Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/XCOg7E5McLh-mDf0-MZmbWwS_z4.roa
File: XCOg7E5McLh-mDf0-MZmbWwS_z4.roa (raw, json)
Hash identifier: o/b4PWT1QxZl9pRlmamdMnwZTFRtw7xwBoozDrjXCv0=
Subject key identifier: 5C:23:A0:EC:4E:4C:70:B8:7E:98:37:F4:F8:C6:66:6D:6C:12:FF:3E
Certificate issuer: /CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Certificate serial: 02081C
Authority key identifier: B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/XCOg7E5McLh-mDf0-MZmbWwS_z4.roa
Signing time: Fri 10 Jun 2022 07:48:02 +0000
ROA not before: Fri 10 Jun 2022 07:48:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50553
IP address blocks: 178.219.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133148 (0x2081c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Validity
Not Before: Jun 10 07:48:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c23a0ec4e4c70b87e9837f4f8c6666d6c12ff3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2e:23:7f:70:fe:ba:fc:44:e9:13:2b:16:30:
a8:b4:27:8f:fb:6c:9d:7e:ec:07:04:e8:32:ff:cb:
95:f9:8e:13:f8:d8:7f:85:1b:4b:41:6f:cf:14:b1:
c6:6b:65:5d:d9:65:9b:bb:4e:a8:25:59:28:f6:04:
c6:1b:4d:6b:9f:e0:2f:cf:d2:52:49:8d:61:ac:cc:
2b:81:90:af:35:14:da:90:0f:dc:87:c5:56:d9:bc:
15:86:04:87:10:5c:61:8b:00:a4:f9:d4:80:67:e0:
81:e2:ef:2d:00:6b:24:e1:56:6e:d3:14:3b:b0:72:
f1:35:57:1c:01:d0:ea:9c:43:15:30:a3:bf:e6:3d:
5e:ec:8d:48:cc:d5:fc:a5:0d:28:50:8b:24:26:74:
d7:69:5c:7c:77:8c:e6:db:61:3f:03:80:c2:f0:37:
5f:3a:d5:4b:4c:be:33:81:01:a6:bd:61:5f:81:7b:
65:14:63:2f:8b:14:fc:ea:12:f3:b7:ab:e7:e8:bd:
81:a6:38:a9:d0:d1:1e:eb:e1:31:d5:61:91:e7:81:
b2:8e:be:37:15:4f:92:0b:1a:77:d0:91:2c:f7:06:
e2:38:17:6b:6f:2c:9d:ec:06:b1:44:19:99:34:aa:
92:9d:13:85:9c:30:a4:89:8c:77:68:63:3d:6a:cf:
ff:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:23:A0:EC:4E:4C:70:B8:7E:98:37:F4:F8:C6:66:6D:6C:12:FF:3E
X509v3 Authority Key Identifier:
keyid:B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/XCOg7E5McLh-mDf0-MZmbWwS_z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.176.0/21
Signature Algorithm: sha256WithRSAEncryption
70:ec:ef:4b:50:1d:85:0a:ab:eb:05:12:65:5c:ab:4f:9f:8c:
8d:1a:1b:07:8c:ce:bb:e3:f2:13:5c:8a:52:3a:76:83:42:d5:
61:76:43:c0:ec:60:1f:d5:13:60:16:16:12:87:ac:ca:f0:80:
74:65:3c:36:04:39:10:12:fc:89:52:89:26:38:de:a1:65:a3:
05:bf:14:ed:6d:1c:f6:39:10:ff:16:a9:be:6c:1e:98:ff:11:
a7:ef:02:dc:83:ad:dd:08:a2:0f:9c:4c:0a:fa:56:a7:f7:e8:
72:4b:2f:6c:38:f4:23:15:df:74:50:03:b9:b2:b6:bb:19:76:
01:30:e5:4a:09:3c:99:0a:ca:42:7a:26:f0:dd:3a:48:98:d0:
e3:7e:fa:4c:0d:e8:40:61:e4:bf:b9:93:2c:60:28:ad:a9:00:
11:c0:27:3e:32:62:ed:ab:70:01:15:c6:b3:48:95:26:af:7c:
20:ea:24:a3:07:92:3d:66:9a:d5:a4:4b:f4:92:b4:27:9f:87:
36:5f:48:d3:29:be:62:05:78:dd:0f:5f:d6:4a:d7:00:cc:d1:
f2:31:24:82:4e:7b:95:bd:e2:9e:d5:06:69:36:8c:eb:2e:9d:
14:2a:8d:36:dc:6a:05:e6:1e:7c:69:5f:e4:22:f7:90:8d:4f:
2b:6d:7e:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:12 2025 by rpki-client