Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/03aQCGAgk9EYHnofCRMhYBxYmFY.roa
File: 03aQCGAgk9EYHnofCRMhYBxYmFY.roa (raw, json)
Hash identifier: LNeGdb5td8IjH+PYgRrOlaFgQb3ylKHE578QUgk7pOM=
Subject key identifier: D3:76:90:08:60:20:93:D1:18:1E:7A:1F:09:13:21:60:1C:58:98:56
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0777B117
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/03aQCGAgk9EYHnofCRMhYBxYmFY.roa
Signing time: Sat 01 Jan 2022 05:04:19 +0000
ROA not before: Sat 01 Jan 2022 05:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 147.78.198.0/24 maxlen: 24
147.78.199.0/24 maxlen: 24
147.78.197.0/24 maxlen: 24
147.78.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125284631 (0x777b117)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 05:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3769008602093d1181e7a1f091321601c589856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9f:2c:11:ff:97:45:1a:ec:6a:23:34:82:4c:
3d:2b:56:35:1a:ab:65:3f:29:3b:72:1b:f5:01:6f:
36:e8:fe:10:9e:54:47:b7:e8:02:16:05:e3:05:e5:
c2:97:79:a2:64:d3:98:75:30:39:20:e6:42:07:6c:
df:b5:25:2c:ce:03:03:f4:84:12:87:b2:91:b2:f8:
78:76:c0:1c:d7:81:90:c3:81:0b:49:e2:ca:ed:86:
bf:3a:50:cb:91:18:e1:14:72:62:a2:f9:52:bd:01:
ba:93:7c:ad:f3:d3:c4:e0:2b:28:64:9c:dd:d3:81:
b3:e5:de:89:c1:f9:73:b3:b3:1d:76:be:74:eb:74:
eb:12:c7:5d:5b:44:b7:a5:26:d6:e9:a1:f7:fd:34:
1b:60:fd:49:7e:50:13:31:b9:ea:ff:05:12:c2:5f:
3e:e2:33:bf:58:a9:1a:b2:f7:0a:b1:8f:a1:00:df:
a3:09:f5:12:46:eb:fe:25:22:f4:0f:fc:3b:97:41:
15:6c:b4:8c:2c:bf:cf:28:88:99:d7:29:e5:df:87:
2f:0c:61:d4:16:cd:d8:a0:c8:5a:19:6f:b9:e9:7e:
95:f3:28:08:62:e9:50:b3:42:e9:d9:a4:52:c1:c9:
7b:59:ee:b7:b3:82:b3:c0:11:c6:b6:5f:d2:82:ff:
a5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:76:90:08:60:20:93:D1:18:1E:7A:1F:09:13:21:60:1C:58:98:56
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/03aQCGAgk9EYHnofCRMhYBxYmFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.196.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:23:d1:b6:b5:74:da:61:54:71:8d:f3:18:d0:51:dd:4f:20:
9d:b8:2c:aa:20:30:df:ae:84:b0:4b:24:fe:b2:8c:fb:cc:cf:
03:82:34:06:66:58:14:1c:a8:0b:6e:b0:fa:3e:7e:ac:4b:3d:
84:8d:b1:ed:ac:46:e2:00:d6:56:30:f5:d0:bc:41:e4:25:be:
43:11:4f:66:e9:be:6f:70:30:7f:c3:5d:1c:3a:56:64:5a:03:
be:ab:54:9f:0a:bd:09:c0:40:cf:de:f9:d1:c0:08:03:29:57:
9e:a0:49:ae:80:c4:95:a4:84:a8:74:d0:3f:80:82:f5:68:b7:
34:c0:47:7e:4d:e2:48:f4:bb:dd:06:1e:50:15:e7:2d:3e:e9:
02:b1:39:8a:b8:cb:c1:13:42:41:34:e3:04:a7:e2:8b:f7:b8:
d6:a2:74:aa:33:24:64:1b:b3:71:50:66:5e:01:88:0f:8e:c0:
41:0b:46:a9:f6:c5:0d:73:c0:ff:aa:d5:82:58:03:66:af:82:
99:c5:62:85:a9:e2:51:c7:7a:2d:f8:df:b9:3c:3a:99:0e:50:
b9:b9:c3:48:7f:a2:70:2b:31:50:d1:6a:ea:81:8d:0f:c3:93:
ae:cc:cf:ef:53:97:a5:a4:9a:34:17:35:f9:86:0f:e5:02:b2:
b7:cb:7b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org