Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/v3VlJ0Ws6ngjYdIwG2qg9OLBqts.roa
File: v3VlJ0Ws6ngjYdIwG2qg9OLBqts.roa (raw, json)
Hash identifier: NMw9eBPFaYHtJbqZOl66QzHMkvazapIXxbtWJ3wiPBg=
Subject key identifier: BF:75:65:27:45:AC:EA:78:23:61:D2:30:1B:6A:A0:F4:E2:C1:AA:DB
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 04A06B62
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/v3VlJ0Ws6ngjYdIwG2qg9OLBqts.roa
Signing time: Mon 07 Mar 2022 21:24:42 +0000
ROA not before: Mon 07 Mar 2022 21:24:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204679
IP address blocks: 195.164.128.0/17 maxlen: 24
193.59.78.0/23 maxlen: 24
2001:a17::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77622114 (0x4a06b62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 7 21:24:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf75652745acea782361d2301b6aa0f4e2c1aadb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5a:70:b5:bb:ca:83:8d:d1:78:68:a8:de:a5:
8d:25:fc:8c:06:75:4d:93:03:6e:c8:b6:50:25:c3:
4b:3e:0e:bd:87:11:c9:84:49:18:5b:36:31:21:31:
83:3a:47:1a:c3:40:07:e0:fa:ef:22:ac:a1:d3:cb:
16:6a:34:75:09:37:5f:b9:e5:90:0e:de:30:ea:c9:
b6:bc:fc:8f:80:ec:e7:00:4a:1a:ca:25:19:0c:75:
6a:11:b2:ed:7f:74:2a:b8:de:40:c9:e3:82:32:30:
0b:14:84:3e:65:6d:8e:b1:4d:72:01:f2:34:b4:b8:
ec:38:2a:c4:84:90:46:71:19:ef:0e:8c:9e:db:e3:
01:58:75:da:a2:6d:a5:60:d7:a3:75:2d:42:85:f0:
31:2b:36:a8:ed:c4:61:44:6a:16:92:ad:06:6d:7a:
e5:71:85:5b:27:82:bc:9f:a0:e7:89:0b:cf:c8:e8:
97:f7:10:1f:71:64:07:b8:80:f6:b6:51:47:7a:6c:
5b:79:06:44:c1:74:e0:de:95:d5:d9:e2:17:84:f1:
8b:f3:79:e9:52:12:14:b5:36:1b:ab:0c:05:0d:b3:
ac:8b:71:ae:95:80:72:15:e0:1b:ee:3b:80:75:32:
76:4d:cf:d3:83:d4:5c:d6:86:4e:8f:4a:1f:7b:c5:
6a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:75:65:27:45:AC:EA:78:23:61:D2:30:1B:6A:A0:F4:E2:C1:AA:DB
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/v3VlJ0Ws6ngjYdIwG2qg9OLBqts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.78.0/23
195.164.128.0/17
IPv6:
2001:a17::/32
Signature Algorithm: sha256WithRSAEncryption
13:ed:fe:c1:e7:64:0e:36:58:5d:c5:9a:a8:5d:dc:a6:91:fe:
23:80:7a:e4:42:2d:e7:22:d3:3c:58:d7:a5:2a:5a:fd:94:e1:
ff:76:63:25:fc:9d:27:ac:6a:b4:81:bb:b4:cb:18:73:27:39:
86:31:43:e9:d2:1e:8f:be:a9:c3:0c:31:fe:01:31:04:a9:2f:
fe:7c:83:b5:8a:cc:e3:77:d9:da:da:a2:6b:8b:53:23:8a:41:
16:31:cc:29:16:32:4f:97:fe:b3:b8:6b:02:47:d3:9a:02:b8:
f9:fc:f0:3b:76:5c:0d:56:a7:e7:22:7a:15:ca:d3:98:3d:23:
81:46:61:6d:e8:08:9c:84:5c:09:a5:ec:fc:94:59:44:ba:df:
c8:d0:5a:7a:db:20:8e:a1:f3:f1:de:c0:c7:28:17:08:3e:65:
59:c0:c0:66:29:5c:6d:d9:56:35:cb:61:dd:d2:88:dd:80:8f:
dd:58:78:c8:9b:46:e7:de:17:dc:2c:1e:90:a0:d8:46:32:74:
77:46:ca:a7:b0:e8:27:2d:2e:14:34:29:e9:92:09:55:2b:20:
51:7d:59:27:14:e7:04:4c:f3:0b:5e:33:05:90:58:07:6e:17:
af:be:54:80:f3:be:ee:8f:35:8d:e4:2c:81:0b:69:49:5e:a0:
25:bf:4e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org