Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/0jiuOzG_DS7nD1A3wH0UKZdw9rM.roa
File: 0jiuOzG_DS7nD1A3wH0UKZdw9rM.roa (raw, json)
Hash identifier: 1hsu17m4OHLllgU2r6Ss9VAZ1O8Xw4WhZfils09f9gw=
Subject key identifier: D2:38:AE:3B:31:BF:0D:2E:E7:0F:50:37:C0:7D:14:29:97:70:F6:B3
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 032C7189
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/0jiuOzG_DS7nD1A3wH0UKZdw9rM.roa
Signing time: Sat 01 Jan 2022 01:54:28 +0000
ROA not before: Sat 01 Jan 2022 01:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210943
IP address blocks: 78.135.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53244297 (0x32c7189)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d238ae3b31bf0d2ee70f5037c07d14299770f6b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:74:40:f2:ba:c8:30:7f:24:e0:2f:fd:fa:49:
fe:23:ca:fb:76:d6:00:45:ae:f6:f0:95:6b:d7:5a:
34:e3:0e:96:6a:13:8f:d3:67:9d:70:ba:f9:6b:14:
19:2e:84:44:22:f6:7e:6c:15:f7:3a:b1:bf:03:c0:
ca:d1:27:55:f3:61:6e:57:7c:03:6e:d7:6c:9e:ad:
3f:62:df:74:65:5f:9e:d1:16:90:79:e3:99:79:60:
96:3a:ae:10:8b:9d:d4:e7:62:cf:a2:f9:7b:87:3a:
70:30:c5:66:bd:11:2f:de:37:a0:25:88:1b:3b:2b:
ca:d9:10:ad:0b:84:56:1d:cb:8f:2b:dc:20:91:d6:
38:d2:3f:ae:63:dc:11:b5:ae:14:06:25:d7:4a:d2:
23:fd:ac:ae:d2:4e:58:d1:01:ac:b6:94:38:ba:53:
f9:22:d0:26:6d:0a:ad:15:c8:92:b1:bb:cf:b7:dc:
6e:eb:d6:83:7a:a3:71:81:dd:3a:59:3a:82:c9:63:
fa:4a:23:e4:e6:ab:84:8f:9a:54:9e:79:db:9d:54:
b2:18:28:15:56:b8:c1:ad:17:82:ca:2a:80:16:e8:
7d:ee:d0:5f:9b:bb:95:82:f8:2d:4b:7d:c7:e4:23:
fb:1e:48:a6:94:61:3c:9a:19:47:2d:5f:42:99:16:
7d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:38:AE:3B:31:BF:0D:2E:E7:0F:50:37:C0:7D:14:29:97:70:F6:B3
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/0jiuOzG_DS7nD1A3wH0UKZdw9rM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.74.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:27:a5:3a:2c:66:b5:83:4e:7a:42:52:9d:61:63:4d:cc:9f:
ef:9e:04:95:87:11:77:e6:93:f8:7b:ba:0d:fa:bf:3f:d0:6d:
95:f2:b2:cd:55:ae:87:6c:9c:ca:fa:24:8c:80:81:96:77:35:
28:2c:7c:a1:90:d7:58:b9:b2:3f:47:4d:f5:25:0b:b4:b5:56:
e3:8f:09:3c:c4:de:58:ab:03:b6:45:17:57:9c:ed:65:f9:fd:
4e:61:5b:54:4b:3d:3b:d7:be:d4:5e:24:85:b3:cc:79:75:eb:
a7:42:7c:35:bf:17:6b:1a:e2:21:9b:67:14:7a:90:51:ac:d9:
1e:56:a0:db:29:99:fa:7e:4a:5c:19:6e:15:c2:16:ff:1f:d3:
61:83:8c:b5:a7:2c:74:1c:c3:89:84:49:77:a0:e3:57:6e:09:
71:41:b2:82:21:18:50:2a:df:d6:fc:59:9f:44:ac:55:e1:a6:
65:a5:42:c8:af:c5:1a:75:fa:ee:b3:6a:65:a8:1e:71:82:8e:
b5:23:49:dd:1f:9d:5e:34:fd:65:ea:15:8d:b9:ed:f8:07:e9:
ef:b6:09:1a:80:f9:e0:c7:6c:bb:e7:9e:99:da:ec:16:f7:c6:
7b:ca:8e:c3:23:0d:23:0f:78:e4:81:f3:4b:72:6b:cd:93:6b:
45:26:c5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org