Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/IFPdutJDrAedLP7zKL0ifN-1cYc.roa
File: IFPdutJDrAedLP7zKL0ifN-1cYc.roa (raw, json)
Hash identifier: qhvgp9x7qkvHSk+CjJyl6GFeHceBFc4epGnrj3X7Q3Y=
Subject key identifier: 20:53:DD:BA:D2:43:AC:07:9D:2C:FE:F3:28:BD:22:7C:DF:B5:71:87
Certificate issuer: /CN=bb190d102ac9603b405b36374d429868604937af
Certificate serial: 0B05C5B1
Authority key identifier: BB:19:0D:10:2A:C9:60:3B:40:5B:36:37:4D:42:98:68:60:49:37:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uxkNECrJYDtAWzY3TUKYaGBJN68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/IFPdutJDrAedLP7zKL0ifN-1cYc.roa
Signing time: Sat 01 Jan 2022 09:01:47 +0000
ROA not before: Sat 01 Jan 2022 09:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202128
IP address blocks: 185.78.208.0/22 maxlen: 22
2a05:6d40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184927665 (0xb05c5b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb190d102ac9603b405b36374d429868604937af
Validity
Not Before: Jan 1 09:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2053ddbad243ac079d2cfef328bd227cdfb57187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:95:e4:cd:43:fe:67:4a:ea:90:23:50:c3:b1:
54:3c:bf:3c:9e:ba:81:48:09:93:44:25:66:30:79:
40:53:c5:b7:a6:98:e2:6f:f2:3c:9f:6f:51:84:d9:
b2:d9:8e:f5:1d:4c:c4:47:ff:f4:7e:d7:3f:ed:0c:
d4:7d:52:ba:11:46:8c:ae:8a:cd:d7:db:ad:62:4d:
98:85:e6:23:99:7e:29:f4:9b:20:b3:1a:83:07:b4:
41:3e:d5:bf:bd:2b:62:1d:14:09:3b:b7:6c:dd:1b:
61:3b:9c:a9:d5:fb:be:14:3d:8f:75:0e:f5:5c:19:
3a:0b:c7:5f:5a:fa:4b:fb:0e:d8:47:d0:99:31:14:
9c:1d:e0:34:3c:14:2e:39:f9:33:70:64:48:c9:3d:
b7:c0:bf:a0:5a:f4:41:8f:53:a0:75:a5:9a:04:17:
be:74:f3:b3:5a:f1:3f:8c:5c:b5:05:a5:a3:d4:ff:
a9:c4:cd:d9:d7:ba:72:05:13:80:5f:62:c4:e0:d3:
51:8c:17:df:b6:eb:9c:9d:e5:07:f8:a2:9c:53:8e:
12:73:b6:d3:d4:54:f7:bc:43:0b:53:30:5f:a4:b3:
ce:75:f5:84:a7:4d:74:e2:c2:b1:41:ac:29:7a:2a:
1e:c0:75:b3:0e:18:a9:8d:02:49:7e:85:26:50:8e:
d6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:53:DD:BA:D2:43:AC:07:9D:2C:FE:F3:28:BD:22:7C:DF:B5:71:87
X509v3 Authority Key Identifier:
keyid:BB:19:0D:10:2A:C9:60:3B:40:5B:36:37:4D:42:98:68:60:49:37:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uxkNECrJYDtAWzY3TUKYaGBJN68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/IFPdutJDrAedLP7zKL0ifN-1cYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/uxkNECrJYDtAWzY3TUKYaGBJN68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.208.0/22
IPv6:
2a05:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
05:ef:da:a7:56:48:10:89:19:17:f5:87:c6:6c:4c:84:82:ad:
89:25:ce:65:3c:f7:6e:01:95:df:61:e1:e7:4d:a8:d8:08:fe:
26:6e:d3:0a:90:2f:9b:70:f5:05:fd:df:3f:dd:65:65:03:b6:
33:17:86:f0:89:ed:5b:d7:e1:d0:b6:39:ab:51:04:cc:1c:ef:
1d:26:f2:b5:b8:77:68:81:d7:fe:34:8d:0f:83:6b:f4:85:68:
d8:f4:83:99:1f:c3:cb:20:7f:6c:2e:0e:f5:a8:b7:ae:33:96:
d1:01:fe:0e:29:c4:c1:90:d9:b6:9a:8d:17:2c:f4:47:d2:a9:
4b:d9:b9:5a:fd:4a:24:bf:5b:54:53:1f:5c:c8:1e:b4:bb:51:
fa:de:93:ae:0c:fe:67:71:de:4b:fa:8d:47:90:54:dd:d6:00:
09:bc:8c:ed:fb:8b:42:c9:97:f0:23:08:9f:e9:b5:15:f6:9f:
83:00:5d:ac:46:d1:37:b0:1d:83:02:b8:2b:75:20:7d:5d:b1:
ce:74:6a:d6:dc:c3:dd:a2:a1:1b:d2:d3:84:8f:dd:2e:fc:71:
2a:7b:3d:cf:c8:a1:5f:a1:66:26:9c:c4:55:89:35:47:ce:28:
f9:2b:ec:82:fe:57:28:cd:21:fe:f6:97:f3:84:29:ec:19:1a:
1a:8f:bd:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:53 2024 by rpki-client on console-fra.rpki-client.org