8JhS29ILZ6p/Qf+TUSXRTZmuKcjxV3KgjTyJ4l
fOIWsrlBLnB77Nmb6GUnQIrLuWDDAjKivsNNA8Sd2d+LHpYeoz4HUk0Trp/PqLya
YmzsKJip6a7CgdLF6N34VG7edLdAUHL3nCJHiCmZ0z2FmPx1g5Cq+PIbcJM/qCNs
hfFDIgejib80sSVelaOnqul6hFIZaNdhCkSjYCm0rjmQPhtvY57ckHQS4wQmAmHa
2QyBv0jtuJisrZ0hoeJPt0TD3HjdB8mzcaENXMumbLK2sOqrKeJTZfkFH/EdLcsW
9pc4XS1AyrHnDoPV2qXzl2hBVjpMgh49Cxyh9CECAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBSP5+VAGmh2si5vvGx5aqGJKT3lHTAfBgNVHSMEGDAWgBSNEcsBXfm6q2Ei
jbvOF91OAOY8EzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pSSExBVjM1dXF0aElvMjd6aGZkVGdEbVBCTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDYvNWQ4OTE1LWM0NDgtNDBlNy04Y2FhLWJhNzcxZmZkMjY5Yy8x
L2otZmxRQnBvZHJJdWI3eHNlV3FoaVNrOTVSMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYv
NWQ4OTE1LWM0NDgtNDBlNy04Y2FhLWJhNzcxZmZkMjY5Yy8xL2pSSExBVjM1dXF0
aElvMjd6aGZkVGdEbVBCTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAp4uxAMEBLKrAAMEALKraDANBgkq
hkiG9w0BAQsFAAOCAQEAmcmDmTrgnhF8J2xo7QyYcqs3aNgeMNKXk1dp0pctnP1y
1pBJ2rL68BZrT8UkGpiYbyG025pOivKRZmUnr5vLI7F2D1MwIiUNDLWo4XJ5pYNy
nO5gDmO8XVw9oEZxR5risnd2vmw6Gt21VTPLIn1WV0mOMOYv69uC84zSL4PVz8BN
M4VIdG64dwoN6/lWyidGs1xhLs4Tc20mwEx3/HtEVYpDKpU1Jn+Vtgt5PLhn4Jeq
wmKqyCrCTZPLI48vXGPOzmhcuXqNIh1nsVYysMk7Kl4c2fjka/BUQWFU2ffjV+kT
PBeuaYbIULzH4YjWosIj47mPREMELNS7t/ok31LgUg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:39 2024 by rpki-client on console-fra.rpki-client.org