Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/79e49f-880f-4d99-b9a5-4df3db807327/1/RqOor91LEpSbTGM3-InRK9_zXus.roa
File: RqOor91LEpSbTGM3-InRK9_zXus.roa (raw, json)
Hash identifier: fjZ1XMeCTn1LEMwCt0He/+Bn+mhhXZQcCTVybEJ5LO0=
Subject key identifier: 46:A3:A8:AF:DD:4B:12:94:9B:4C:63:37:F8:89:D1:2B:DF:F3:5E:EB
Certificate issuer: /CN=ec72427cb2faf8bd9b6dd9ae137c4d4914a8e810
Certificate serial: 09544101
Authority key identifier: EC:72:42:7C:B2:FA:F8:BD:9B:6D:D9:AE:13:7C:4D:49:14:A8:E8:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HJCfLL6-L2bbdmuE3xNSRSo6BA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/79e49f-880f-4d99-b9a5-4df3db807327/1/RqOor91LEpSbTGM3-InRK9_zXus.roa
Signing time: Fri 07 Jan 2022 17:43:53 +0000
ROA not before: Fri 07 Jan 2022 17:43:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203206
IP address blocks: 185.78.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156516609 (0x9544101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec72427cb2faf8bd9b6dd9ae137c4d4914a8e810
Validity
Not Before: Jan 7 17:43:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46a3a8afdd4b12949b4c6337f889d12bdff35eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c5:1e:aa:17:da:57:70:6b:e5:89:11:1e:19:
b2:0f:2b:65:7b:ef:89:db:3e:22:b8:0f:77:6a:2b:
b9:2f:85:13:a3:93:14:89:da:25:83:a3:e9:f8:33:
d9:28:12:c0:28:49:03:64:29:35:52:25:8d:95:c8:
c7:aa:c4:19:2d:1a:9e:d9:2b:2b:6c:2b:ba:24:36:
b5:76:a7:14:83:f9:75:76:8d:dd:27:e4:7b:f0:28:
1b:08:f2:da:61:35:40:6b:e2:c1:78:7a:d8:e3:ad:
6b:08:b3:8c:85:bb:3c:40:fc:48:5c:8c:d8:d5:f8:
c7:f3:54:fc:98:0b:02:b8:78:80:7f:6d:09:e0:7a:
dd:b3:66:a6:ff:6d:f4:37:e2:de:90:d5:b5:e1:de:
21:44:d5:7c:ea:11:e5:14:e5:00:13:c0:56:08:bb:
fb:16:7f:8e:41:70:c1:9b:d7:7a:04:82:9d:d6:07:
02:9c:7d:21:f3:35:aa:9c:12:30:cd:8f:aa:cf:47:
97:d5:8f:3a:cc:41:40:a8:b5:94:cb:4e:ab:d5:a0:
47:97:a0:a5:14:ae:db:f1:53:68:01:ce:a0:ba:d1:
02:f5:29:d9:11:fb:11:76:dd:27:5c:68:64:3e:cf:
0c:b3:66:91:2f:d6:70:a6:cf:61:da:b6:75:f3:f1:
6b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A3:A8:AF:DD:4B:12:94:9B:4C:63:37:F8:89:D1:2B:DF:F3:5E:EB
X509v3 Authority Key Identifier:
keyid:EC:72:42:7C:B2:FA:F8:BD:9B:6D:D9:AE:13:7C:4D:49:14:A8:E8:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HJCfLL6-L2bbdmuE3xNSRSo6BA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/79e49f-880f-4d99-b9a5-4df3db807327/1/RqOor91LEpSbTGM3-InRK9_zXus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/79e49f-880f-4d99-b9a5-4df3db807327/1/7HJCfLL6-L2bbdmuE3xNSRSo6BA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.129.0/24
Signature Algorithm: sha256WithRSAEncryption
00:ab:cf:5a:0e:25:38:8a:40:af:a7:1c:b9:28:79:e9:a7:28:
82:d6:b1:a7:b1:38:c7:07:14:bb:4d:8d:db:09:77:2c:c2:dd:
56:d0:09:2f:b7:cf:e1:0a:05:f4:c1:3d:c8:12:28:c4:ff:fd:
05:4d:37:b0:7c:f3:72:64:8a:e1:06:2c:6f:a0:14:a6:a4:ac:
7e:fb:a4:d3:69:e3:ab:e8:be:2b:f1:70:38:4a:25:c1:02:d4:
f6:2a:b7:ee:40:19:91:95:3a:56:4f:ec:6b:63:89:bd:c7:57:
bd:55:b8:1a:8e:97:fe:b8:c4:31:d4:4d:47:98:0f:f2:cf:31:
15:b2:95:7f:cf:9c:5f:94:82:d4:50:7e:3e:bf:5f:bf:cd:e8:
4d:b0:0f:f7:2f:c7:13:e8:e3:e6:cf:1b:e2:5a:2e:8a:97:b9:
f0:49:47:ab:fa:45:34:7a:b1:c8:0e:6d:8e:d1:6e:28:0d:5f:
d8:11:93:af:b9:bb:e9:c5:5e:5c:91:95:e3:21:9e:a8:22:0f:
48:43:26:18:52:8c:ea:02:92:53:c8:ed:46:c3:c2:81:4e:d2:
4a:d8:c8:f9:ce:27:af:db:01:04:66:eb:46:13:aa:b2:53:74:
30:8f:55:72:56:f8:7b:d2:50:14:5d:9b:74:e1:41:4a:33:b3:
b0:84:c3:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:09 2024 by rpki-client on console-ams.rpki-client.org