Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/35c0b9-2855-4b20-8c80-7e280752da21/1/bCrAqO0rDRP5Jh2UDiiUwwhXXXs.roa
File: bCrAqO0rDRP5Jh2UDiiUwwhXXXs.roa (raw, json)
Hash identifier: zJZvaxo4CktbimWr+jxHnc6XKPhUX5nvmsiMPxJoziI=
Subject key identifier: 6C:2A:C0:A8:ED:2B:0D:13:F9:26:1D:94:0E:28:94:C3:08:57:5D:7B
Certificate issuer: /CN=4f672d39929731aed9e01bc5a9e6d680f4659a0b
Certificate serial: 02719F31
Authority key identifier: 4F:67:2D:39:92:97:31:AE:D9:E0:1B:C5:A9:E6:D6:80:F4:65:9A:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T2ctOZKXMa7Z4BvFqebWgPRlmgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/35c0b9-2855-4b20-8c80-7e280752da21/1/bCrAqO0rDRP5Jh2UDiiUwwhXXXs.roa
Signing time: Sat 01 Jan 2022 15:02:00 +0000
ROA not before: Sat 01 Jan 2022 15:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28857
IP address blocks: 195.78.52.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41000753 (0x2719f31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f672d39929731aed9e01bc5a9e6d680f4659a0b
Validity
Not Before: Jan 1 15:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c2ac0a8ed2b0d13f9261d940e2894c308575d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4e:84:ad:75:ec:63:1a:d8:9e:bb:65:47:79:
5d:d0:a8:ae:a4:bd:b1:02:8d:58:e6:b5:62:11:de:
4d:14:66:06:7a:7a:44:03:d8:59:9d:65:35:3f:1b:
62:fe:82:f7:b8:f5:a5:27:52:9e:7a:a3:10:39:16:
06:54:65:c6:78:61:71:8c:8b:62:d6:43:5d:cc:8a:
d9:37:a9:1a:46:a8:bc:3b:c7:ba:b5:7f:8c:7f:d3:
22:db:ea:c6:18:ce:42:26:33:dd:20:20:58:8f:e1:
ec:06:ad:18:b4:a2:9f:06:2d:08:e4:9d:4c:42:7b:
fa:5b:6e:3d:15:3f:08:9f:f9:da:50:ce:4d:b0:63:
6a:25:66:9b:31:5f:6b:29:88:63:b4:ca:b3:6c:1c:
22:6f:81:c5:3c:eb:ce:81:1f:c5:34:c7:1c:85:ac:
56:63:17:29:cc:cf:a4:91:16:75:22:d6:b6:40:d3:
ea:b4:81:b4:42:d2:72:2e:72:2f:71:32:e8:f1:e0:
80:3c:c9:84:1f:61:0d:f6:1a:6d:75:b8:03:94:a2:
bc:8e:5d:71:51:f6:5f:00:e6:23:9d:79:95:49:12:
40:21:93:97:8d:02:bc:79:fd:8a:fe:e4:64:da:e4:
b0:93:54:11:04:d9:7a:34:34:dc:4d:6c:1b:3a:8d:
f0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2A:C0:A8:ED:2B:0D:13:F9:26:1D:94:0E:28:94:C3:08:57:5D:7B
X509v3 Authority Key Identifier:
keyid:4F:67:2D:39:92:97:31:AE:D9:E0:1B:C5:A9:E6:D6:80:F4:65:9A:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T2ctOZKXMa7Z4BvFqebWgPRlmgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/35c0b9-2855-4b20-8c80-7e280752da21/1/bCrAqO0rDRP5Jh2UDiiUwwhXXXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/35c0b9-2855-4b20-8c80-7e280752da21/1/T2ctOZKXMa7Z4BvFqebWgPRlmgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.78.52.0/23
Signature Algorithm: sha256WithRSAEncryption
61:25:97:9d:05:d5:10:ab:7a:ff:97:26:e6:b3:f7:c0:25:62:
e4:9b:a5:9b:4d:c0:5c:05:24:54:b3:53:be:7a:48:6a:55:b5:
82:31:ec:18:a9:3c:7e:2b:69:b6:27:60:91:1e:bd:aa:27:63:
65:39:2c:e0:8f:d6:cd:65:3e:26:9f:fb:4c:bc:59:65:26:03:
d4:bc:20:9f:6f:16:06:84:84:fa:dc:b8:b8:3e:45:c6:0d:e5:
a9:26:b1:4d:51:64:d4:23:5e:bf:d0:74:a4:cf:fd:e6:d6:98:
2a:b5:ea:5f:d6:35:5a:f1:6e:67:28:d1:10:46:18:59:dc:71:
f7:e0:f3:89:73:08:40:ae:d1:05:13:49:2f:56:ac:48:3f:5b:
ef:48:76:e3:f7:2b:99:60:28:55:48:98:40:e3:f3:7c:b0:b5:
32:ec:49:18:f6:8a:61:a2:f2:c9:4f:cc:fe:5c:d8:9f:93:a7:
c5:29:63:e9:ca:f8:d8:65:05:2e:32:76:4e:82:4c:ea:4b:59:
5f:df:80:df:ad:db:36:7e:e8:b6:7e:28:47:6b:74:ee:1a:29:
6f:e9:64:99:2f:18:53:54:ec:82:2d:f2:6d:a6:f2:d7:f8:ad:
e2:b5:bc:4b:4f:0b:9a:d2:fd:87:01:81:ed:78:6f:77:37:0c:
1d:0d:72:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:51 2024 by rpki-client on console-ams.rpki-client.org