Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/VsKVaJ_D5kC_BsaAQETQEpQohrg.roa
File: VsKVaJ_D5kC_BsaAQETQEpQohrg.roa (raw, json)
Hash identifier: axS5xXE6qGAoQQrEixmXsLhpG2ov/Dkt9dD0+fAzTg4=
Subject key identifier: 56:C2:95:68:9F:C3:E6:40:BF:06:C6:80:40:44:D0:12:94:28:86:B8
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 09331831
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/VsKVaJ_D5kC_BsaAQETQEpQohrg.roa
Signing time: Sat 01 Jan 2022 16:00:58 +0000
ROA not before: Sat 01 Jan 2022 16:00:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211936
IP address blocks: 78.108.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154343473 (0x9331831)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56c295689fc3e640bf06c6804044d012942886b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:83:74:9a:bf:37:50:8e:d0:2c:07:45:83:3f:
e8:ea:92:42:a8:10:14:77:94:34:e4:21:a3:66:d7:
5f:e2:20:cc:55:fa:62:e9:81:d2:48:c7:74:9d:c0:
a7:da:b8:a5:58:39:18:bf:59:31:07:70:7d:5e:5d:
7f:f1:ca:28:00:b9:15:bf:28:bf:a1:bc:c1:86:30:
90:01:65:ac:61:2f:e6:f9:52:63:c5:04:d9:22:ff:
ae:82:f5:4f:a7:29:7f:b6:b3:0e:57:b4:c1:85:6f:
d1:39:9f:87:4b:d8:df:ec:f6:22:45:d8:df:87:5f:
63:63:3a:68:29:d1:83:8b:7c:82:10:a8:3b:76:05:
f6:4f:da:bc:fb:3f:27:7c:75:85:a3:6a:bb:e7:f4:
d4:31:ba:f2:41:04:e5:fd:71:64:f3:fa:6c:0e:63:
d3:26:b1:db:23:da:42:b6:7b:bf:29:af:a8:63:03:
f6:e1:4f:90:4f:3b:5f:35:29:94:ed:47:f8:e5:00:
dc:b7:2b:d8:d1:b1:58:7b:fd:25:31:d6:03:df:0b:
fc:e1:7e:7d:ed:99:68:00:1a:e0:f0:5c:56:5e:2c:
43:1f:83:f9:62:c7:fe:a5:4d:56:8d:a2:7f:f2:ff:
7c:d9:1e:fa:d1:93:10:ae:15:80:96:0d:ed:a6:ad:
0e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C2:95:68:9F:C3:E6:40:BF:06:C6:80:40:44:D0:12:94:28:86:B8
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/VsKVaJ_D5kC_BsaAQETQEpQohrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.219.0/24
Signature Algorithm: sha256WithRSAEncryption
77:6e:3b:a2:5c:d2:11:04:f6:63:e8:00:94:a4:de:c7:e9:26:
20:44:46:7e:8a:75:a9:94:90:25:fb:71:41:cd:19:22:4d:0c:
9c:b3:fd:e5:c9:67:32:f0:06:77:82:bb:fb:23:97:ff:91:bd:
b5:07:b5:c2:b9:d1:9d:59:09:90:07:d1:ba:b4:9e:0b:16:9a:
d4:af:50:34:c7:5c:eb:d1:e6:d4:4e:be:52:04:2a:03:49:8e:
02:15:f8:2f:10:f3:56:fe:d6:4a:1a:1f:8f:63:90:a6:ac:0f:
5d:83:02:96:79:aa:03:4b:36:b2:3a:7b:88:b7:de:8e:32:0f:
87:5d:16:d4:8a:37:9c:45:9d:5c:d0:e3:19:5b:63:3b:5e:87:
3b:d6:60:e7:7a:4d:f8:52:6b:97:ad:34:6b:4b:f6:49:9e:ec:
e2:f3:cb:e2:bd:64:6f:9e:8b:7b:0a:38:8a:d0:40:a9:92:97:
6e:c7:18:88:3f:33:91:d2:74:12:4a:b4:e9:33:46:3b:0b:00:
48:8a:3b:f8:e2:21:e6:03:b6:ba:f0:12:55:17:57:de:38:6c:
68:37:87:ec:f1:22:8a:56:44:97:98:c7:8a:59:86:2d:f0:c1:
c1:18:4b:2e:4b:1e:7b:46:6b:4b:c2:2b:76:bc:53:86:f6:af:
ff:24:87:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org