Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/6Ij_Ne_Vl2z6bZk7Pv4UeccQ5eQ.roa
File: 6Ij_Ne_Vl2z6bZk7Pv4UeccQ5eQ.roa (raw, json)
Hash identifier: qy0rzcqPqqz2WFj/tK2BqcBj8xXC2DnfPCVMJGl7MRg=
Subject key identifier: E8:88:FF:35:EF:D5:97:6C:FA:6D:99:3B:3E:FE:14:79:C7:10:E5:E4
Certificate issuer: /CN=5dd69d9f749630f0256cf0ceab58836b491a58f6
Certificate serial: 018570CBEE7E407E219E591257A1393E755E
Authority key identifier: 5D:D6:9D:9F:74:96:30:F0:25:6C:F0:CE:AB:58:83:6B:49:1A:58:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdadn3SWMPAlbPDOq1iDa0kaWPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/6Ij_Ne_Vl2z6bZk7Pv4UeccQ5eQ.roa
Signing time: Mon 02 Jan 2023 04:44:51 +0000
ROA not before: Mon 02 Jan 2023 04:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207691
IP address blocks: 147.78.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:ee:7e:40:7e:21:9e:59:12:57:a1:39:3e:75:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd69d9f749630f0256cf0ceab58836b491a58f6
Validity
Not Before: Jan 2 04:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e888ff35efd5976cfa6d993b3efe1479c710e5e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fb:52:1a:72:85:31:7d:ce:97:98:30:ae:9d:
bc:7c:d0:f5:cd:0c:fb:2a:18:81:d8:e3:37:7b:80:
e8:9b:fb:ad:a1:3c:cf:64:b2:6b:e5:44:51:fb:59:
4e:cc:a1:2c:d8:59:e8:e9:ae:dc:eb:16:af:30:5a:
e3:5e:8a:ba:36:6d:55:1e:c6:1d:f3:9f:10:07:8b:
63:62:48:56:cb:6b:e0:f0:34:33:ce:2c:3a:c7:6e:
e2:03:93:ae:50:69:d4:0a:b1:49:11:dd:03:8d:2c:
0f:e2:47:9b:3d:01:cb:4b:4c:db:9f:6d:bd:84:b9:
5f:0b:74:45:ef:a6:e9:0c:47:b1:ab:69:eb:45:dd:
5a:6c:01:c6:b6:4d:48:2d:79:a0:8a:60:01:27:0b:
14:2c:85:5f:44:dc:e0:bd:ee:2a:be:a6:41:e5:df:
cc:c8:e2:82:2e:75:24:a6:f0:41:8f:6e:e6:07:c8:
b7:ad:7d:85:44:e5:0a:dc:08:3f:70:5f:26:ce:68:
91:68:bb:2c:14:46:4e:56:18:97:49:88:5c:25:62:
ed:18:3c:2a:49:77:90:39:19:c5:45:db:3c:9d:03:
33:b7:ae:10:ff:bd:58:d6:bf:74:83:31:8b:08:89:
da:63:6e:56:fc:1b:84:aa:2c:b0:43:86:e3:b5:14:
fc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:88:FF:35:EF:D5:97:6C:FA:6D:99:3B:3E:FE:14:79:C7:10:E5:E4
X509v3 Authority Key Identifier:
keyid:5D:D6:9D:9F:74:96:30:F0:25:6C:F0:CE:AB:58:83:6B:49:1A:58:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdadn3SWMPAlbPDOq1iDa0kaWPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/6Ij_Ne_Vl2z6bZk7Pv4UeccQ5eQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/Xdadn3SWMPAlbPDOq1iDa0kaWPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.142.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:88:ae:91:f1:3d:f7:cc:67:46:41:30:ce:fa:22:6d:58:99:
3f:32:ae:58:7e:26:6f:80:28:0b:08:54:04:27:c6:3b:c9:fa:
7b:ca:6f:9c:f0:d9:ac:ba:ee:0b:75:2c:dd:a7:9c:42:96:12:
a2:a8:c6:5b:b4:e3:b9:bc:b8:09:3b:6f:da:52:f0:4a:f5:c4:
d1:f0:70:90:1b:02:1a:89:77:da:30:15:67:2d:71:2c:cc:2c:
0c:cb:ff:44:7b:80:fb:33:81:00:de:16:d4:6a:3f:0a:9b:f5:
e8:7b:fd:3b:7e:5c:42:89:14:dd:2a:4b:af:dd:8e:c8:ff:1e:
97:69:b1:de:59:22:49:38:6d:6a:1e:c4:43:58:68:a1:33:b4:
d0:2d:49:f4:69:0e:17:3a:0d:53:5a:a1:83:31:41:dc:20:58:
2f:2d:a2:06:50:4c:e6:dd:58:ff:8b:66:e5:dc:b7:86:e3:51:
a1:fd:ab:f1:62:62:ac:7c:45:5c:64:42:5f:a0:bd:b8:ae:c5:
37:c9:b1:88:c2:4a:47:7b:a0:e6:1b:31:5d:47:85:3a:d7:e5:
1c:14:97:ff:88:1e:a1:2a:c9:16:8a:f0:64:e7:b0:f4:63:d4:
60:45:a1:96:8d:f2:0b:d1:3c:23:ae:7e:ae:f6:4a:6a:6f:81:
a5:0d:eb:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:02 2025 by rpki-client