Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/cSvCwQpMnV7nJdigkKYYTHBv5bc.roa
File: cSvCwQpMnV7nJdigkKYYTHBv5bc.roa (raw, json)
Hash identifier: qc2Eg/kasgjNDrlEvwgx8+MisMJEzbjH2hx9PDbP8RI=
Subject key identifier: 71:2B:C2:C1:0A:4C:9D:5E:E7:25:D8:A0:90:A6:18:4C:70:6F:E5:B7
Certificate issuer: /CN=5814dbbab63e9117d0b02cbab56639e6fd0d40d9
Certificate serial: 350BF979
Authority key identifier: 58:14:DB:BA:B6:3E:91:17:D0:B0:2C:BA:B5:66:39:E6:FD:0D:40:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WBTburY-kRfQsCy6tWY55v0NQNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/cSvCwQpMnV7nJdigkKYYTHBv5bc.roa
Signing time: Sat 01 Jan 2022 06:59:06 +0000
ROA not before: Sat 01 Jan 2022 06:59:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203258
IP address blocks: 178.21.33.0/24 maxlen: 24
178.21.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 889977209 (0x350bf979)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5814dbbab63e9117d0b02cbab56639e6fd0d40d9
Validity
Not Before: Jan 1 06:59:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=712bc2c10a4c9d5ee725d8a090a6184c706fe5b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2e:a0:86:a3:31:01:02:cc:fa:71:0a:ec:8a:
87:7b:73:3b:35:57:46:e7:d0:4e:a6:6b:21:40:7d:
e1:7c:a8:92:4c:9f:08:30:fc:f5:af:5c:74:ee:65:
f8:50:40:c2:a9:bd:8b:55:7c:a6:b5:29:e8:99:28:
a8:16:72:d7:f7:9d:7e:fd:70:38:68:51:64:34:34:
1e:c2:3f:df:88:bd:c6:7a:af:29:24:70:26:7d:b0:
24:61:b7:5c:e3:a7:90:67:2f:03:13:f5:0d:9c:3e:
08:56:f7:bd:bf:c0:d5:3b:4b:8b:c7:5f:ba:86:6f:
c1:70:76:3a:cd:a2:75:32:17:93:6d:ee:d4:6a:44:
3d:94:58:e8:bf:57:65:15:f6:28:dd:38:86:91:74:
5c:f9:0d:ca:20:5b:f5:6e:8f:1b:12:82:60:40:24:
f1:2d:8e:5f:10:c8:ba:45:3e:d8:0f:be:1c:3e:47:
26:d9:d0:cd:30:ba:ff:4e:84:99:7a:88:cb:58:d8:
b3:58:b5:99:3b:77:fc:8c:37:8e:02:97:8a:2c:53:
2a:51:08:10:34:02:34:8e:ca:32:2f:ff:21:fe:5e:
63:a0:54:3f:1b:3e:bb:13:e9:0d:b6:f0:40:b2:33:
14:e6:e0:29:6c:b4:5a:f3:3f:14:10:b9:66:4e:56:
a2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:2B:C2:C1:0A:4C:9D:5E:E7:25:D8:A0:90:A6:18:4C:70:6F:E5:B7
X509v3 Authority Key Identifier:
keyid:58:14:DB:BA:B6:3E:91:17:D0:B0:2C:BA:B5:66:39:E6:FD:0D:40:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WBTburY-kRfQsCy6tWY55v0NQNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/cSvCwQpMnV7nJdigkKYYTHBv5bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/c22c3f-91e6-45fb-af76-68a8089701f4/1/WBTburY-kRfQsCy6tWY55v0NQNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.21.32.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:c1:53:92:b8:72:c3:15:ad:a5:91:6b:76:ee:7c:ce:5a:6e:
9e:e9:5f:94:1c:e1:8c:33:9b:de:d9:9c:da:c1:af:2a:29:e2:
d9:99:67:90:28:9f:be:b7:81:a4:6b:ff:9e:29:32:63:03:66:
9f:d4:ca:83:61:2d:a1:f1:ec:cc:17:86:17:33:9c:2b:02:e1:
68:d8:d3:c6:c7:42:a0:c7:15:72:f4:97:e1:46:6a:52:2f:ae:
df:f8:30:88:0f:95:de:9a:17:95:24:38:d5:43:02:75:b4:fb:
05:a7:94:91:12:21:c0:ad:f6:d4:fe:a5:dc:ed:c7:f8:5e:9b:
4f:1c:26:20:82:e7:7d:39:bc:2c:86:1a:bd:fc:14:fa:c0:5e:
ae:3c:a4:82:39:a9:1a:d2:ba:5c:7a:f6:17:23:d7:94:1b:e0:
2e:2d:ce:c8:43:3e:86:f9:10:a3:fc:ff:cb:8f:e7:fd:bf:e3:
3d:11:25:de:69:0f:66:0c:a1:f1:e1:83:b8:9d:5a:b8:5f:0d:
5f:67:72:47:3e:af:8e:56:f3:dc:49:60:b5:e3:1a:b0:d2:28:
9e:da:c8:d4:28:8b:11:6e:be:f2:23:61:86:4b:f5:ce:7f:d8:
48:64:c7:2d:a1:81:13:53:5e:59:d9:e7:47:9c:d3:64:d3:bc:
e3:7d:15:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:23 2024 by rpki-client on console-fra.rpki-client.org