Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rBvWA1852chv7uSrrlAzzH1xw4g.roa
File: rBvWA1852chv7uSrrlAzzH1xw4g.roa (raw, json)
Hash identifier: 8r28iePsmXjFIny0K0BIgAPJQ3O4JTvGGeBzDBEJkn4=
Subject key identifier: AC:1B:D6:03:5F:39:D9:C8:6F:EE:E4:AB:AE:50:33:CC:7D:71:C3:88
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 08FA640E
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rBvWA1852chv7uSrrlAzzH1xw4g.roa
Signing time: Sat 01 Jan 2022 16:00:21 +0000
ROA not before: Sat 01 Jan 2022 16:00:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 27176
IP address blocks: 78.108.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150627342 (0x8fa640e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac1bd6035f39d9c86feee4abae5033cc7d71c388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ae:71:e6:01:54:de:01:53:37:fb:54:6e:fb:
13:42:1a:90:5c:2f:53:bb:8c:07:56:b7:42:66:71:
62:b1:69:12:c2:83:cc:fe:2f:84:8b:69:77:6e:82:
de:5d:aa:27:1e:9b:a6:dc:84:81:c2:26:15:8b:d2:
c5:e4:bb:a6:a3:9e:b4:f2:1d:dd:c6:a1:32:de:e6:
99:57:c6:fb:ef:c9:72:49:09:9b:c4:26:ca:97:4e:
34:5e:fe:41:00:10:fe:64:db:2a:c9:fb:de:a3:69:
5c:58:4f:d9:84:0a:84:ea:7a:d5:3e:48:fe:8e:e9:
63:1b:64:55:94:d2:05:1d:2c:a6:6e:00:ca:e9:9e:
ed:1c:97:e7:e1:da:86:17:4e:7c:71:aa:de:88:76:
36:70:05:0a:a7:17:1c:6d:64:0b:0b:93:d5:43:e2:
40:06:29:b9:d2:50:28:a5:76:ac:06:17:9f:2c:ae:
79:37:c5:dc:f8:4a:98:f2:89:16:01:bc:91:66:3a:
e6:a7:53:34:8f:19:91:1e:c4:b9:66:6c:7b:c6:5c:
8a:26:65:ba:2f:52:bc:e7:ae:31:e3:8f:25:86:f8:
8f:a9:5e:18:3d:ac:6e:46:c2:20:e7:2d:80:9c:13:
32:67:32:ee:68:f6:d8:eb:3a:ae:f0:69:2c:53:8b:
11:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1B:D6:03:5F:39:D9:C8:6F:EE:E4:AB:AE:50:33:CC:7D:71:C3:88
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rBvWA1852chv7uSrrlAzzH1xw4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.218.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:9f:07:9b:fb:ef:0b:33:35:90:24:85:2d:50:b5:84:34:93:
1b:5e:f8:76:de:32:49:52:b9:39:59:82:c9:49:f7:48:26:6f:
5a:fd:6d:32:19:6c:d5:c5:a5:f9:75:d3:64:45:0b:49:08:36:
de:a2:94:3b:03:4a:eb:4a:72:80:60:e5:10:3d:5a:25:20:bd:
8e:29:27:82:c3:63:02:7e:b3:b1:b9:b9:5b:31:1c:57:27:86:
09:53:27:2e:72:3d:93:c3:7d:88:0b:d7:b4:b3:b8:16:13:f2:
11:2d:be:21:5f:8d:46:be:c7:bc:f1:86:63:5b:cc:80:24:cd:
58:3a:e2:ae:19:57:40:9f:82:31:09:f1:2c:03:87:00:4f:bd:
6a:23:28:f3:f7:80:8c:38:4a:3f:c7:cf:bf:d2:2a:fd:62:e8:
1d:71:4f:65:95:76:be:1b:e2:45:12:f8:a9:46:85:80:cd:03:
72:76:a8:fd:5c:45:49:6f:56:52:29:55:de:20:cb:0f:24:4e:
cf:d2:7e:f0:ae:e8:62:7a:c8:30:47:11:b7:49:2a:c9:64:4a:
12:a0:f2:00:49:81:47:9b:a8:7b:0f:75:6a:1c:14:3b:fa:8c:
99:7d:3b:aa:c8:34:9f:17:6b:5b:35:41:66:03:06:c5:ef:0f:
14:c0:a6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:40 2024 by rpki-client on console-ams.rpki-client.org