Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/7b8d5d-13e6-4d2b-bce3-4980fca8d277/1/vg9T4KIbswYdSyZhz0tZp9XjjOo.roa
File: vg9T4KIbswYdSyZhz0tZp9XjjOo.roa (raw, json)
Hash identifier: yKBMm43CCdDwxIG77DbpD/zFGqUyIyTrTuOzisU0qs0=
Subject key identifier: BE:0F:53:E0:A2:1B:B3:06:1D:4B:26:61:CF:4B:59:A7:D5:E3:8C:EA
Certificate issuer: /CN=cd7f8789490107097b20cfa6e3d459f136274ba4
Certificate serial: 1B498514
Authority key identifier: CD:7F:87:89:49:01:07:09:7B:20:CF:A6:E3:D4:59:F1:36:27:4B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zX-HiUkBBwl7IM-m49RZ8TYnS6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/7b8d5d-13e6-4d2b-bce3-4980fca8d277/1/vg9T4KIbswYdSyZhz0tZp9XjjOo.roa
Signing time: Sat 01 Jan 2022 06:59:20 +0000
ROA not before: Sat 01 Jan 2022 06:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44099
IP address blocks: 178.248.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457803028 (0x1b498514)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd7f8789490107097b20cfa6e3d459f136274ba4
Validity
Not Before: Jan 1 06:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be0f53e0a21bb3061d4b2661cf4b59a7d5e38cea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:55:1f:5a:3b:f7:be:e6:2b:3a:ba:6c:86:83:
af:61:f9:11:3a:ea:22:1c:db:8e:2e:45:96:39:2b:
27:3c:33:f9:25:fe:3e:b3:a4:e1:1c:8e:58:d5:55:
71:7e:c4:70:01:df:8b:ae:95:01:f1:a5:98:00:19:
e1:26:8d:46:61:77:9a:66:31:92:f2:5b:14:1b:32:
09:73:62:e2:3f:9b:d1:23:23:f4:d6:b4:f5:eb:2a:
ff:be:d5:87:e5:6c:ca:11:cd:1b:42:18:4b:98:10:
e4:79:bc:ec:aa:fb:25:7c:d2:59:d7:cb:4a:a2:b8:
a6:cb:63:fd:8a:85:56:df:c6:5a:3d:44:60:13:b8:
52:96:6c:3e:4b:2b:f4:dd:db:07:31:43:e5:38:fb:
14:ce:e7:72:8e:bd:82:06:fd:2d:a6:70:10:ee:6b:
40:66:97:19:d9:17:cc:67:6a:01:bf:01:08:f5:bb:
8f:08:c2:a5:59:92:4a:75:9a:f6:56:b6:7f:0b:61:
27:1b:02:43:da:9d:04:28:db:fe:fc:71:df:49:98:
b0:6a:8c:3e:75:4b:ba:24:ef:ff:1d:9d:1c:05:5c:
e7:5f:d7:a5:99:16:81:e7:69:cd:64:c2:d7:27:47:
e0:29:b8:78:0c:d2:f9:47:83:0d:ed:c4:5e:7b:fd:
09:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0F:53:E0:A2:1B:B3:06:1D:4B:26:61:CF:4B:59:A7:D5:E3:8C:EA
X509v3 Authority Key Identifier:
keyid:CD:7F:87:89:49:01:07:09:7B:20:CF:A6:E3:D4:59:F1:36:27:4B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zX-HiUkBBwl7IM-m49RZ8TYnS6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7b8d5d-13e6-4d2b-bce3-4980fca8d277/1/vg9T4KIbswYdSyZhz0tZp9XjjOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7b8d5d-13e6-4d2b-bce3-4980fca8d277/1/zX-HiUkBBwl7IM-m49RZ8TYnS6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.184.0/21
Signature Algorithm: sha256WithRSAEncryption
5e:82:b7:12:74:08:fa:5d:1b:61:8c:99:7d:8b:55:d8:12:7e:
ba:68:83:bf:ce:f0:77:f0:45:c7:c3:52:8a:1f:4f:4b:74:71:
e0:ee:3a:ba:bb:59:b5:68:0e:dc:3c:d6:cb:70:f9:0e:8b:a1:
ea:08:52:e2:7c:17:c1:b6:71:57:c0:ee:5f:68:ca:d0:80:9e:
3d:59:20:bc:82:95:6e:9e:28:e3:ae:e0:8f:43:99:48:64:fd:
2d:89:6b:e2:62:10:32:89:80:3c:07:9d:a5:f3:59:b4:06:aa:
ee:23:d8:1d:1d:1a:29:7e:a0:00:41:a6:f2:34:76:2b:57:e5:
ec:b7:03:04:ed:03:97:9d:91:a3:16:20:a3:0c:5a:0e:88:a6:
5c:57:87:28:e8:67:34:a1:8d:8e:2a:3d:86:40:f4:9b:4a:72:
cb:34:c6:56:54:1c:6d:08:94:f2:16:94:74:d6:c1:9e:97:cb:
65:45:46:7a:a1:17:2a:b4:92:db:c3:30:85:fa:6e:86:2e:32:
f1:07:38:c5:5e:d3:02:64:60:44:f4:b1:18:b0:bb:3f:bf:4a:
38:96:16:27:37:af:11:72:63:22:70:90:82:84:b8:de:ba:4e:
93:c9:0b:8a:75:33:e3:20:d2:32:59:0d:67:86:dd:b5:8d:7c:
06:3f:4b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:06 2024 by rpki-client on console-fra.rpki-client.org