Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/Ix627HcB0JlscKUx_rgwpN9XS10.roa
File: Ix627HcB0JlscKUx_rgwpN9XS10.roa (raw, json)
Hash identifier: /dJPciPKer0++dJdeqXF8JmG1B7oVVEE3Z+c01rT23s=
Subject key identifier: 23:1E:B6:EC:77:01:D0:99:6C:70:A5:31:FE:B8:30:A4:DF:57:4B:5D
Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Certificate serial: 09087DA6
Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/Ix627HcB0JlscKUx_rgwpN9XS10.roa
Signing time: Sat 01 Jan 2022 15:04:26 +0000
ROA not before: Sat 01 Jan 2022 15:04:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209966
IP address blocks: 78.41.55.0/24 maxlen: 24
78.41.52.0/24 maxlen: 24
78.41.54.0/24 maxlen: 24
78.41.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151551398 (0x9087da6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Validity
Not Before: Jan 1 15:04:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=231eb6ec7701d0996c70a531feb830a4df574b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c7:8f:60:69:a4:80:6e:1e:1c:1f:49:44:2e:
b8:d8:39:fd:bb:7a:7e:9f:9a:fc:97:e5:c9:e8:55:
2c:d5:4a:5d:64:d2:38:f5:cd:ba:34:54:5a:87:e2:
84:51:ff:3e:1d:11:c9:6b:c1:d5:34:83:84:35:16:
c0:22:11:51:b5:93:40:c7:9a:d0:59:88:9a:43:bc:
1d:a9:63:12:90:8a:f3:16:7d:d5:b2:a8:76:03:91:
30:6f:97:85:93:c7:15:3f:a8:5d:db:32:a7:ba:77:
28:ac:5e:56:9d:6e:31:2d:4a:78:b1:de:85:88:a2:
85:d9:b7:26:17:e4:9b:92:83:ef:b1:bd:44:37:ed:
6d:00:0d:2d:9d:c3:6c:df:5d:49:58:10:15:de:5f:
33:3c:67:1e:5f:59:ae:cb:da:80:c1:46:60:4f:3e:
71:49:1c:52:da:9c:cf:32:0f:85:2f:fd:7b:c8:f0:
b2:a3:98:0c:3c:84:d9:2b:6c:5c:80:60:8d:f2:24:
75:fc:d2:e6:76:41:c2:c6:ce:5e:c5:75:c3:76:71:
fc:09:46:3b:98:3d:ef:e2:c2:2d:e4:c6:62:17:09:
ae:67:21:81:11:35:41:80:ac:cc:13:a3:95:07:8e:
df:11:01:93:10:c9:2c:f0:1a:40:e4:a1:f6:fb:fc:
17:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:1E:B6:EC:77:01:D0:99:6C:70:A5:31:FE:B8:30:A4:DF:57:4B:5D
X509v3 Authority Key Identifier:
keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/Ix627HcB0JlscKUx_rgwpN9XS10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.41.52.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:b8:88:75:f5:b8:92:a7:96:bc:33:34:cc:b4:ce:30:85:cb:
89:38:55:73:ed:44:b2:6a:07:a2:3e:ea:00:bd:2f:02:dd:e8:
47:e0:2f:e9:81:69:3c:15:08:c7:9f:34:20:33:b4:df:d5:52:
46:5c:c5:84:e1:68:9e:03:3c:1f:4f:da:b2:6f:4a:cc:3b:4a:
22:a9:ab:75:7d:c8:af:ed:b2:0d:3e:c8:a6:46:97:ed:d8:2f:
49:c2:cd:33:75:b1:16:b6:25:31:71:36:8f:08:db:75:cf:bb:
49:a6:ed:a2:0f:14:d3:d6:4c:c5:bb:06:10:ac:5b:09:26:da:
7e:e6:4f:91:51:12:da:9c:1e:62:1f:da:ae:b3:ca:5f:65:8a:
aa:c3:fd:0b:c2:d5:3d:37:1e:ca:ec:35:aa:dd:5e:8d:12:bf:
0c:05:90:a2:bb:77:2f:83:4b:c9:a9:50:d4:aa:f2:ab:2b:02:
33:b1:26:2f:db:b9:bb:a9:3e:9f:bb:4c:af:13:4e:fb:81:55:
a2:06:42:ba:ff:4d:95:39:1f:c3:a3:03:13:d1:e5:a6:2d:7c:
45:45:9b:d8:26:87:c7:69:70:bc:0b:08:fd:e9:ad:cc:99:28:
56:96:aa:4b:0a:63:35:e5:cd:5b:de:b3:7b:58:43:f7:c7:0a:
ee:29:7b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:51 2024 by rpki-client on console-ams.rpki-client.org