Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5-iUzP6aCfKZFQ0Cy8H489EizUI.roa
File: 5-iUzP6aCfKZFQ0Cy8H489EizUI.roa (raw, json)
Hash identifier: TRsc2SshudR5xq89uMFN2aIYCoKtUcZ528ZpzF91rrE=
Subject key identifier: E7:E8:94:CC:FE:9A:09:F2:99:15:0D:02:CB:C1:F8:F3:D1:22:CD:42
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 04A4D43D
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5-iUzP6aCfKZFQ0Cy8H489EizUI.roa
Signing time: Tue 24 May 2022 18:57:13 +0000
ROA not before: Tue 24 May 2022 18:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48678
IP address blocks: 78.135.105.0/24 maxlen: 24
78.135.100.0/24 maxlen: 24
188.132.130.0/24 maxlen: 24
188.132.156.0/24 maxlen: 32
78.135.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77911101 (0x4a4d43d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 24 18:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7e894ccfe9a09f299150d02cbc1f8f3d122cd42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:87:cc:50:29:fe:85:ed:ef:76:43:78:2a:23:
58:68:16:57:11:68:0d:5a:02:01:84:6b:ec:5a:c7:
54:5d:05:c1:c1:cf:96:bc:34:a6:f2:7d:6a:70:46:
9d:62:71:39:fe:4b:61:62:41:2f:f8:3a:4f:36:5d:
be:f5:2b:26:b5:96:f7:de:1f:f3:27:44:29:d2:6f:
35:e8:ec:dc:9b:60:71:87:62:f1:d5:26:d8:c9:74:
04:1b:9d:7b:4f:fd:a3:55:88:76:66:83:1c:d7:d6:
ac:d6:c7:56:19:7b:f1:aa:43:cd:40:b3:3d:39:fd:
d4:9f:c8:07:f6:e8:d5:2d:61:65:c8:88:36:76:ac:
02:17:25:d6:f0:d7:91:02:52:e4:c0:53:06:c3:70:
6e:43:35:dd:cd:ae:cb:99:1a:10:b9:8d:6e:a5:38:
ac:8b:9a:99:10:35:c9:d7:01:cd:59:7e:c8:36:43:
20:84:ba:96:e1:e8:76:a6:fd:28:ba:3c:a1:df:9b:
18:cf:09:ff:c4:4b:25:ed:74:f4:5c:ce:19:e0:a6:
ac:32:2f:5a:00:da:5a:3a:54:1b:e4:e9:bf:d3:86:
fc:68:72:37:ce:2b:a5:b4:69:df:ee:bc:38:ac:8b:
ac:ec:6a:65:68:80:4f:f0:71:0b:d6:69:32:6f:24:
c2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E8:94:CC:FE:9A:09:F2:99:15:0D:02:CB:C1:F8:F3:D1:22:CD:42
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5-iUzP6aCfKZFQ0Cy8H489EizUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.64.0/24
78.135.100.0/24
78.135.105.0/24
188.132.130.0/24
188.132.156.0/24
Signature Algorithm: sha256WithRSAEncryption
21:4b:b4:62:66:ef:bf:3b:21:0a:68:a3:6f:eb:a6:36:28:74:
65:7c:47:bb:14:f0:2a:f1:68:be:4a:b0:8c:e7:2d:4e:ad:a8:
b7:03:39:af:83:e7:5d:65:ac:2c:67:ef:ad:76:44:ad:d5:81:
a8:b2:98:97:5a:27:8a:d0:92:e5:c2:fe:73:05:03:88:0b:6b:
eb:e6:b5:55:2f:db:26:5b:b8:93:9a:fc:4b:81:56:a0:db:10:
44:71:6e:21:0e:38:77:47:41:6b:6e:63:d2:72:b1:3f:e6:3c:
92:49:25:9a:67:e1:6b:23:5a:80:ab:a5:ec:9b:c7:c7:f7:79:
29:49:bf:2b:d9:a6:a4:ae:f2:30:1c:8b:c2:f4:81:d1:48:51:
10:38:3e:95:94:b9:07:65:52:70:52:f6:69:33:5a:e6:ed:cc:
3a:6c:cb:db:a7:b7:f7:0b:e4:73:fe:86:2e:fc:7d:30:bd:1a:
f5:15:16:ea:54:67:58:8a:f3:d6:f8:73:e7:f6:37:28:73:c6:
9c:d2:27:52:b2:16:df:5a:8b:2d:ff:41:39:7e:88:d1:ee:6c:
83:63:ac:63:02:1b:7c:8a:27:83:c8:b9:b4:da:95:d2:15:80:
92:4e:c0:77:15:31:b1:50:01:91:f6:d8:ef:6e:f7:9a:c0:6b:
2e:17:5b:3d
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIEBKTUPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
OWQ1NzQ0N2UzNDIwYjg1Mzg3NWI2ZmE0MDM3MmFhZGUzMTkyY2EyMB4XDTIyMDUy
NDE4NTcxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTdlODk0Y2NmZTlh
MDlmMjk5MTUwZDAyY2JjMWY4ZjNkMTIyY2Q0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMmHzFAp/oXt73ZDeCojWGgWVxFoDVoCAYRr7FrHVF0FwcHP
lrw0pvJ9anBGnWJxOf5LYWJBL/g6TzZdvvUrJrWW994f8ydEKdJvNejs3JtgcYdi
8dUm2Ml0BBude0/9o1WIdmaDHNfWrNbHVhl78apDzUCzPTn91J/IB/bo1S1hZciI
NnasAhcl1vDXkQJS5MBTBsNwbkM13c2uy5kaELmNbqU4rIuamRA1ydcBzVl+yDZD
IIS6luHodqb9KLo8od+bGM8J/8RLJe109FzOGeCmrDIvWgDaWjpUG+Tpv9OG/Ghy
N84rpbRp3+68OKyLrOxqZWiAT/BxC9ZpMm8kwhcCAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBTn6JTM/poJ8pkVDQLLwfjz0SLNQjAfBgNVHSMEGDAWgBTJ1XRH40ILhTh1
tvpANyqt4xksojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3lkVjBSLU5DQzRVNGRiYjZRRGNxcmVNWkxLSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGQvMTU4NmZkLWZkMmMtNDFmOC04ZmU5LTRlMTk4ZjBhNjAxMy8x
LzUtaVV6UDZhQ2ZLWkZRMEN5OEg0ODlFaXpVSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQv
MTU4NmZkLWZkMmMtNDFmOC04ZmU5LTRlMTk4ZjBhNjAxMy8xL3lkVjBSLU5DQzRV
NGRiYjZRRGNxcmVNWkxLSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAE6HQAMEAE6HZAMEAE6HaQMEALyE
ggMEALyEnDANBgkqhkiG9w0BAQsFAAOCAQEAIUu0YmbvvzshCmijb+umNih0ZXxH
uxTwKvFovkqwjOctTq2otwM5r4PnXWWsLGfvrXZErdWBqLKYl1onitCS5cL+cwUD
iAtr6+a1VS/bJlu4k5r8S4FWoNsQRHFuIQ44d0dBa25j0nKxP+Y8kkklmmfhayNa
gKul7JvHx/d5KUm/K9mmpK7yMByLwvSB0UhREDg+lZS5B2VScFL2aTNa5u3MOmzL
26e39wvkc/6GLvx9ML0a9RUW6lRnWIrz1vhz5/Y3KHPGnNInUrIW31qLLf9BOX6I
0e5sg2OsYwIbfIong8i5tNqV0hWAkk7AdxUxsVABkfbY7273msBrLhdbPQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org