Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/a14e1e-ced4-42e9-8338-f2af8001ac78/1/PUvDp8DlrsJ9CwQhJG7ryNowd8E.roa
File: PUvDp8DlrsJ9CwQhJG7ryNowd8E.roa (raw, json)
Hash identifier: gReMq3zPzY0lbQ9ZJP1bQp45/N7azt4Gy5aIyw6nlCY=
Subject key identifier: 3D:4B:C3:A7:C0:E5:AE:C2:7D:0B:04:21:24:6E:EB:C8:DA:30:77:C1
Certificate issuer: /CN=d44bc0e83e81f57fb4894041dca76c77d33f02e7
Certificate serial: 01841879A8AC49ED80293276E85DDCEF430B
Authority key identifier: D4:4B:C0:E8:3E:81:F5:7F:B4:89:40:41:DC:A7:6C:77:D3:3F:02:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EvA6D6B9X-0iUBB3Kdsd9M_Auc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/a14e1e-ced4-42e9-8338-f2af8001ac78/1/PUvDp8DlrsJ9CwQhJG7ryNowd8E.roa
Signing time: Thu 27 Oct 2022 08:05:36 +0000
ROA not before: Thu 27 Oct 2022 08:05:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43682
IP address blocks: 78.24.192.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:79:a8:ac:49:ed:80:29:32:76:e8:5d:dc:ef:43:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d44bc0e83e81f57fb4894041dca76c77d33f02e7
Validity
Not Before: Oct 27 08:05:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d4bc3a7c0e5aec27d0b0421246eebc8da3077c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3a:1e:c9:e9:79:bd:04:00:cc:78:d6:fe:7b:
a3:82:85:3b:28:21:a2:52:b4:22:92:94:a1:72:8f:
27:9d:26:d9:36:52:fc:8f:4a:8b:54:60:dc:18:67:
cd:a5:3a:cd:ed:9e:5f:51:3d:b1:bd:b4:f3:64:94:
09:60:2c:23:7d:a9:a4:07:9d:a6:1e:43:a4:9b:39:
4c:13:fc:a2:5e:f8:11:a4:12:48:5e:ca:a6:0c:01:
bf:ca:52:5c:b5:3d:9e:45:be:fb:64:2b:e4:5c:84:
ee:a0:60:16:30:ff:7a:bc:88:d5:e0:01:94:41:be:
6e:84:0c:f1:eb:d0:8c:4e:b9:27:d7:d6:0b:db:6f:
74:1f:29:e4:e7:08:47:19:48:8e:fc:9f:24:06:54:
58:6c:b2:c3:8b:06:6e:ce:16:d5:1f:09:e2:d6:4f:
30:e6:0a:47:d6:93:0c:53:98:2b:a7:79:0a:ee:0d:
eb:bb:cb:e6:d7:02:a1:52:ec:87:39:0e:81:91:17:
88:18:5d:e2:1c:74:09:2b:92:5d:19:98:f7:bf:26:
e7:3d:a7:90:22:2e:b0:87:c9:0f:92:2d:70:a1:80:
3c:ca:7f:20:c2:f8:22:c9:c8:97:7a:7d:26:b4:93:
9b:03:6a:69:37:8f:06:29:5c:75:4b:af:da:9d:7b:
db:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4B:C3:A7:C0:E5:AE:C2:7D:0B:04:21:24:6E:EB:C8:DA:30:77:C1
X509v3 Authority Key Identifier:
keyid:D4:4B:C0:E8:3E:81:F5:7F:B4:89:40:41:DC:A7:6C:77:D3:3F:02:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EvA6D6B9X-0iUBB3Kdsd9M_Auc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a14e1e-ced4-42e9-8338-f2af8001ac78/1/PUvDp8DlrsJ9CwQhJG7ryNowd8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a14e1e-ced4-42e9-8338-f2af8001ac78/1/1EvA6D6B9X-0iUBB3Kdsd9M_Auc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.192.0/21
Signature Algorithm: sha256WithRSAEncryption
69:95:88:55:2e:13:ff:26:b5:5d:1e:a2:11:65:fc:37:bb:bf:
87:01:a3:07:e0:39:88:cd:2e:a6:9e:59:72:75:b8:32:2a:7f:
0a:7f:db:52:a6:7a:18:f8:94:17:d6:30:3e:61:b2:f4:e7:38:
68:45:98:d4:28:eb:a7:71:19:6d:4b:f7:95:5f:af:8d:8d:37:
7f:22:b6:21:3c:6f:30:c6:fe:cd:6d:e9:cc:d1:10:3a:e7:0a:
e2:ff:74:0d:b8:57:c2:78:42:70:21:1a:60:4a:e1:3f:a2:8b:
c0:94:62:d5:9e:94:fa:e7:51:ad:0e:4d:d5:78:c4:b4:0a:2a:
3e:da:84:e1:0d:13:34:ee:dc:8d:5f:49:3d:30:97:66:ed:a0:
7a:08:5d:e3:fc:63:e5:04:0b:fa:2f:f6:15:82:b8:2b:c4:e0:
f4:29:e2:a2:c5:0c:89:90:da:08:7d:e5:1f:9c:3c:ab:ed:10:
7c:27:c3:19:d5:f9:c4:cd:2f:1a:6f:7a:40:54:de:70:ed:cc:
48:61:da:c8:ae:57:ea:5f:33:a8:63:10:6c:5b:55:99:85:f8:
e6:6d:c2:42:1d:1b:62:57:02:c8:05:ac:7f:8d:58:7c:45:29:
1c:60:eb:0d:ad:87:77:4c:b5:8b:86:de:b3:b7:fe:46:da:01:
b2:81:0c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:40 2025 by rpki-client