Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/V2v-OjVV2DXTdhrqKq5tJmehJOg.roa
File: V2v-OjVV2DXTdhrqKq5tJmehJOg.roa (raw, json)
Hash identifier: NiY82dU88tb7Q7xEtG38IwtrTkwm/uw3rUd7eMnriv8=
Subject key identifier: 57:6B:FE:3A:35:55:D8:35:D3:76:1A:EA:2A:AE:6D:26:67:A1:24:E8
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 038B528C
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/V2v-OjVV2DXTdhrqKq5tJmehJOg.roa
Signing time: Sat 01 Jan 2022 15:57:28 +0000
ROA not before: Sat 01 Jan 2022 15:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 78.142.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59462284 (0x38b528c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jan 1 15:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=576bfe3a3555d835d3761aea2aae6d2667a124e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d9:01:8b:7a:65:9a:00:9e:44:ff:80:c5:9f:
e4:a3:6a:d9:ac:20:bb:f3:49:29:86:b9:b9:80:06:
55:d2:24:4f:00:11:e2:b8:f6:c4:7b:85:bd:ef:f6:
51:da:5d:24:3f:c0:ef:f2:d8:92:5e:1c:07:33:a8:
b2:69:70:02:08:70:01:9b:28:8d:13:76:8a:d8:68:
15:cc:43:a7:15:84:66:6a:3f:89:a0:f2:ee:9b:a5:
c4:9a:70:af:bf:cd:4e:cb:f1:fb:7d:3a:02:3a:ef:
e4:75:8e:50:ce:63:32:e9:f1:d3:75:82:02:f2:e3:
43:01:c0:e1:c2:a3:ae:63:a5:4d:15:3f:83:da:af:
7b:90:29:0d:25:fc:4b:5a:51:d8:9c:b7:a5:fc:c4:
e0:1f:70:33:7a:1e:77:0a:7d:a4:fc:8d:4b:16:ed:
a1:be:8c:a5:1a:01:c2:76:c5:5b:25:1a:00:b6:55:
09:df:b8:94:68:5b:66:69:ff:93:f8:c5:4b:bb:84:
f3:09:9a:b3:c2:17:b6:c5:8a:35:d9:c4:df:f6:bf:
56:48:86:57:bd:40:4c:16:a3:7e:4b:44:3a:6d:1f:
3c:ff:db:e3:b3:14:ac:76:b3:93:a8:31:0c:40:a7:
3f:50:90:fc:7f:52:2e:da:9c:c0:60:3d:97:d7:7d:
dc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:6B:FE:3A:35:55:D8:35:D3:76:1A:EA:2A:AE:6D:26:67:A1:24:E8
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/V2v-OjVV2DXTdhrqKq5tJmehJOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.218.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:6d:b7:2f:46:2f:c6:44:b1:6c:67:ab:42:6f:ea:6c:e6:c2:
5b:b3:57:bf:bb:ee:9a:ad:6d:3d:d4:b7:4e:9c:0a:d2:8c:a3:
7d:71:a0:c6:36:51:99:1f:9c:85:4d:89:3f:3b:0f:88:93:a0:
2e:dc:ee:c3:17:d7:5a:34:52:56:3f:73:a9:33:ef:1d:66:2b:
b6:4e:e7:e7:b7:3f:5c:2f:3e:9e:5a:e4:fa:4d:7b:e9:13:9b:
3b:05:cb:03:38:0b:ee:6f:8d:7b:31:c8:4f:60:71:21:15:29:
5a:58:a3:90:46:d9:8c:fc:52:73:01:71:09:01:b5:2f:1d:04:
6b:39:9c:2d:f2:22:c1:87:1f:60:60:c1:10:1d:69:2a:af:69:
bb:44:39:57:11:a0:99:95:ff:42:51:27:32:e9:c7:4b:3f:2e:
9b:11:3d:fa:81:5f:e9:bd:5f:3a:f5:90:b7:ff:19:73:f7:67:
07:98:b2:27:a3:0a:2c:f1:9e:83:a5:29:47:aa:3b:84:9b:f3:
75:5d:26:7b:89:c2:a3:15:90:29:58:7b:35:72:32:6f:f4:50:
7b:dd:ee:c1:67:cb:0c:bd:13:03:43:21:fa:a9:a0:d2:c3:b4:
95:00:ee:86:a3:4b:dc:6b:f3:b5:66:f7:6c:a3:6c:89:16:29:
ef:73:0f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org