Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/47eb7b-c3ba-478a-8178-404d31280e61/1/TUfyw8CDEz9aUD_rPGeF-PSAqiI.roa
File: TUfyw8CDEz9aUD_rPGeF-PSAqiI.roa (raw, json)
Hash identifier: vUk8Uub38r+b7oP9SEcY3JmCt6Ot0T2/WLP/9LMaFLI=
Subject key identifier: 4D:47:F2:C3:C0:83:13:3F:5A:50:3F:EB:3C:67:85:F8:F4:80:AA:22
Certificate issuer: /CN=09e4a8d6706d9d0f9c1091ca69951f4abd59d42b
Certificate serial: 034AD7B6
Authority key identifier: 09:E4:A8:D6:70:6D:9D:0F:9C:10:91:CA:69:95:1F:4A:BD:59:D4:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeSo1nBtnQ-cEJHKaZUfSr1Z1Cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/47eb7b-c3ba-478a-8178-404d31280e61/1/TUfyw8CDEz9aUD_rPGeF-PSAqiI.roa
Signing time: Sat 01 Jan 2022 06:02:00 +0000
ROA not before: Sat 01 Jan 2022 06:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203591
IP address blocks: 178.22.248.0/22 maxlen: 22
178.22.253.0/24 maxlen: 24
178.22.252.0/24 maxlen: 24
178.22.255.0/24 maxlen: 24
178.22.254.0/24 maxlen: 24
185.6.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55236534 (0x34ad7b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e4a8d6706d9d0f9c1091ca69951f4abd59d42b
Validity
Not Before: Jan 1 06:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d47f2c3c083133f5a503feb3c6785f8f480aa22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:23:79:45:89:6d:7a:dc:58:38:b4:86:7f:c7:
04:ea:45:3d:f3:49:b8:00:b7:d4:a5:d7:48:15:86:
42:0c:3d:f6:1e:7a:90:fc:c3:50:95:92:35:72:e1:
ef:93:9c:af:e3:0a:4c:46:70:84:a0:17:31:d6:2d:
83:0a:1c:ce:f2:97:48:93:a1:6e:b7:6b:c4:ae:3a:
c1:24:a2:95:ed:8c:cc:29:4c:3b:45:3f:4d:40:e9:
7d:04:e1:a0:9a:89:c5:f0:5b:0f:1f:d1:28:38:ad:
38:14:b1:00:7b:17:72:1f:dd:8b:28:10:ab:5a:27:
1b:d0:9f:af:81:e6:70:c3:f0:e1:24:9e:84:f9:8e:
1a:6f:61:a7:36:55:a5:21:5d:a3:b8:76:76:94:68:
2d:6f:3a:44:45:02:74:61:71:d4:9c:3d:33:ed:09:
01:17:de:d0:41:07:cf:be:e8:00:9c:70:be:97:6c:
2b:3b:63:c0:fb:0c:b1:e7:99:f7:00:4c:a4:29:6b:
b1:4d:95:98:bb:ec:97:6a:e1:65:1f:7f:af:8c:de:
bb:6e:e5:66:0a:3b:ae:7b:2b:97:20:b2:d1:4d:36:
39:33:ae:ca:9a:0d:5c:5e:dc:97:dd:74:31:a6:6a:
14:56:7e:99:6b:34:57:90:29:dd:4b:ad:3d:17:14:
8a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:47:F2:C3:C0:83:13:3F:5A:50:3F:EB:3C:67:85:F8:F4:80:AA:22
X509v3 Authority Key Identifier:
keyid:09:E4:A8:D6:70:6D:9D:0F:9C:10:91:CA:69:95:1F:4A:BD:59:D4:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeSo1nBtnQ-cEJHKaZUfSr1Z1Cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/47eb7b-c3ba-478a-8178-404d31280e61/1/TUfyw8CDEz9aUD_rPGeF-PSAqiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/47eb7b-c3ba-478a-8178-404d31280e61/1/CeSo1nBtnQ-cEJHKaZUfSr1Z1Cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.248.0/21
185.6.240.0/22
Signature Algorithm: sha256WithRSAEncryption
48:43:3b:8d:b9:09:99:5e:a9:98:4b:1a:0c:28:84:a2:b5:35:
2b:99:f9:d9:a9:70:f8:9d:86:3b:3a:1f:d3:7f:1a:96:f6:09:
a2:48:c0:f2:a3:2d:75:5d:39:6f:ab:a6:60:69:c3:1f:01:70:
a5:69:b7:4f:85:4a:21:0b:e3:88:89:7c:19:21:0e:c7:b8:9d:
b5:29:e4:81:c4:61:b2:02:88:02:aa:44:0d:da:fb:fa:34:26:
87:cc:80:c2:31:e1:c8:78:0b:69:f4:15:4a:78:54:ae:d1:61:
f0:52:3d:cc:b6:42:0f:ff:58:69:2e:2e:61:8d:9c:ab:1f:36:
39:2f:06:c9:cc:d1:38:da:c9:d4:cb:fa:08:31:23:6d:5a:ce:
8e:31:6a:20:78:76:2c:bc:3f:54:50:2d:da:93:82:dd:65:a6:
6d:e1:cd:fd:8a:e5:55:48:8c:09:ea:3e:bf:48:f8:21:31:92:
96:f4:fe:66:6b:85:c8:00:27:ae:8e:c0:41:6d:e3:4e:c1:83:
42:73:7f:3e:77:44:1a:8a:3b:c0:5b:d3:a1:af:13:fe:65:d0:
be:f7:dc:54:e7:2e:4b:7c:19:18:ac:1b:6f:40:88:3c:d2:3c:
0a:db:83:e4:21:01:54:7b:16:7a:57:69:c7:94:fe:48:23:13:
96:e6:62:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org