Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/3nSghwF_Y8BPq8Sp8mozN5r_N2M.roa
File: 3nSghwF_Y8BPq8Sp8mozN5r_N2M.roa (raw, json)
Hash identifier: MSpbOLFnctkNeXOej+w+c83Ev4eV/jUSsDJrW4fCrc0=
Subject key identifier: DE:74:A0:87:01:7F:63:C0:4F:AB:C4:A9:F2:6A:33:37:9A:FF:37:63
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0327FE9C
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/3nSghwF_Y8BPq8Sp8mozN5r_N2M.roa
Signing time: Sat 01 Jan 2022 01:54:27 +0000
ROA not before: Sat 01 Jan 2022 01:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207617
IP address blocks: 78.135.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52952732 (0x327fe9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de74a087017f63c04fabc4a9f26a33379aff3763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bc:23:0d:53:ca:49:96:72:0c:fd:3f:be:23:
9b:fc:87:85:10:d2:b6:63:77:cf:91:9d:ea:a4:4e:
a5:fe:c7:ce:1c:3b:b7:5f:8e:04:b7:42:93:2c:f3:
1f:be:1f:20:a9:fd:b7:5b:eb:01:9a:87:07:1c:64:
cc:ea:74:01:f4:71:24:7d:a0:b4:e4:6a:32:bc:04:
9b:b7:83:0b:3d:c7:08:de:25:80:4e:85:45:49:bf:
0c:90:36:d0:07:28:48:f3:89:5b:a0:34:7b:e9:0b:
70:d9:2e:d2:a7:a3:7e:81:50:c2:52:57:92:28:d8:
b0:b5:7a:ba:ba:04:37:1f:41:be:ed:e1:3d:ee:01:
34:02:1b:50:1f:28:12:5c:13:83:3c:a9:45:92:92:
44:f2:94:b6:61:98:34:eb:28:ad:e1:e4:50:83:2d:
66:65:fc:2f:95:f7:12:77:de:d8:67:6d:d3:4b:d9:
05:a1:05:26:45:07:08:26:e3:f0:6c:f4:3e:e5:f0:
5e:b0:0c:9b:56:a8:90:0c:03:09:37:c7:87:3b:10:
63:0c:97:17:aa:8b:3f:d5:b4:93:38:9e:f4:b2:17:
fa:0f:f6:cb:fe:33:45:61:19:38:79:6c:e7:db:ed:
6b:eb:13:dc:0b:82:1e:d0:fe:1a:68:07:9f:dd:e0:
39:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:74:A0:87:01:7F:63:C0:4F:AB:C4:A9:F2:6A:33:37:9A:FF:37:63
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/3nSghwF_Y8BPq8Sp8mozN5r_N2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.71.0/24
Signature Algorithm: sha256WithRSAEncryption
05:11:c7:cb:3f:00:77:0c:2a:5b:45:00:0a:d9:0f:22:59:e5:
e2:9a:da:71:f9:c8:94:ae:0d:35:a8:b2:37:79:b2:eb:11:23:
6a:0f:04:a9:88:b0:9f:4c:68:8b:62:45:1e:0e:a4:2c:c3:30:
ca:e3:78:d7:ed:9f:f8:74:90:dd:f6:e6:92:08:ed:71:fc:c5:
ad:83:ac:07:5f:cb:a1:2a:54:13:db:a1:41:e9:fa:34:cc:4d:
91:6d:6e:ce:37:e1:67:62:95:e4:74:d0:ef:23:15:4e:4a:dd:
f3:f2:5c:ec:07:6f:87:4c:90:1f:72:a1:90:27:24:c8:77:9f:
15:ec:6a:78:2d:4a:db:2c:52:77:81:d8:20:78:25:96:f5:77:
da:9a:a1:44:3a:4a:3a:82:82:2c:a5:1a:37:c6:32:98:54:7b:
4e:70:f8:af:e9:0a:35:2c:10:62:42:a4:44:c3:fa:ef:43:99:
12:1b:6b:87:46:cc:3e:45:26:56:70:9e:55:1d:d6:02:34:2e:
f1:82:74:6a:ba:d9:f9:55:23:a8:3f:9f:b1:06:e2:df:2d:70:
79:ca:da:2e:8f:0b:ff:27:48:5c:07:81:06:22:6f:df:1f:5d:
8e:2b:7f:da:dd:da:42:2e:87:e7:34:75:da:31:6a:4a:75:11:
81:9b:85:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org