Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/LL0UvQUS57Z8WT6xIw52Fr0DEbg.roa
File: LL0UvQUS57Z8WT6xIw52Fr0DEbg.roa (raw, json)
Hash identifier: 4IjccLFJrlyz4J3CWMFBVth7OM0LO0Eywj+nliruhhI=
Subject key identifier: 2C:BD:14:BD:05:12:E7:B6:7C:59:3E:B1:23:0E:76:16:BD:03:11:B8
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 0183CA7397CA976767D2CBA917FB697ABF8B
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/LL0UvQUS57Z8WT6xIw52Fr0DEbg.roa
Signing time: Wed 12 Oct 2022 04:28:36 +0000
ROA not before: Wed 12 Oct 2022 04:28:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33916
IP address blocks: 78.109.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ca:73:97:ca:97:67:67:d2:cb:a9:17:fb:69:7a:bf:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Oct 12 04:28:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cbd14bd0512e7b67c593eb1230e7616bd0311b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c3:f7:b2:4a:0a:6a:e5:f2:03:df:02:f2:6f:
8a:68:b8:42:6b:53:5d:68:f8:30:e8:aa:28:4b:7f:
02:64:3f:dc:3e:47:bb:ba:37:f2:4c:6b:ce:9d:6d:
c9:c5:0f:76:cf:56:9b:2f:5d:d1:63:ff:30:40:9c:
44:0f:fc:ee:f9:ba:c7:22:22:7d:13:c1:b2:21:a8:
fc:5b:1a:76:da:f5:bf:ea:46:6e:44:55:66:88:61:
d6:b4:6f:da:9a:07:ab:71:fe:e3:be:52:29:0c:df:
45:0a:46:58:39:b7:85:a2:67:43:63:15:ee:de:e9:
e6:12:ff:a5:86:90:10:86:d3:85:cb:47:58:fe:7a:
7a:0f:29:04:48:7c:27:13:65:83:71:f8:32:49:98:
c1:ba:42:ed:82:2e:80:bd:15:bc:c9:84:23:1c:58:
3f:18:d1:ee:0b:f1:3b:24:0c:d5:04:ed:74:07:22:
da:e7:12:0d:32:c7:d9:6d:e5:b9:7a:90:f8:17:45:
02:84:6c:e9:7f:79:fe:a1:eb:3e:d0:00:d6:06:57:
71:8e:d1:51:14:d0:b2:03:f4:70:d2:67:20:0c:2f:
1f:65:f4:fe:de:be:d1:2a:a7:9a:e4:14:6a:05:18:
a5:b0:1a:a3:4e:3e:51:e7:d4:d8:b6:b7:b5:09:8b:
bc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:BD:14:BD:05:12:E7:B6:7C:59:3E:B1:23:0E:76:16:BD:03:11:B8
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/LL0UvQUS57Z8WT6xIw52Fr0DEbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.109.208.0/20
Signature Algorithm: sha256WithRSAEncryption
72:2e:fa:29:68:a0:5e:82:08:c9:1f:19:0a:4d:f2:57:1c:52:
94:54:17:52:26:0c:70:6f:6a:9c:99:12:20:45:89:09:9e:52:
d8:ef:74:78:ac:36:4a:de:10:15:cc:bb:46:11:b3:21:f4:2f:
9e:b6:b0:93:94:5e:73:c0:39:d5:6c:95:dd:c0:c7:ff:b6:77:
08:f6:14:f8:c7:af:f0:48:0e:93:f9:8c:56:2b:1d:6c:f1:09:
21:ff:ab:a2:79:d1:aa:b3:1a:8d:8a:29:7c:e6:43:fc:91:e7:
47:55:85:16:67:ce:94:77:fa:a8:e1:d5:fb:91:69:9a:9a:85:
53:c8:e2:2c:97:7d:d9:22:b2:ac:dc:ca:67:62:b0:7e:3c:09:
57:97:07:dc:dc:cc:2f:f1:36:bf:86:63:c2:dc:24:3b:78:9a:
cb:42:fb:9a:e7:b4:b2:8e:dd:89:62:99:46:b6:01:83:b3:e5:
c2:4b:69:b9:83:8a:8f:3d:9e:5e:00:1d:0e:31:ae:c8:8c:da:
d6:37:32:a4:0f:0a:7b:2b:d4:ba:f5:3b:be:15:e7:2d:67:17:
18:40:c6:58:b9:38:90:19:e3:14:cc:77:5c:b2:02:29:bf:92:
b5:6d:9c:0e:76:5e:e3:14:11:0b:c4:a8:f7:cd:6d:ca:42:e8:
84:60:51:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:51 2024 by rpki-client on console-fra.rpki-client.org