Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/7b45b9-990b-4614-a64e-0f52ea5229fc/1/axzuZ-jqxHHPkBewI-QiI6ONX4Q.roa
File: axzuZ-jqxHHPkBewI-QiI6ONX4Q.roa (raw, json)
Hash identifier: YIJuaKZnJF1V/g7odc/Eg4xquRrr2hdZFqe/zADBZbQ=
Subject key identifier: 6B:1C:EE:67:E8:EA:C4:71:CF:90:17:B0:23:E4:22:23:A3:8D:5F:84
Certificate issuer: /CN=9256db3487b4c5bacb300177057cf3174cf77477
Certificate serial: 28ED4834
Authority key identifier: 92:56:DB:34:87:B4:C5:BA:CB:30:01:77:05:7C:F3:17:4C:F7:74:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbbNIe0xbrLMAF3BXzzF0z3dHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/7b45b9-990b-4614-a64e-0f52ea5229fc/1/axzuZ-jqxHHPkBewI-QiI6ONX4Q.roa
Signing time: Sat 01 Jan 2022 13:55:51 +0000
ROA not before: Sat 01 Jan 2022 13:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51263
IP address blocks: 178.251.178.0/24 maxlen: 24
178.251.177.0/24 maxlen: 24
178.251.176.0/24 maxlen: 24
178.251.176.0/21 maxlen: 21
178.251.179.0/24 maxlen: 24
178.251.183.0/24 maxlen: 24
178.251.182.0/24 maxlen: 24
178.251.181.0/24 maxlen: 24
178.251.180.0/24 maxlen: 24
185.25.56.0/22 maxlen: 22
2a03:e240::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 686639156 (0x28ed4834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9256db3487b4c5bacb300177057cf3174cf77477
Validity
Not Before: Jan 1 13:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b1cee67e8eac471cf9017b023e42223a38d5f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ee:58:91:a9:6a:f8:84:e0:8f:07:9b:6e:bc:
e8:10:fa:4f:cf:de:37:fd:9d:f9:05:58:97:98:34:
85:a4:68:84:b6:2a:68:d4:b0:14:28:ec:12:21:a4:
dd:8e:83:7d:42:d1:b4:9c:e4:f6:b1:0a:cd:22:2c:
70:2a:c9:3a:02:54:39:0c:c2:d5:a4:94:3b:34:c1:
a3:ec:1a:9f:95:66:9d:b6:06:9f:b0:be:07:0e:b6:
5b:09:30:31:86:72:cb:66:8c:d9:f4:e8:78:61:ac:
22:d1:7c:a5:b9:9f:9b:0e:8a:23:aa:19:d1:89:be:
a7:2d:0e:41:84:2d:2d:a0:ed:b8:1c:48:e2:d7:4c:
7c:82:df:c4:2f:c1:e3:ab:8f:4e:52:48:f6:c1:21:
b7:02:23:d7:6c:1b:08:30:52:34:f4:07:15:91:4f:
81:a8:a4:9c:e5:52:c2:5f:c2:8d:b6:86:30:d1:4d:
46:a1:46:fd:60:2d:49:2f:86:50:bc:15:9e:41:46:
a0:a4:61:ea:e4:dd:b4:c6:75:25:aa:5c:29:00:81:
d2:1e:2d:33:b3:16:c0:39:64:ab:78:f7:7b:8d:12:
16:b1:4f:b8:fd:00:ed:f9:b7:4f:b2:cb:73:3b:e7:
4d:d3:8c:78:63:d3:fb:d2:b0:a5:73:87:c2:2c:4a:
e3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:1C:EE:67:E8:EA:C4:71:CF:90:17:B0:23:E4:22:23:A3:8D:5F:84
X509v3 Authority Key Identifier:
keyid:92:56:DB:34:87:B4:C5:BA:CB:30:01:77:05:7C:F3:17:4C:F7:74:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbbNIe0xbrLMAF3BXzzF0z3dHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7b45b9-990b-4614-a64e-0f52ea5229fc/1/axzuZ-jqxHHPkBewI-QiI6ONX4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7b45b9-990b-4614-a64e-0f52ea5229fc/1/klbbNIe0xbrLMAF3BXzzF0z3dHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.176.0/21
185.25.56.0/22
IPv6:
2a03:e240::/32
Signature Algorithm: sha256WithRSAEncryption
86:a2:d4:07:86:f7:eb:f8:cb:99:7c:dd:37:7b:24:91:c8:80:
3d:26:d5:3e:60:b0:ab:61:e3:1d:90:a5:8f:5c:cb:47:fd:bb:
c2:c1:af:b1:c0:da:ee:d3:08:fa:5f:bc:c6:ce:9b:5b:d6:96:
12:b6:30:1b:8e:7a:da:59:46:a4:90:b3:81:2c:1b:82:45:af:
36:14:65:dd:24:4a:f2:cc:6d:60:30:f7:c8:c5:a3:2a:3b:94:
6c:68:f3:83:9a:9a:ef:27:c5:76:ba:27:07:53:61:bd:5d:50:
cd:da:1c:2b:54:05:2d:58:86:2a:00:61:f9:e3:38:04:a1:e6:
5d:e3:81:c9:97:26:82:63:db:2b:ae:8e:2f:06:21:0a:52:3a:
96:5f:0e:2d:19:67:7d:73:a9:7d:44:19:88:28:0c:a5:0f:c2:
74:0b:75:b7:49:d4:15:e8:ee:66:88:98:45:92:12:c0:0d:20:
eb:97:da:e6:5f:9e:42:d3:2b:46:ba:00:da:f0:47:49:5b:c0:
75:6b:b3:65:66:76:87:fc:e8:ea:b5:e8:d9:0d:15:34:bf:c0:
78:91:ee:4c:75:83:21:ee:f8:b8:de:97:c8:91:45:09:dd:6f:
86:5f:82:ec:e4:6b:75:eb:1c:34:57:56:84:82:66:53:b6:fe:
53:de:04:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:12 2024 by rpki-client on console-fra.rpki-client.org