Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/uggBNBo_BNJT_sRIV7ki0bKJjHo.roa
File: uggBNBo_BNJT_sRIV7ki0bKJjHo.roa (raw, json)
Hash identifier: DAKcaf7/z90QBWEKQXjiy7RBnUf3DGPzt/t1QiQnc0k=
Subject key identifier: BA:08:01:34:1A:3F:04:D2:53:FE:C4:48:57:B9:22:D1:B2:89:8C:7A
Certificate issuer: /CN=a1b0477f9d09a2c74f4c459e80b729afeeb312d4
Certificate serial: 0182AB43B6FE50421AAC60452A6C2DDD509E
Authority key identifier: A1:B0:47:7F:9D:09:A2:C7:4F:4C:45:9E:80:B7:29:AF:EE:B3:12:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obBHf50JosdPTEWegLcpr-6zEtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/uggBNBo_BNJT_sRIV7ki0bKJjHo.roa
Signing time: Wed 17 Aug 2022 10:05:17 +0000
ROA not before: Wed 17 Aug 2022 10:05:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210085
IP address blocks: 178.17.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ab:43:b6:fe:50:42:1a:ac:60:45:2a:6c:2d:dd:50:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b0477f9d09a2c74f4c459e80b729afeeb312d4
Validity
Not Before: Aug 17 10:05:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba0801341a3f04d253fec44857b922d1b2898c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d7:cf:05:2b:3b:02:1b:74:cd:0a:21:74:54:
19:8f:d5:a8:11:4c:6d:16:1d:39:a9:3d:ce:73:28:
09:83:c3:61:36:45:88:3c:b1:7a:92:0f:53:4c:cb:
23:6d:9f:de:07:27:33:29:e9:2f:88:13:9c:13:61:
1e:f9:09:27:01:60:29:09:d2:34:77:ff:0f:99:94:
12:c0:53:6b:d4:5b:74:78:9e:8e:ba:26:0b:22:dd:
81:8b:e5:d8:28:c7:ee:a8:eb:43:cc:ad:e1:ef:e5:
50:58:b0:b7:21:51:60:db:3f:27:9d:f3:10:83:d2:
f1:27:93:59:50:af:58:92:30:08:c6:c5:ad:fc:31:
eb:ec:64:62:58:59:89:d1:f1:ca:12:fc:f0:d6:5b:
a2:28:f0:a9:85:7b:90:e2:80:48:b7:f6:26:84:40:
c3:04:29:0e:37:de:3b:20:fc:92:26:87:20:a0:b8:
8d:7c:4b:f7:db:ba:62:d7:a4:29:dd:2d:4d:30:e3:
24:b8:56:de:16:09:87:fa:15:ba:3b:08:ca:c6:1c:
e2:c7:c8:a1:d3:5e:40:7d:c1:45:b0:d0:d6:51:87:
ed:b9:98:0d:f8:b1:37:24:4b:73:67:35:36:da:c4:
e7:c3:62:0e:d9:27:9d:fc:81:e8:4c:c8:d6:9e:75:
eb:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:08:01:34:1A:3F:04:D2:53:FE:C4:48:57:B9:22:D1:B2:89:8C:7A
X509v3 Authority Key Identifier:
keyid:A1:B0:47:7F:9D:09:A2:C7:4F:4C:45:9E:80:B7:29:AF:EE:B3:12:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obBHf50JosdPTEWegLcpr-6zEtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/uggBNBo_BNJT_sRIV7ki0bKJjHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/obBHf50JosdPTEWegLcpr-6zEtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.17.216.0/24
Signature Algorithm: sha256WithRSAEncryption
03:6d:5b:48:d5:6e:ce:c4:cd:2e:80:04:40:ca:79:5b:dc:50:
f6:17:cf:92:62:0b:31:d2:4c:55:da:8b:2d:87:93:5a:53:2d:
c8:f1:aa:db:7f:35:5e:95:e5:98:20:a1:26:20:86:e0:15:ce:
4b:59:1a:0e:04:b8:93:48:0e:67:73:53:c7:2d:ce:0a:f9:78:
50:0b:59:12:26:e6:84:59:3e:5a:f0:73:5b:34:e2:3a:45:61:
0f:69:68:04:20:33:80:c0:ed:2b:81:66:e0:55:1f:9f:0c:90:
67:5d:42:fa:0d:06:fa:17:7d:2a:c0:fb:c4:a4:01:a6:96:50:
4c:0b:aa:3d:45:ff:dd:87:ff:39:74:50:92:39:85:b6:5c:35:
0e:fd:5e:09:24:63:6f:3b:cd:ea:ac:71:25:3f:7d:68:f1:56:
68:11:57:9e:e8:52:b0:e6:8a:5d:f0:a1:53:f1:4c:d8:48:58:
f9:72:a0:89:4a:e0:aa:86:1a:40:0b:bd:6b:b7:55:ae:19:f8:
11:03:e7:cd:a7:32:31:42:6a:58:6b:59:6b:d9:54:e9:00:9f:
de:39:b4:d5:c5:70:3f:ba:94:12:6d:1e:28:82:e8:08:75:98:
d9:fa:f1:ab:83:17:3c:85:de:b5:2d:76:01:96:e9:4b:45:65:
be:22:a5:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org