Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/SGnGzi1jLW0kTke4RR_zVWEqQUE.roa
File: SGnGzi1jLW0kTke4RR_zVWEqQUE.roa (raw, json)
Hash identifier: MDtTCbuLM9/eMXvci3acMRFwi30wnEAEFxz481GKq0E=
Subject key identifier: 48:69:C6:CE:2D:63:2D:6D:24:4E:47:B8:45:1F:F3:55:61:2A:41:41
Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Certificate serial: 016BD61D
Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/SGnGzi1jLW0kTke4RR_zVWEqQUE.roa
Signing time: Sat 01 Jan 2022 13:04:30 +0000
ROA not before: Sat 01 Jan 2022 13:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50815
IP address blocks: 178.216.56.0/21 maxlen: 21
194.0.174.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23844381 (0x16bd61d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Validity
Not Before: Jan 1 13:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4869c6ce2d632d6d244e47b8451ff355612a4141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ff:a2:1d:cb:12:fc:70:2c:2a:a1:d7:74:f5:
fb:ac:43:15:7e:45:9a:d8:e7:14:50:e7:95:32:d3:
64:ef:48:7a:b0:06:8e:25:b6:c2:30:85:16:f3:23:
f0:25:03:7e:10:63:1e:20:e5:42:17:ea:ba:ce:d7:
05:e0:c1:f5:78:64:18:61:c7:95:32:ee:a3:92:23:
4a:59:9b:25:01:aa:2c:d3:e9:28:0a:bb:ba:7d:f6:
c0:ae:7d:85:41:4e:49:a6:df:bf:a7:3d:e3:af:7a:
b0:b7:1a:84:47:4a:f2:e1:68:4d:81:09:98:bc:41:
23:73:32:72:b1:8c:0c:82:fb:f0:08:52:f0:0e:32:
c7:f2:44:1f:b7:8e:ad:56:95:39:cf:d1:cf:9d:a0:
d2:a3:cc:3a:0e:39:62:21:01:00:a5:b2:b2:ed:77:
e3:1a:e3:1f:b7:53:9c:6e:bf:13:0c:92:d8:79:78:
ee:bd:a1:be:77:19:ba:95:17:e0:87:b8:17:08:e4:
d1:e3:90:57:53:e4:5c:7c:87:fa:a7:b5:67:e8:f2:
15:83:65:4a:ed:83:18:55:a9:65:61:cb:83:98:e3:
77:67:15:dd:8d:65:23:3c:cc:2f:c9:da:67:60:8b:
ab:e4:22:c5:66:34:3c:9a:93:f2:f7:68:5c:3a:08:
f7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:69:C6:CE:2D:63:2D:6D:24:4E:47:B8:45:1F:F3:55:61:2A:41:41
X509v3 Authority Key Identifier:
keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/SGnGzi1jLW0kTke4RR_zVWEqQUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.216.56.0/21
194.0.174.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:2f:4f:f0:3d:37:33:39:ed:b3:31:eb:f5:7e:d6:bc:24:ff:
a5:c7:80:c2:8c:38:a9:5a:48:56:14:66:8c:be:61:03:70:41:
53:a8:25:df:c0:9a:7e:40:ce:1a:05:a8:58:18:13:15:f6:28:
a9:12:96:b8:3a:26:f2:e8:41:fe:cd:15:ce:4d:8c:1c:c5:66:
aa:0e:a0:70:72:8c:9d:ba:65:02:03:a1:de:95:c1:30:ba:68:
90:e7:47:12:f3:53:5b:17:d6:12:fa:32:2d:39:c9:91:d8:e9:
12:e3:c9:52:1e:f7:0c:fc:bf:69:68:d4:59:b7:7f:6d:7e:11:
0c:37:9c:8b:be:46:7b:7e:c9:b1:3f:9e:33:71:09:ab:76:a4:
ae:20:cb:da:1d:07:7a:af:76:3d:e4:96:a3:67:b4:58:dc:a2:
2d:0e:51:44:8b:49:22:f6:5e:3c:b5:bf:9f:31:d9:05:93:89:
a7:61:2a:82:9f:06:fa:cd:a2:22:b8:d0:45:d4:91:3a:f6:5a:
30:8a:85:9f:56:9f:d6:44:9d:46:1a:bb:79:f9:f8:37:15:c1:
84:57:36:02:6e:04:47:9b:0b:5d:7b:0b:5f:21:8b:ea:e9:b9:
88:3d:90:ff:91:6d:0e:4c:2d:df:60:d2:00:55:af:a2:b8:71:
ed:6f:61:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:57 2023 by rpki-client on console.sobornost.net