Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/n4bGm0ujg_fXX1dZRp5PLohu78g.roa
File: n4bGm0ujg_fXX1dZRp5PLohu78g.roa (raw, json)
Hash identifier: gGsvt/6LWL43tHIeJPn5hTavhq7UhLe5YQzMJfBPtBM=
Subject key identifier: 9F:86:C6:9B:4B:A3:83:F7:D7:5F:57:59:46:9E:4F:2E:88:6E:EF:C8
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 4299C553
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/n4bGm0ujg_fXX1dZRp5PLohu78g.roa
Signing time: Sat 01 Jan 2022 06:04:56 +0000
ROA not before: Sat 01 Jan 2022 06:04:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16301
IP address blocks: 78.81.192.0/18 maxlen: 18
78.81.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117373779 (0x4299c553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:04:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f86c69b4ba383f7d75f5759469e4f2e886eefc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3a:c1:27:88:ce:76:d6:88:ab:da:d2:97:d8:
b3:b2:56:e9:5e:ce:e1:a2:05:5a:ed:13:66:19:2e:
ac:8f:6a:b9:da:91:e8:25:28:a1:91:7c:f9:81:5a:
be:b7:bc:c5:91:97:67:6f:6d:8d:9d:2f:de:a1:37:
1e:75:dd:c4:ec:ea:83:61:dc:12:07:d2:54:0e:ba:
31:e3:fd:b8:1c:59:cf:37:d9:60:48:26:70:c1:42:
e6:eb:10:e7:71:f5:87:12:43:30:82:1f:b9:be:60:
63:0a:d1:12:da:87:47:28:fc:59:a4:8b:65:23:f6:
b8:a9:11:da:14:33:c4:06:fa:eb:6a:85:e7:98:99:
24:4d:cc:d1:76:86:a5:da:d7:ed:10:3e:fd:73:63:
9b:89:f8:19:bf:69:0a:17:8f:05:b9:f6:3c:7f:de:
97:1e:51:d5:2a:89:57:58:4e:fd:62:9d:8c:84:cc:
21:de:7b:17:c9:3c:d9:77:dc:4f:b7:7c:86:7b:be:
4b:cf:6f:75:21:eb:78:08:25:e5:84:e2:44:69:c5:
68:40:b1:0a:ba:1a:c9:7c:de:01:c7:be:1f:86:e9:
95:b5:b5:63:96:c6:b7:ad:97:0b:92:4b:6d:a2:78:
c3:93:8d:b2:28:3d:95:64:7c:11:6e:ec:ed:9f:35:
46:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:86:C6:9B:4B:A3:83:F7:D7:5F:57:59:46:9E:4F:2E:88:6E:EF:C8
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/n4bGm0ujg_fXX1dZRp5PLohu78g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.81.0.0/17
78.81.192.0/18
Signature Algorithm: sha256WithRSAEncryption
98:7e:ed:79:f9:bc:d6:d5:23:ac:2e:7b:d8:51:1d:f1:11:ce:
51:07:8c:b3:ca:ef:1b:46:05:2e:f2:2b:e0:27:f0:00:2d:50:
55:41:d7:bb:10:06:7a:5a:c1:ab:26:13:30:a4:31:c4:10:12:
77:7f:7f:60:75:e4:7a:b3:3e:65:81:2b:01:3a:d7:9b:b8:33:
2e:7c:20:f9:1f:35:c2:29:61:44:2f:e4:ed:27:a5:be:f6:17:
9f:24:f1:7d:6d:22:12:76:7f:1e:9b:7d:ee:5b:e5:73:c3:2a:
06:9a:2c:5e:9c:06:8d:dd:10:db:f1:6e:87:d6:ad:56:9d:d3:
04:9a:41:9d:4c:99:51:69:85:87:77:3b:74:a2:41:b4:7a:7d:
02:17:00:a3:b6:1a:b9:f4:71:19:47:33:f4:a5:0c:78:35:d8:
ea:14:33:a9:4e:cb:33:44:9e:43:69:30:91:76:d0:7c:6c:82:
ed:9d:70:05:d7:dc:f3:a2:17:b9:77:8c:7d:91:0d:b2:fc:44:
61:e7:bc:76:7f:18:e3:c8:0a:5c:ae:e3:ac:6f:7e:58:48:f9:
fa:5f:38:2e:df:ef:8f:21:6d:c7:63:10:9a:1e:3f:25:1b:3e:
50:69:ab:85:45:e1:bb:4a:78:fc:70:e9:34:85:f6:25:2c:70:
a4:dd:80:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:26 2024 by rpki-client on console-ams.rpki-client.org