Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/dd2cdd-9684-41ca-8015-9f150c8ea971/1/F7glJfp2rc1WofC2z-DRLXoaMxw.roa
File: F7glJfp2rc1WofC2z-DRLXoaMxw.roa (raw, json)
Hash identifier: 0WPaF3pDaJgnFVlRjtL1F2S5zZh6BfpAXPffUscML3s=
Subject key identifier: 17:B8:25:25:FA:76:AD:CD:56:A1:F0:B6:CF:E0:D1:2D:7A:1A:33:1C
Certificate issuer: /CN=c6abd373cc595060f1a33076b53e1162512c3cd7
Certificate serial: 16FECA41
Authority key identifier: C6:AB:D3:73:CC:59:50:60:F1:A3:30:76:B5:3E:11:62:51:2C:3C:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqvTc8xZUGDxozB2tT4RYlEsPNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/dd2cdd-9684-41ca-8015-9f150c8ea971/1/F7glJfp2rc1WofC2z-DRLXoaMxw.roa
Signing time: Sat 01 Jan 2022 05:05:54 +0000
ROA not before: Sat 01 Jan 2022 05:05:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52155
IP address blocks: 178.21.44.0/24 maxlen: 24
178.21.45.0/24 maxlen: 24
178.21.46.0/24 maxlen: 24
178.21.47.0/24 maxlen: 24
2a01:9800:8000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385796673 (0x16feca41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6abd373cc595060f1a33076b53e1162512c3cd7
Validity
Not Before: Jan 1 05:05:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17b82525fa76adcd56a1f0b6cfe0d12d7a1a331c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:17:fc:49:35:1c:06:57:3d:21:33:28:77:2f:
e9:71:83:7a:c2:80:17:3d:e9:47:ba:2f:1a:d3:4d:
ec:18:34:0c:ea:a2:83:81:a6:2b:c4:fa:36:07:67:
0c:af:44:f2:cf:1b:5a:58:c7:6d:39:9d:b5:84:3a:
f6:5c:dc:1d:85:96:84:42:24:5d:89:95:ed:7d:44:
b0:21:80:15:0d:9a:bb:02:7c:e0:a5:db:70:55:cb:
59:92:39:43:52:b3:b5:7b:c2:f3:52:7f:ab:90:83:
68:60:09:5f:93:60:64:a7:90:da:8c:d1:06:fa:af:
40:90:85:58:d7:d8:1b:ec:a3:c0:1b:0b:d0:10:7a:
11:ed:f3:73:cb:41:c8:72:b1:98:b2:b9:bc:10:d8:
41:50:46:08:49:c6:de:ae:ce:b9:b5:7f:78:8a:fa:
2a:b7:a4:1f:0d:d2:79:ad:4d:96:a6:2a:92:69:a4:
f7:a3:09:93:37:67:67:0c:97:b2:b0:b6:cc:6b:9f:
9b:e1:c2:ad:3c:bd:c3:29:93:15:fb:a5:4f:f5:4b:
b8:a9:5b:d9:73:d4:9a:6a:19:5b:ba:19:f6:57:5e:
8f:ed:69:28:a4:a9:14:b9:ec:fc:f9:5a:76:21:cc:
59:64:f8:40:48:46:f9:a3:a2:16:0e:de:bb:65:70:
68:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B8:25:25:FA:76:AD:CD:56:A1:F0:B6:CF:E0:D1:2D:7A:1A:33:1C
X509v3 Authority Key Identifier:
keyid:C6:AB:D3:73:CC:59:50:60:F1:A3:30:76:B5:3E:11:62:51:2C:3C:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqvTc8xZUGDxozB2tT4RYlEsPNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/dd2cdd-9684-41ca-8015-9f150c8ea971/1/F7glJfp2rc1WofC2z-DRLXoaMxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/dd2cdd-9684-41ca-8015-9f150c8ea971/1/xqvTc8xZUGDxozB2tT4RYlEsPNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.21.44.0/22
IPv6:
2a01:9800:8000::/36
Signature Algorithm: sha256WithRSAEncryption
11:c7:4d:3f:88:da:d7:84:f0:7a:73:cd:1f:64:65:bb:4e:12:
c4:78:31:28:d7:ad:9f:79:49:5f:de:51:56:95:e6:ee:2e:87:
16:bf:15:cd:27:b9:2b:da:17:66:71:86:bf:30:4c:59:c8:18:
7f:6c:72:71:71:28:ad:17:52:fa:86:53:aa:86:b4:93:a9:04:
17:fc:74:d6:80:a5:f8:ca:05:bb:5f:96:f1:8c:da:f9:ee:18:
ef:3e:3c:22:f0:9f:03:18:40:f3:c0:2b:18:48:2f:36:02:1a:
10:e7:bb:67:49:97:90:d2:66:c6:c9:8c:fd:de:a5:85:92:c3:
2b:6a:cf:36:ac:f2:f2:62:89:3f:db:5f:32:b4:2f:f1:11:fa:
98:77:3b:f9:d4:fc:a4:c1:cf:4f:28:a4:bd:5f:7d:d2:14:fa:
95:ee:79:67:6d:48:30:ff:50:b5:51:6a:01:18:1f:47:6e:b2:
c0:da:e7:8b:42:96:02:13:b6:2f:f4:d3:80:7e:3a:6f:74:1c:
e6:21:35:98:43:fc:f5:2c:44:42:f2:26:02:c4:c9:b5:46:4c:
ef:bb:3b:8e:47:6f:2e:3d:37:fd:33:ab:07:03:40:b7:cd:b8:
35:23:e8:41:7c:60:80:2c:ab:93:ce:da:0c:b2:fe:50:f4:a0:
c0:3d:f7:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:54 2024 by rpki-client on console-fra.rpki-client.org