Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/C5h0Y9saMJop-_4Od5beZ40Ndc0.roa
File: C5h0Y9saMJop-_4Od5beZ40Ndc0.roa (raw, json)
Hash identifier: 2Yt5eVPgIh7G5FH33tqa2JxslApEz8Sor3tSIgK0od8=
Subject key identifier: 0B:98:74:63:DB:1A:30:9A:29:FB:FE:0E:77:96:DE:67:8D:0D:75:CD
Certificate issuer: /CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Certificate serial: 3557C103
Authority key identifier: B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/C5h0Y9saMJop-_4Od5beZ40Ndc0.roa
Signing time: Sat 01 Jan 2022 16:10:36 +0000
ROA not before: Sat 01 Jan 2022 16:10:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3266
IP address blocks: 78.24.73.0/24 maxlen: 24
78.24.74.0/24 maxlen: 24
2a00:1909::/32 maxlen: 32
2a00:1909::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 894943491 (0x3557c103)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Validity
Not Before: Jan 1 16:10:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b987463db1a309a29fbfe0e7796de678d0d75cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5d:75:7c:a2:df:ed:80:7a:54:26:be:ca:40:
34:64:58:0e:58:a8:a1:a6:8a:47:56:b6:55:6f:56:
62:5e:03:d8:4d:eb:8a:54:e9:49:9b:22:dd:d7:9f:
25:62:d3:23:7e:91:d0:04:2f:8a:1d:cf:cb:42:74:
b7:6c:17:5c:7c:6d:ff:1a:ce:66:28:b6:35:ba:ad:
82:74:24:c9:a4:73:67:00:30:8e:9f:a9:b0:02:f5:
50:18:45:b4:f5:76:22:71:b6:b5:39:2f:14:d0:38:
9d:bb:6e:f4:92:bb:8d:00:7d:4c:51:10:c4:de:45:
4b:1c:21:c0:79:b4:62:0b:f3:64:40:b0:5c:d0:80:
22:0e:41:16:7a:ea:89:40:54:05:44:cc:59:0b:12:
c2:eb:60:29:5b:75:e7:d0:b0:db:77:85:a2:1f:7d:
30:b7:95:d6:ef:9d:90:92:34:ef:79:de:69:22:f0:
32:95:cf:9f:c0:a7:85:c1:da:f8:ec:63:a8:4b:23:
81:63:b4:3b:34:13:9e:65:5e:09:7a:f5:c1:8a:f3:
ad:10:88:9b:a6:b9:be:7e:6e:a1:9e:79:c5:17:ea:
0d:e8:57:c8:51:39:f7:33:b0:5c:d8:cc:dd:ad:30:
79:52:07:9d:60:c1:84:3f:6a:9d:07:4b:ae:06:dc:
33:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:98:74:63:DB:1A:30:9A:29:FB:FE:0E:77:96:DE:67:8D:0D:75:CD
X509v3 Authority Key Identifier:
keyid:B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/C5h0Y9saMJop-_4Od5beZ40Ndc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/suRItKCPDkxYooPYBzWoqAPhDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.73.0-78.24.74.255
IPv6:
2a00:1909::/32
Signature Algorithm: sha256WithRSAEncryption
9e:ec:33:58:96:9f:0c:da:23:d5:56:9a:e5:61:3a:57:6e:2e:
68:39:36:f6:0a:6b:03:25:d1:83:4e:fd:a8:98:cd:dd:16:70:
b0:58:1d:e5:ed:fe:46:eb:36:a0:0a:7c:55:68:f4:df:83:a2:
90:7c:d9:0f:bb:0f:06:91:20:bb:78:d8:a1:08:4a:e8:d5:2b:
4b:34:66:30:01:6f:22:65:4a:63:9b:41:b9:04:53:27:05:16:
c1:8f:84:91:42:0e:7e:f1:67:02:dc:bd:1c:10:40:06:1b:38:
e2:e0:ef:d5:94:91:79:5c:29:53:31:44:d9:33:bd:a3:99:6e:
64:c2:7c:c3:ec:dd:a8:ef:d1:e5:b2:d7:21:ea:7a:a6:0d:be:
78:b4:b4:24:9a:c3:cb:16:b5:f7:4d:3a:12:2b:d6:bd:b6:e8:
8a:e4:04:86:21:fa:ec:c8:ae:8b:ad:9a:20:ce:00:e0:3b:47:
0d:0d:f9:50:10:29:8b:3d:4d:4b:e3:09:9a:85:f9:bc:48:83:
ee:76:02:21:f5:f8:20:5b:ae:60:fa:c5:09:28:8c:ad:92:df:
08:50:c0:e8:40:f1:1c:d0:f3:09:26:3b:82:8f:b2:73:57:b2:
20:fb:85:08:e9:8d:b6:24:d5:bd:1a:4d:06:34:df:3e:be:c6:
1e:85:86:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:53 2024 by rpki-client on console-fra.rpki-client.org