Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/zURLEQRdE1a3IaecOjona5J30fw.roa
File: zURLEQRdE1a3IaecOjona5J30fw.roa (raw, json)
Hash identifier: pYlhUqMtnxXiWRw7Im1EOaztsPwuQj1VDKt6I/sYVLM=
Subject key identifier: CD:44:4B:11:04:5D:13:56:B7:21:A7:9C:3A:3A:27:6B:92:77:D1:FC
Certificate issuer: /CN=e94978779e930e01fbfe7e0c5fcb41611129d4e8
Certificate serial: 0BFA48AA
Authority key identifier: E9:49:78:77:9E:93:0E:01:FB:FE:7E:0C:5F:CB:41:61:11:29:D4:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Ul4d56TDgH7_n4MX8tBYREp1Og.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/zURLEQRdE1a3IaecOjona5J30fw.roa
Signing time: Sat 01 Jan 2022 12:58:31 +0000
ROA not before: Sat 01 Jan 2022 12:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44410
IP address blocks: 78.111.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200951978 (0xbfa48aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e94978779e930e01fbfe7e0c5fcb41611129d4e8
Validity
Not Before: Jan 1 12:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd444b11045d1356b721a79c3a3a276b9277d1fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:81:af:a2:95:88:3b:37:25:5d:19:d4:71:5f:
ea:79:b4:f6:01:95:07:24:f8:71:1b:71:4b:bc:bb:
aa:c5:90:41:ff:26:c1:64:f9:b9:43:cd:e1:d7:cf:
ad:9e:07:98:22:c7:bf:ad:fb:40:6a:bd:3e:62:d9:
bc:49:a7:bb:ad:c5:65:34:12:e9:e8:2c:6e:54:a9:
03:06:12:4b:2a:06:54:84:77:bc:0a:72:38:08:94:
90:86:a1:fa:a2:da:c5:3b:cf:86:f4:99:d8:b9:95:
60:65:a1:c0:44:e9:ca:1b:7d:fb:c2:11:b4:76:d2:
68:29:dd:e6:81:f8:bb:c1:ec:22:f2:31:49:f4:72:
51:f8:0c:0f:55:5b:78:43:88:75:9a:ab:ba:4a:7e:
aa:20:79:d5:9a:4f:63:9c:2f:ae:16:52:2d:db:7a:
ae:a8:fa:0a:5c:3f:6e:35:00:92:70:84:86:54:3b:
d2:42:fc:2a:fd:3d:72:93:b2:30:a4:4f:dc:a7:8b:
fd:9a:0e:0a:5f:d5:cd:ef:7d:2e:b8:82:ca:38:99:
80:8e:47:85:8c:02:6c:0a:16:aa:42:9a:b6:05:0d:
ae:3c:28:b0:5e:c5:34:4c:2a:12:55:01:74:42:9f:
50:0c:4d:c3:3c:f9:27:47:fc:07:29:44:37:13:29:
71:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:44:4B:11:04:5D:13:56:B7:21:A7:9C:3A:3A:27:6B:92:77:D1:FC
X509v3 Authority Key Identifier:
keyid:E9:49:78:77:9E:93:0E:01:FB:FE:7E:0C:5F:CB:41:61:11:29:D4:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Ul4d56TDgH7_n4MX8tBYREp1Og.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/zURLEQRdE1a3IaecOjona5J30fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/78db29-e46d-41f4-87c7-95c42e4a84c0/1/6Ul4d56TDgH7_n4MX8tBYREp1Og.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.111.7.0/24
Signature Algorithm: sha256WithRSAEncryption
71:3c:3b:59:5d:0d:fd:d0:2f:50:a6:30:91:49:7c:2e:a5:9b:
b9:82:20:17:ad:7d:90:96:9e:6e:57:fc:2c:98:f4:05:a4:07:
df:e3:e6:f6:89:d2:d2:62:64:79:2c:35:23:f3:cc:8c:30:9e:
e0:8b:f7:72:b9:f3:2c:cc:89:18:3f:23:86:8d:29:81:1e:fa:
c6:b6:6c:82:66:65:30:00:be:6a:b5:03:d6:81:47:b8:4c:d9:
06:d5:13:5b:50:64:fd:1b:af:38:09:27:4c:c6:84:1d:28:06:
8c:a0:2b:eb:13:eb:40:8d:52:71:95:10:6d:57:04:e5:1a:96:
c4:f9:9f:cc:e0:85:b6:6a:9a:13:f3:82:8f:82:56:2b:f6:a6:
db:20:76:61:c0:59:14:82:2c:a8:75:f0:2d:b8:c9:91:0f:55:
cb:d6:c9:2b:66:22:96:51:ed:78:72:36:3c:18:d4:d2:c6:b5:
c7:ce:6f:2f:98:52:16:03:e4:b8:b6:5b:10:90:fe:49:58:92:
a8:4f:60:5c:21:a6:6e:17:eb:dd:97:e6:db:9e:38:28:d0:2a:
2c:27:a2:1e:a7:20:e5:5d:1c:b5:2b:5a:5b:42:eb:2d:59:fc:
d0:c6:6d:b1:f8:29:3c:80:df:01:ad:fa:4f:d7:40:b2:b0:50:
ed:f4:c4:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:08 2024 by rpki-client on console-ams.rpki-client.org