Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/3nkBB3sC1a9aNmqlqg9VjtWcD3o.roa
File: 3nkBB3sC1a9aNmqlqg9VjtWcD3o.roa (raw, json)
Hash identifier: 0SzPmVSe0VAJlFHrQucxtogIq/xS6JQz7x8ytOypKI0=
Subject key identifier: DE:79:01:07:7B:02:D5:AF:5A:36:6A:A5:AA:0F:55:8E:D5:9C:0F:7A
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 038A6AFF
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/3nkBB3sC1a9aNmqlqg9VjtWcD3o.roa
Signing time: Sat 01 Jan 2022 15:57:27 +0000
ROA not before: Sat 01 Jan 2022 15:57:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 78.142.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59403007 (0x38a6aff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jan 1 15:57:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de7901077b02d5af5a366aa5aa0f558ed59c0f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:13:e6:29:ff:f3:70:b1:55:b2:ff:50:12:7a:
9f:6d:e6:22:f3:88:64:d3:73:22:20:96:8d:d5:b0:
02:85:37:13:e4:39:7b:31:d6:8a:0f:56:f4:16:9a:
ca:7f:cf:3a:08:c9:e5:b4:32:0f:66:c8:09:22:82:
0d:ba:35:46:b6:08:68:11:da:3d:f7:2e:ce:d9:7c:
55:19:59:3a:d6:36:3e:04:b7:e7:05:41:3e:cc:f9:
82:d2:03:16:d9:13:24:c6:1a:64:ce:0f:6e:3c:82:
8e:0b:e6:db:cb:2f:b5:16:40:17:0c:6e:b2:4f:13:
eb:5a:ca:d3:bd:c4:31:e1:62:47:36:1d:f2:d7:79:
d1:bf:c7:de:e0:29:b5:e8:45:d6:b4:d5:98:1b:1f:
6f:48:03:c6:65:22:5e:7d:a7:f7:cd:5f:46:ec:27:
a6:2c:a0:ee:3f:cc:b0:9e:76:8c:56:89:d9:0c:1b:
61:3a:6c:84:dd:b5:02:e9:80:36:ea:a9:75:35:34:
7c:78:74:35:39:a7:11:65:d6:68:c3:d9:f9:aa:01:
b0:49:6f:ce:20:c0:db:ba:c8:d3:c5:99:65:20:29:
e6:a0:26:c5:6d:b1:cc:5f:b8:27:09:f0:8d:37:f9:
8d:e1:80:b1:b1:de:5d:2f:ee:cf:83:31:be:09:59:
75:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:79:01:07:7B:02:D5:AF:5A:36:6A:A5:AA:0F:55:8E:D5:9C:0F:7A
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/3nkBB3sC1a9aNmqlqg9VjtWcD3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.219.0/24
Signature Algorithm: sha256WithRSAEncryption
03:9b:90:be:de:c3:ca:06:dc:e1:8e:b5:58:83:c3:40:e4:55:
14:0b:3a:6a:1d:99:c8:e0:31:9d:89:ea:a6:40:0b:8f:9a:17:
dc:26:dc:34:f6:bb:ee:ca:1c:f8:7e:7a:f0:d3:c0:e7:db:ad:
8f:69:46:e7:59:74:b1:8c:0d:8e:ab:af:f9:8f:14:67:70:5f:
8a:bf:e0:4a:5a:35:80:b8:44:8b:a6:5a:c9:06:e1:3d:ff:4d:
4f:1d:0d:ff:ad:bf:69:68:61:b7:1c:2c:8e:e3:90:35:b2:d0:
e9:7d:f4:8f:49:64:24:bd:e5:3c:90:3e:b3:49:a2:f9:0b:bf:
29:48:66:06:d1:e2:6a:45:fb:1b:75:24:5c:f3:3d:32:1f:a7:
83:aa:c8:a8:ef:c7:26:1a:87:64:01:f1:42:bc:72:e3:b0:84:
4c:19:f3:69:d7:93:26:95:4e:d8:8d:44:fc:42:c3:5d:2a:eb:
8c:8b:53:be:e6:6b:5e:11:7a:f0:58:f3:b7:4e:48:d9:18:d3:
bb:12:7f:10:1e:ab:c6:b2:38:02:12:be:6c:25:d5:98:bd:9c:
3a:fa:af:8b:1e:f6:11:6d:ef:8e:94:b3:90:bd:4f:0b:ea:a6:
cd:1d:fb:be:7e:68:d7:c8:3b:67:42:6f:49:2b:a6:fc:04:6c:
bd:cc:01:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:30 2024 by rpki-client on console-fra.rpki-client.org