Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9c1362-46fd-489a-bb95-669a8feb7147/1/4yXJ19-3FTn51csQCdNSjXWfMxk.roa
File: 4yXJ19-3FTn51csQCdNSjXWfMxk.roa (raw, json)
Hash identifier: PA/O/V069HD9cUZToufL8kxKUW2LA7HAEtv2GBs7aHg=
Subject key identifier: E3:25:C9:D7:DF:B7:15:39:F9:D5:CB:10:09:D3:52:8D:75:9F:33:19
Certificate issuer: /CN=4812ff485ffd794a6948078afe4e076afe617635
Certificate serial: 02A4F5
Authority key identifier: 48:12:FF:48:5F:FD:79:4A:69:48:07:8A:FE:4E:07:6A:FE:61:76:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SBL_SF_9eUppSAeK_k4Hav5hdjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9c1362-46fd-489a-bb95-669a8feb7147/1/4yXJ19-3FTn51csQCdNSjXWfMxk.roa
Signing time: Wed 23 Feb 2022 16:03:29 +0000
ROA not before: Wed 23 Feb 2022 16:03:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41327
IP address blocks: 147.78.96.0/24 maxlen: 24
147.78.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173301 (0x2a4f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4812ff485ffd794a6948078afe4e076afe617635
Validity
Not Before: Feb 23 16:03:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e325c9d7dfb71539f9d5cb1009d3528d759f3319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:23:54:75:3f:55:80:e3:a4:82:8e:88:86:57:
c8:9d:76:35:bd:ca:d8:20:c4:39:cc:7c:c7:b6:ab:
70:ac:eb:93:b3:28:dc:b6:45:fc:a6:3f:d9:5b:04:
42:7e:ef:d4:54:14:92:87:91:ee:e7:71:f1:8b:6a:
5b:dc:6f:be:45:3a:71:8c:45:e7:cd:5d:36:6c:57:
a6:0f:7a:2e:7f:5a:57:94:95:c2:f1:95:9c:52:e0:
1e:36:aa:2f:1b:a4:77:9b:9e:97:9d:7b:db:47:1d:
99:f7:50:d4:59:e1:5a:fd:c1:bc:37:fd:62:83:06:
c3:71:eb:dc:73:e3:47:28:ec:1d:ac:51:f0:0a:7b:
39:0b:86:16:cb:00:f7:23:cd:e3:0c:08:4c:cd:fa:
54:8d:f7:67:7d:74:f9:0c:79:61:9b:ef:8a:fa:5f:
cd:77:f3:cf:c8:8b:b5:d2:23:1d:14:e7:3b:26:6e:
e0:35:a6:2a:b1:b0:f2:63:4a:cd:0b:04:43:29:d3:
2a:25:0d:45:c0:f1:6c:25:96:11:f9:b4:90:26:17:
0e:eb:96:33:fd:a2:5b:97:f8:1e:19:30:42:95:3c:
fc:d0:db:a6:60:fe:d8:80:82:48:f7:75:d2:b5:59:
0d:c4:d6:68:f4:59:5d:99:af:91:c8:49:3c:37:2a:
71:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:25:C9:D7:DF:B7:15:39:F9:D5:CB:10:09:D3:52:8D:75:9F:33:19
X509v3 Authority Key Identifier:
keyid:48:12:FF:48:5F:FD:79:4A:69:48:07:8A:FE:4E:07:6A:FE:61:76:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SBL_SF_9eUppSAeK_k4Hav5hdjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9c1362-46fd-489a-bb95-669a8feb7147/1/4yXJ19-3FTn51csQCdNSjXWfMxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9c1362-46fd-489a-bb95-669a8feb7147/1/SBL_SF_9eUppSAeK_k4Hav5hdjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.96.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:43:29:18:34:c4:cd:d1:f8:7f:66:b7:55:71:28:ad:5e:18:
4f:96:70:39:d0:94:b4:09:c3:20:32:db:00:62:7d:d7:a5:57:
0a:49:9b:91:ba:8c:39:0f:62:8c:a3:09:65:cf:13:79:b4:17:
ff:12:99:38:fa:fe:2e:d9:95:9d:b0:8e:e5:32:c2:93:cc:a2:
ea:e8:fe:28:1d:68:b9:3b:a9:19:c5:af:68:a0:88:8e:43:3d:
af:70:ce:bd:5c:bf:76:82:da:98:ce:17:f0:31:4d:d7:b5:26:
8a:59:a0:61:24:4f:a2:58:6f:9c:b8:13:51:54:38:77:8d:09:
aa:6b:c8:67:7d:c8:59:81:b9:4f:d8:ff:3a:8c:9d:93:e1:00:
5e:49:5a:6f:71:1f:64:17:77:14:bb:5d:5c:35:15:75:79:21:
fe:37:72:9c:c1:29:40:8c:4e:cf:09:78:80:86:a2:cf:a8:fc:
af:f7:3b:01:a0:39:bf:78:7f:20:5f:5a:92:35:42:d9:93:c1:
28:d4:f2:c7:3b:24:0b:3c:c3:8c:8f:c6:bf:bb:f8:66:e1:92:
b2:cb:c2:1b:b5:ef:90:6c:a3:e6:e4:cb:15:3b:ca:47:19:c3:
e2:96:81:14:f6:1f:68:ba:8a:23:62:96:32:04:d8:26:09:4a:
20:54:99:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:39 2023 by rpki-client on console-fra.rpki-client.org