Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/nVW3-WAYIPgpskrDLWp6LRc51II.roa
File: nVW3-WAYIPgpskrDLWp6LRc51II.roa (raw, json)
Hash identifier: VEL8JiHiQ0Fcus5vjl9YHEb/xaba8DC4zeceqsMkw68=
Subject key identifier: 9D:55:B7:F9:60:18:20:F8:29:B2:4A:C3:2D:6A:7A:2D:17:39:D4:82
Certificate issuer: /CN=5dd69d9f749630f0256cf0ceab58836b491a58f6
Certificate serial: 01853E02E4614C6587B3347F03F5819B5E6D
Authority key identifier: 5D:D6:9D:9F:74:96:30:F0:25:6C:F0:CE:AB:58:83:6B:49:1A:58:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdadn3SWMPAlbPDOq1iDa0kaWPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/nVW3-WAYIPgpskrDLWp6LRc51II.roa
Signing time: Fri 23 Dec 2022 08:04:14 +0000
ROA not before: Fri 23 Dec 2022 08:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207691
IP address blocks: 147.78.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3e:02:e4:61:4c:65:87:b3:34:7f:03:f5:81:9b:5e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd69d9f749630f0256cf0ceab58836b491a58f6
Validity
Not Before: Dec 23 08:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d55b7f9601820f829b24ac32d6a7a2d1739d482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2a:17:ac:e5:01:b4:aa:d0:ae:1a:6f:23:87:
0e:69:a3:2a:5e:81:8e:e7:d5:67:09:d5:f7:1b:25:
d5:21:12:c9:4d:2d:a7:ba:fd:e3:77:60:ee:d3:89:
ce:4a:47:be:f3:da:ec:df:8a:b7:22:65:f3:27:fb:
3e:d1:fb:bc:22:87:2e:12:f1:e9:66:51:5a:19:c8:
47:a5:c4:c0:f9:d5:bc:ec:63:d8:21:ee:65:71:d9:
4a:8a:57:5c:a3:20:0c:ee:f7:77:e9:2f:9a:b7:35:
d6:36:44:2c:cd:23:e7:79:06:5d:14:20:a2:87:35:
57:06:6f:62:bb:55:22:0f:1d:05:87:66:ae:61:77:
87:3d:7e:fb:30:cc:a8:e9:6a:c9:b0:06:a4:41:ab:
49:44:89:79:45:e6:7b:cd:0e:dd:3d:a2:30:53:97:
f7:64:b4:9c:14:ee:12:b1:c9:59:b0:e4:29:1e:4c:
39:c4:87:54:c9:eb:1c:77:3f:0e:03:bd:56:e2:d8:
d5:48:b6:82:66:fc:02:76:65:b2:b1:14:dc:39:6b:
00:e6:c1:08:b1:5b:a6:bc:10:f8:16:f4:d2:cf:ac:
50:44:fe:39:f3:04:07:7a:e6:ec:4d:5f:73:5e:a6:
65:70:c5:e3:ee:5e:80:89:2f:12:36:67:ec:80:dc:
ac:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:55:B7:F9:60:18:20:F8:29:B2:4A:C3:2D:6A:7A:2D:17:39:D4:82
X509v3 Authority Key Identifier:
keyid:5D:D6:9D:9F:74:96:30:F0:25:6C:F0:CE:AB:58:83:6B:49:1A:58:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdadn3SWMPAlbPDOq1iDa0kaWPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/nVW3-WAYIPgpskrDLWp6LRc51II.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/Xdadn3SWMPAlbPDOq1iDa0kaWPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.142.0/24
Signature Algorithm: sha256WithRSAEncryption
89:43:4c:e3:fd:47:d7:78:cd:2d:d5:21:33:c0:37:25:5e:50:
ba:2a:e7:53:4b:88:5f:be:71:3e:23:ef:95:41:2a:96:e5:dd:
02:f6:09:b5:19:94:b4:00:71:b0:2a:a8:7b:c1:f0:4b:d7:3e:
14:a2:a2:0a:94:a8:6b:fd:b3:f0:d5:f2:72:6c:01:2d:5f:87:
21:82:7c:79:fc:98:06:6b:fe:43:aa:eb:3e:05:4a:94:7c:84:
76:a5:7d:9a:90:26:bc:09:d7:be:b2:3e:ec:79:a9:42:07:bc:
8f:6e:1b:34:0d:f7:b4:ea:2e:0e:90:34:55:a1:01:31:86:3f:
75:00:a5:6c:16:af:6d:50:76:7b:e3:fc:64:d0:ed:bd:9d:b6:
41:e2:47:1f:5d:f3:1b:87:a2:3d:8c:39:e1:f1:32:76:e8:f4:
d4:09:5e:03:7f:69:23:73:a3:bf:31:26:12:ff:10:86:d4:b9:
56:57:62:30:61:7a:6a:91:17:7e:4a:b8:e7:f6:66:0d:28:e7:
df:d8:24:d7:7d:56:c0:0c:d4:e4:dc:30:b5:bf:69:22:42:cd:
d1:87:9a:6b:1c:83:89:0f:fa:a0:b5:7d:3c:3d:fb:d8:44:b0:
42:5e:38:c4:4f:41:5f:2b:5c:a3:80:6d:67:81:17:1a:93:2a:
fe:c2:25:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:45 2024 by rpki-client on console-fra.rpki-client.org