Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/ighNdQkYYXpUwjEMGIop1QjzLAA.roa
File: ighNdQkYYXpUwjEMGIop1QjzLAA.roa (raw, json)
Hash identifier: DRg7uNwBEbgNH8CT4qdT+cqv7j2plKCjiJt3Es8fugc=
Subject key identifier: 8A:08:4D:75:09:18:61:7A:54:C2:31:0C:18:8A:29:D5:08:F3:2C:00
Certificate issuer: /CN=374e2729b17369890a1512f643cd08e4ba2ff414
Certificate serial: 0185431670548EF9984EDEB47CF3F19E83A7
Authority key identifier: 37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/ighNdQkYYXpUwjEMGIop1QjzLAA.roa
Signing time: Sat 24 Dec 2022 07:43:42 +0000
ROA not before: Sat 24 Dec 2022 07:43:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14576
IP address blocks: 178.20.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:43:16:70:54:8e:f9:98:4e:de:b4:7c:f3:f1:9e:83:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374e2729b17369890a1512f643cd08e4ba2ff414
Validity
Not Before: Dec 24 07:43:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a084d750918617a54c2310c188a29d508f32c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:92:4b:f2:ba:54:61:07:d8:45:93:ba:de:64:
e0:e6:f6:fb:3f:54:98:65:61:c9:83:e2:5d:5f:76:
0b:62:46:b3:d7:13:fa:02:c1:d8:33:01:a1:37:8a:
8a:c2:7d:fe:07:1c:13:6d:14:b0:42:01:dc:41:11:
98:94:91:f8:d8:1b:95:65:60:bc:31:6c:13:df:31:
2c:e4:27:97:33:f6:28:9f:af:65:c2:10:32:7d:bf:
3f:5c:93:ad:24:11:9a:6c:cc:83:d0:c3:fa:a5:48:
76:fe:f6:f4:b7:1d:c7:cf:57:e4:be:9a:5d:0f:72:
31:87:17:27:5a:30:0a:b7:2e:23:7e:9e:ba:2f:c5:
5e:59:c1:5e:75:59:a3:72:84:f0:f8:a4:c3:e4:d5:
9c:79:fc:6d:6d:ff:2c:ba:34:ea:37:05:ab:78:75:
5a:03:cd:88:4c:87:3d:e0:34:21:23:52:53:2d:c0:
af:7b:80:95:fc:af:6a:98:d5:5b:d6:5e:4c:0b:6d:
b4:fd:45:9a:e2:87:71:d6:d4:60:1a:24:79:ce:29:
d2:d6:c2:96:da:8a:bd:96:d3:63:42:dc:0d:10:df:
16:77:6c:7f:b3:16:72:89:ab:81:b8:72:ca:4e:32:
92:b4:bd:8d:9b:ee:24:f8:de:61:7f:3f:c2:32:e8:
fc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:08:4D:75:09:18:61:7A:54:C2:31:0C:18:8A:29:D5:08:F3:2C:00
X509v3 Authority Key Identifier:
keyid:37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/ighNdQkYYXpUwjEMGIop1QjzLAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.20.212.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:4f:a5:44:40:55:5d:14:f3:68:5b:ba:6b:9e:f0:8f:56:56:
d6:c5:02:d6:e0:ac:37:5c:8d:83:89:81:ef:ed:d2:1a:0c:6c:
ed:71:50:2f:a5:0f:0a:45:78:3b:c2:5b:65:7f:c1:64:ea:86:
5c:5b:67:36:24:09:b0:60:4a:f3:61:a6:4b:3a:c7:b3:87:74:
c1:2d:5d:d1:01:22:09:8c:0c:e4:1d:4c:40:4b:a7:26:7c:16:
d2:e6:d3:45:ee:99:83:0b:15:a3:f5:b5:f4:1a:97:62:c2:4b:
ad:99:62:cc:c3:54:49:38:78:2a:aa:37:99:c3:d3:cd:a9:11:
7c:04:c5:44:bb:b0:54:04:c4:0d:cc:fc:61:30:e5:86:72:d9:
1b:0e:3b:4f:91:8c:83:39:56:7a:32:e8:17:a4:d3:b3:92:18:
74:80:93:e5:0d:61:eb:83:68:81:fb:bf:f0:6a:f8:b8:e6:2e:
1e:90:86:89:e0:34:76:39:33:44:18:05:6b:fb:3e:67:dd:0b:
f6:fb:d8:30:c8:0a:1a:3f:d0:6b:a1:18:cf:a5:b4:50:04:7f:
58:a3:ee:f7:33:0f:f4:38:13:db:59:3e:e6:2a:52:c0:ed:6f:
a1:57:c2:e4:c1:ec:5e:ff:c8:aa:3b:ed:03:ec:5c:80:c7:a8:
a3:0f:48:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:41 2024 by rpki-client on console-fra.rpki-client.org