Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/f30d2b-2abd-4872-b17e-fbdf94a11e6f/1/4Bq9n78UpdBCZhY7B2B3b-ENSug.roa
File: 4Bq9n78UpdBCZhY7B2B3b-ENSug.roa (raw, json)
Hash identifier: /t+NDPaIidV4gDyrwUWPlYAu6xD2w9CRY6Ak8P7wNoI=
Subject key identifier: E0:1A:BD:9F:BF:14:A5:D0:42:66:16:3B:07:60:77:6F:E1:0D:4A:E8
Certificate issuer: /CN=73df91fb3c68ceb8650ee19a63ce40b3c592a56b
Certificate serial: 05F7ACB3
Authority key identifier: 73:DF:91:FB:3C:68:CE:B8:65:0E:E1:9A:63:CE:40:B3:C5:92:A5:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9-R-zxozrhlDuGaY85As8WSpWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/f30d2b-2abd-4872-b17e-fbdf94a11e6f/1/4Bq9n78UpdBCZhY7B2B3b-ENSug.roa
Signing time: Sat 01 Jan 2022 09:56:26 +0000
ROA not before: Sat 01 Jan 2022 09:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50655
IP address blocks: 178.20.168.0/21 maxlen: 21
178.20.174.0/24 maxlen: 24
2a00:1d38::/32 maxlen: 32
2a00:1d38:fa::/48 maxlen: 48
2a00:1d38:feed::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100117683 (0x5f7acb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73df91fb3c68ceb8650ee19a63ce40b3c592a56b
Validity
Not Before: Jan 1 09:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e01abd9fbf14a5d04266163b0760776fe10d4ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b7:a9:28:37:18:3c:2b:d9:71:48:f3:13:23:
14:79:21:f1:ae:e1:aa:45:f7:0c:56:dd:94:ed:fe:
03:4a:04:50:95:33:18:0a:fc:fb:1e:d8:2b:c5:1e:
c5:4d:9b:79:33:4d:13:ef:67:44:5c:0a:8c:bb:e2:
07:ca:72:0d:a3:fe:34:ba:eb:3b:26:d1:cc:70:21:
7e:36:80:17:f9:37:02:72:8d:6b:2d:03:39:10:3d:
21:ba:aa:98:1e:76:ce:9f:ec:c0:17:3a:9f:39:8c:
fb:f8:81:38:68:85:66:4e:8c:9a:3d:25:29:11:a8:
fe:23:e8:dd:62:34:4d:64:86:68:0a:65:1c:d1:ed:
13:75:a5:ff:24:f8:eb:57:f8:6e:38:31:0d:0d:8e:
a3:fc:aa:bd:d4:7b:0c:51:fe:f7:52:d8:d2:90:62:
63:86:57:c2:7c:49:8b:e5:bb:42:09:49:7e:57:04:
40:ea:e8:d8:2c:ce:45:82:83:7b:21:8e:11:a4:1a:
f6:83:b3:5e:84:8c:72:5f:1a:51:8d:c8:66:38:bb:
d7:1c:09:bd:5e:86:8c:2b:04:ad:47:4c:0d:c7:49:
19:f2:16:f0:c5:06:fe:a0:b9:7e:21:2b:71:3c:6d:
52:75:22:03:4c:9b:51:0b:c3:e2:0b:7b:76:99:19:
2a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1A:BD:9F:BF:14:A5:D0:42:66:16:3B:07:60:77:6F:E1:0D:4A:E8
X509v3 Authority Key Identifier:
keyid:73:DF:91:FB:3C:68:CE:B8:65:0E:E1:9A:63:CE:40:B3:C5:92:A5:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9-R-zxozrhlDuGaY85As8WSpWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f30d2b-2abd-4872-b17e-fbdf94a11e6f/1/4Bq9n78UpdBCZhY7B2B3b-ENSug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/f30d2b-2abd-4872-b17e-fbdf94a11e6f/1/c9-R-zxozrhlDuGaY85As8WSpWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.20.168.0/21
IPv6:
2a00:1d38::/32
Signature Algorithm: sha256WithRSAEncryption
6c:b0:e5:21:09:ba:71:30:e6:4f:59:bf:29:16:ec:ee:58:c1:
a4:26:85:76:d3:83:d8:eb:2a:f5:3f:b4:f6:db:83:15:d5:ab:
ff:60:04:a9:41:9d:73:f8:78:04:8c:07:19:27:de:af:4a:c6:
43:0b:1b:7f:e5:68:74:4a:ec:04:9f:d8:4e:20:5c:a9:c6:fc:
3e:4a:ff:03:0b:53:ce:29:a0:65:d9:ac:94:14:88:80:1e:b7:
e0:ae:4c:6b:7c:b3:c5:7b:54:69:c7:1d:e1:50:8a:cc:de:b1:
ad:ba:51:bc:35:59:99:18:b6:b3:35:d4:b3:5a:e3:40:ba:b6:
e2:70:40:fb:c2:a2:75:3d:4b:75:55:c0:2f:13:c9:5c:56:ea:
1f:14:e2:1c:bc:e9:a1:ba:8f:90:e3:e3:da:f2:83:da:03:f3:
c8:4c:12:db:43:c9:85:29:7b:ce:e0:89:8c:ef:91:16:ec:96:
66:d2:85:64:ff:05:a5:63:3b:88:35:01:54:6a:8c:0c:2d:7d:
e9:98:4e:d3:87:5c:39:30:d5:6c:9a:ed:1e:d6:e6:11:90:41:
23:73:68:ca:ba:0d:cb:70:1e:a0:43:de:ae:92:da:e4:b6:d8:
7b:3f:20:8e:90:fb:5c:16:c3:ae:36:79:8a:84:56:e5:ea:d7:
8f:d4:64:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:39 2024 by rpki-client on console-fra.rpki-client.org