Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/4f408d-bda5-4a94-b83a-a730ccfdadc5/1/rSYJyMit-mcPs6dpCnpwm-TBKuk.roa
File: rSYJyMit-mcPs6dpCnpwm-TBKuk.roa (raw, json)
Hash identifier: wX4g/HY80C1LVF2ggp3EoiRIPKaJxfXhXJOCXQGGBXc=
Subject key identifier: AD:26:09:C8:C8:AD:FA:67:0F:B3:A7:69:0A:7A:70:9B:E4:C1:2A:E9
Certificate issuer: /CN=c491456eda59fb0fd2d173f95412be35f6cfbfaf
Certificate serial: 04B975D8
Authority key identifier: C4:91:45:6E:DA:59:FB:0F:D2:D1:73:F9:54:12:BE:35:F6:CF:BF:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJFFbtpZ-w_S0XP5VBK-NfbPv68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/4f408d-bda5-4a94-b83a-a730ccfdadc5/1/rSYJyMit-mcPs6dpCnpwm-TBKuk.roa
Signing time: Sat 01 Jan 2022 15:55:54 +0000
ROA not before: Sat 01 Jan 2022 15:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201324
IP address blocks: 185.78.140.0/22 maxlen: 22
2a03:5960::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79263192 (0x4b975d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c491456eda59fb0fd2d173f95412be35f6cfbfaf
Validity
Not Before: Jan 1 15:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad2609c8c8adfa670fb3a7690a7a709be4c12ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cd:84:89:28:db:46:7c:87:4f:de:1f:93:7b:
89:9f:cc:3d:c1:ea:8d:cd:ae:ae:ff:c0:b0:2b:4e:
98:ed:5b:00:f5:ea:26:3c:ad:e5:ea:6f:2a:4c:f1:
85:a5:8d:46:e5:4f:82:09:45:8a:01:54:20:c6:3e:
b5:ba:ed:e7:b2:18:45:b8:04:fa:cb:f0:e3:db:37:
e6:31:e7:84:1d:73:a0:2c:b6:dc:43:68:b0:97:0e:
5a:f5:11:3a:3e:6d:59:96:49:b6:26:c2:7c:9b:34:
e3:95:23:f0:30:86:42:88:2e:0d:fd:c7:b3:e1:b4:
12:4d:ca:03:14:29:e2:53:5b:77:42:07:61:8d:d7:
42:38:7c:08:62:2f:2a:f0:05:d5:38:47:16:6b:e0:
d8:ac:2d:b4:95:be:67:18:23:a2:a4:ed:a2:ea:45:
03:10:97:d5:cf:a6:c6:40:f1:fa:1e:00:ac:09:9b:
75:0d:b1:d7:d0:e9:42:d1:ef:86:7d:9c:bb:66:19:
07:29:72:e5:7c:91:f9:19:d3:c8:60:71:3f:48:c6:
d5:93:67:6c:21:94:d8:a4:8a:da:0e:9a:c7:f7:96:
38:c8:9e:87:bf:14:23:ae:f9:3e:ad:60:51:34:92:
32:e3:bf:61:ee:b9:7a:09:11:8f:6c:61:3c:a4:d8:
8d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:26:09:C8:C8:AD:FA:67:0F:B3:A7:69:0A:7A:70:9B:E4:C1:2A:E9
X509v3 Authority Key Identifier:
keyid:C4:91:45:6E:DA:59:FB:0F:D2:D1:73:F9:54:12:BE:35:F6:CF:BF:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJFFbtpZ-w_S0XP5VBK-NfbPv68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4f408d-bda5-4a94-b83a-a730ccfdadc5/1/rSYJyMit-mcPs6dpCnpwm-TBKuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4f408d-bda5-4a94-b83a-a730ccfdadc5/1/xJFFbtpZ-w_S0XP5VBK-NfbPv68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.140.0/22
IPv6:
2a03:5960::/32
Signature Algorithm: sha256WithRSAEncryption
2f:7e:d9:1e:24:98:5c:e0:e7:db:d0:89:2d:af:1a:33:15:71:
cd:67:fb:ec:b9:ce:ef:4c:8a:cc:f7:f7:9c:81:58:e9:1e:ad:
df:f4:33:a6:64:77:df:e3:72:08:2b:76:af:33:35:b8:b1:fb:
0f:c7:d0:be:a3:b9:10:a0:71:f1:3f:f1:d0:9b:6b:a1:89:72:
95:a4:d9:6b:bf:3b:a6:86:0d:02:0b:b7:d8:40:71:3e:86:a0:
35:1e:1d:d6:cd:ab:34:36:e3:63:ff:8c:4b:87:9a:2a:49:e7:
5c:60:44:5d:a0:05:e4:42:83:a1:26:65:bd:db:fe:c8:e8:52:
be:f8:f7:ad:f6:90:43:f4:95:5b:f4:b1:45:f3:5f:dc:a1:ec:
44:39:8a:ea:2c:37:ec:72:0f:31:48:4d:fe:9a:63:98:21:73:
59:59:59:a2:f2:80:18:35:df:e3:b6:26:a2:30:8a:51:10:b6:
b8:7b:5d:5e:2f:0c:22:a3:86:53:18:39:ed:28:68:2c:e2:1c:
e2:ad:c8:d6:ab:aa:2d:a9:8b:26:ea:9c:31:82:f5:8b:83:da:
94:63:ac:5b:af:3c:f2:20:b2:32:e3:b6:08:08:b5:03:0f:47:
6c:66:0d:f7:07:83:9b:24:34:80:ec:31:b1:83:a7:16:33:d0:
3d:11:ca:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:28 2024 by rpki-client on console-ams.rpki-client.org