Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/OoBAEU8BDHjydVjLA8Euh9cmuu8.roa
File: OoBAEU8BDHjydVjLA8Euh9cmuu8.roa (raw, json)
Hash identifier: KKwccSL/nTwmsgl7KkKXl8KxdnhYzTb/1vHUX5VvcAU=
Subject key identifier: 3A:80:40:11:4F:01:0C:78:F2:75:58:CB:03:C1:2E:87:D7:26:BA:EF
Certificate issuer: /CN=31a3da6d0fafd27d01b74703bb39d8c115e86412
Certificate serial: 12BA3483
Authority key identifier: 31:A3:DA:6D:0F:AF:D2:7D:01:B7:47:03:BB:39:D8:C1:15:E8:64:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/OoBAEU8BDHjydVjLA8Euh9cmuu8.roa
Signing time: Sat 01 Jan 2022 15:00:42 +0000
ROA not before: Sat 01 Jan 2022 15:00:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48809
IP address blocks: 185.148.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 314193027 (0x12ba3483)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a3da6d0fafd27d01b74703bb39d8c115e86412
Validity
Not Before: Jan 1 15:00:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a8040114f010c78f27558cb03c12e87d726baef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:94:fe:22:43:31:62:ed:df:20:39:ff:ff:c6:
ec:7e:31:e6:9f:4c:d3:e0:4d:24:2e:44:49:25:e9:
b9:b4:5e:cb:01:87:65:3d:ba:2b:b0:64:06:2a:a7:
28:55:d1:cf:a7:a1:0e:84:1d:b7:b3:3c:ee:7a:f3:
2d:fa:a3:17:8a:1c:d4:26:b4:a2:59:76:f0:ee:8d:
99:97:77:01:23:b4:b5:21:90:7d:ac:49:4b:95:2f:
1a:77:92:ef:b8:ad:ff:7a:a9:d0:e4:cf:05:bf:7d:
50:4d:84:ce:0c:d7:10:81:61:fa:c5:f7:2d:0a:d3:
ac:49:12:27:84:d2:33:e9:89:ec:d1:7f:64:a5:84:
8d:4f:7a:ee:bb:fd:1c:83:a6:1c:6f:3b:cc:af:f5:
d8:ad:19:96:6f:51:8c:b2:02:55:49:71:ce:cf:19:
ca:68:ef:93:f9:9e:af:6e:ca:7b:51:cf:69:1d:d6:
9b:7b:97:8c:d3:20:55:11:6c:b5:4c:96:18:ee:26:
ff:e2:ff:7c:2f:69:14:1f:fb:5a:a4:04:02:85:44:
53:67:d7:13:70:61:09:69:75:00:ed:77:69:f5:06:
d1:ee:5e:c8:f6:e1:57:5d:3a:90:07:73:11:ed:f0:
f8:36:c7:96:da:dc:bb:56:45:1e:e8:92:98:c6:37:
21:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:80:40:11:4F:01:0C:78:F2:75:58:CB:03:C1:2E:87:D7:26:BA:EF
X509v3 Authority Key Identifier:
keyid:31:A3:DA:6D:0F:AF:D2:7D:01:B7:47:03:BB:39:D8:C1:15:E8:64:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaPabQ-v0n0Bt0cDuznYwRXoZBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/OoBAEU8BDHjydVjLA8Euh9cmuu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/202900-3d72-405b-9ef6-6cd4c980a523/1/MaPabQ-v0n0Bt0cDuznYwRXoZBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.78.0/24
Signature Algorithm: sha256WithRSAEncryption
15:29:c2:02:c8:3e:15:7e:f7:58:59:30:87:4e:ab:5d:ec:1e:
6f:8c:5b:24:7f:72:7d:28:07:fe:42:04:df:6b:a6:94:e2:0e:
65:7b:d9:05:28:7d:40:55:de:90:42:ce:a3:1b:50:a6:08:b2:
d8:ba:c5:80:86:45:bd:65:e8:61:80:73:df:83:ca:68:6a:2d:
d1:75:0c:d9:1e:1f:4f:d1:29:6a:3a:f3:e9:a5:cc:f4:3f:7c:
81:c4:ad:5c:51:38:24:8a:e0:de:50:8a:6b:fa:13:9d:56:57:
89:01:d0:5a:2a:e9:de:53:9f:78:3b:09:c2:1e:fc:ec:ee:29:
4a:4f:ef:6b:8b:51:c0:c4:85:36:81:fa:ea:2d:37:86:3c:a8:
fe:b3:df:5b:f0:f5:78:f6:12:09:61:08:7a:70:c3:7b:57:47:
cb:01:4c:8a:7f:ec:72:41:07:57:6a:88:ba:1a:9b:36:29:1c:
18:21:43:11:0d:da:2c:26:a6:26:fe:54:d1:f5:1a:f6:e1:74:
36:21:c0:b6:15:59:f7:71:0a:73:29:d7:74:78:ed:a2:6b:e6:
12:fb:3e:c5:3b:1d:96:97:a9:aa:3f:d6:fa:62:68:b5:f5:1c:
bf:07:fd:2d:5d:cf:b6:db:aa:36:21:d7:d8:90:dc:2f:94:fc:
f2:19:21:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:56 2024 by rpki-client on console-fra.rpki-client.org