Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4578a6-1a1c-4944-a773-c25d7fca0037/1/RnOSkv8hpgIwXvGhQhn0T4iAq8g.roa
File: RnOSkv8hpgIwXvGhQhn0T4iAq8g.roa (raw, json)
Hash identifier: svEGmRrxGvaCVh4tiH+1k1KBfqTih/cAtUEI2MOWwhs=
Subject key identifier: 46:73:92:92:FF:21:A6:02:30:5E:F1:A1:42:19:F4:4F:88:80:AB:C8
Certificate issuer: /CN=0324d16977eee2f58beb1bb7aa2f4b2fa1abfc48
Certificate serial: 3791BD05
Authority key identifier: 03:24:D1:69:77:EE:E2:F5:8B:EB:1B:B7:AA:2F:4B:2F:A1:AB:FC:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyTRaXfu4vWL6xu3qi9LL6Gr_Eg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4578a6-1a1c-4944-a773-c25d7fca0037/1/RnOSkv8hpgIwXvGhQhn0T4iAq8g.roa
Signing time: Sat 01 Jan 2022 14:07:09 +0000
ROA not before: Sat 01 Jan 2022 14:07:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5610
IP address blocks: 78.24.232.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932297989 (0x3791bd05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0324d16977eee2f58beb1bb7aa2f4b2fa1abfc48
Validity
Not Before: Jan 1 14:07:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46739292ff21a602305ef1a14219f44f8880abc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a3:27:27:1f:fd:87:1b:11:3c:7d:a6:66:cd:
4e:4b:91:d7:eb:de:ed:ac:1d:3a:6a:4c:5c:5b:65:
30:f6:5f:6e:88:e8:59:16:bc:23:99:29:bd:15:15:
05:be:4e:e6:9a:16:7d:1d:25:d2:0c:21:73:d0:47:
d3:b3:0b:2f:77:b9:06:26:4b:d7:3e:07:88:0c:0d:
b8:62:71:04:db:07:05:bd:32:32:c8:05:3c:6d:d4:
57:42:df:67:5f:04:4b:5d:b2:a0:6a:18:a1:43:0e:
c0:b8:bd:55:8a:77:88:ca:e9:d5:43:8c:4c:9a:8b:
51:16:42:db:fd:70:76:65:fc:2b:ea:06:2d:96:d9:
c9:cf:c9:01:66:04:52:79:00:31:92:38:65:12:28:
5f:ee:c5:5e:00:73:31:3f:51:f7:bd:df:fb:7d:6a:
3b:f1:c6:73:02:97:e2:f3:c2:f9:f2:be:b0:ef:79:
36:fd:35:b1:eb:ab:e0:d1:cf:31:af:2c:ff:10:8c:
47:b2:cf:61:3d:67:16:e7:67:7d:fd:66:52:88:17:
69:86:41:1f:f3:8b:e6:de:bd:bc:e5:4d:92:56:a4:
f4:64:b8:a2:ea:3e:8d:2f:02:99:af:b7:57:24:fd:
a1:de:64:c2:dd:58:7a:c0:fe:98:09:7b:3c:7a:86:
8a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:73:92:92:FF:21:A6:02:30:5E:F1:A1:42:19:F4:4F:88:80:AB:C8
X509v3 Authority Key Identifier:
keyid:03:24:D1:69:77:EE:E2:F5:8B:EB:1B:B7:AA:2F:4B:2F:A1:AB:FC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyTRaXfu4vWL6xu3qi9LL6Gr_Eg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4578a6-1a1c-4944-a773-c25d7fca0037/1/RnOSkv8hpgIwXvGhQhn0T4iAq8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4578a6-1a1c-4944-a773-c25d7fca0037/1/AyTRaXfu4vWL6xu3qi9LL6Gr_Eg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.232.0/21
Signature Algorithm: sha256WithRSAEncryption
99:2f:50:d3:92:d8:5a:06:1d:7a:68:5c:9b:42:df:a3:16:10:
65:f9:08:6a:eb:d3:1c:44:13:9a:68:7b:9c:65:48:de:f2:89:
76:5d:81:0c:df:c0:45:1e:d2:c2:24:5d:ec:9f:23:d9:d7:80:
b6:ca:cc:3a:8b:07:a0:35:7e:4d:27:e5:e3:75:24:ca:6d:c9:
ef:78:4a:07:54:e4:b7:bc:5e:f5:44:56:13:35:8c:be:cd:18:
ad:4b:3c:3a:18:a1:08:6c:e0:16:61:6f:86:63:0d:0a:b9:a6:
9e:bd:ba:e0:de:00:b3:a5:f7:18:2a:d4:04:19:8b:17:ff:1e:
52:9c:80:75:ae:94:ed:0c:02:1a:92:24:a9:22:58:c7:93:a5:
e1:31:b2:44:6b:f2:f5:c8:02:59:02:14:54:f6:2f:0c:50:a1:
68:47:46:bf:19:fd:34:84:ba:d4:f5:f6:99:3d:3e:71:9c:65:
1a:e0:1e:98:0d:11:d4:50:06:05:52:66:2e:ee:bd:2a:03:3f:
7f:33:66:a2:76:c5:fb:f4:76:71:c6:02:67:7f:0f:cb:f5:fc:
fd:fc:0b:d4:cf:f1:dc:8f:cc:ad:c1:e2:72:33:8f:99:38:22:
47:bd:29:49:3a:78:72:f7:b0:f2:ef:4e:95:6e:57:5e:a8:62:
d6:55:ac:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:55 2024 by rpki-client on console-fra.rpki-client.org