Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/6YoXKB9-FOaS0DExcDw2xvvhxM8.roa
File: 6YoXKB9-FOaS0DExcDw2xvvhxM8.roa (raw, json)
Hash identifier: bB9KRJAKvPH1RGL9u9OhdQNvRsed9rSWhjoHKTuAmak=
Subject key identifier: E9:8A:17:28:1F:7E:14:E6:92:D0:31:31:70:3C:36:C6:FB:E1:C4:CF
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 038B08D7
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/6YoXKB9-FOaS0DExcDw2xvvhxM8.roa
Signing time: Mon 31 Jan 2022 18:01:18 +0000
ROA not before: Mon 31 Jan 2022 18:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48678
IP address blocks: 78.135.100.0/24 maxlen: 24
188.132.156.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59443415 (0x38b08d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 31 18:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e98a17281f7e14e692d03131703c36c6fbe1c4cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fb:26:3c:f2:5d:39:bb:9e:81:33:1b:c7:bc:
95:2b:d8:cd:d4:c4:46:63:82:23:8d:44:06:8c:80:
6e:f4:ef:6c:fa:45:6d:30:4c:36:7d:9d:e4:b1:8f:
f4:27:83:16:de:61:73:cc:06:10:aa:e2:c3:42:96:
54:92:91:16:1b:b8:2a:69:17:05:52:21:7c:f9:30:
dd:44:03:21:5a:19:a4:9d:41:48:4c:c2:5d:53:c4:
18:8b:db:de:c8:0f:a4:ea:8d:9e:18:47:95:29:dc:
6d:9d:e2:bf:fa:7d:3d:8e:c2:3b:c1:1d:a6:50:a7:
98:37:64:0c:be:c1:c4:51:53:7e:46:9e:dc:aa:af:
7d:8a:9d:32:08:47:4c:10:7b:17:a9:f5:5c:ad:ed:
eb:ec:a3:f4:81:d8:37:b5:38:4c:6b:d7:79:08:a5:
7c:e4:6b:4a:b0:3d:7a:a9:fe:da:7e:1d:46:03:e2:
2c:48:73:f3:f0:01:c8:3f:cb:01:7f:47:86:c1:c1:
a3:20:13:ed:cc:69:d2:9f:77:01:a1:df:d1:82:f6:
2a:2b:85:af:c8:b8:b2:8a:90:8f:83:fe:e5:f9:13:
ec:0a:f2:d4:e1:75:5c:62:7e:7a:6f:35:ef:99:07:
fc:b2:f2:0b:83:ae:cd:45:b0:1d:9c:84:a0:fc:8a:
de:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:8A:17:28:1F:7E:14:E6:92:D0:31:31:70:3C:36:C6:FB:E1:C4:CF
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/6YoXKB9-FOaS0DExcDw2xvvhxM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.100.0/24
188.132.156.0/24
Signature Algorithm: sha256WithRSAEncryption
88:1b:19:40:50:c8:c0:dd:16:a6:e2:e4:a5:46:8e:42:2a:5d:
72:a5:c1:79:bc:23:30:18:e5:ba:7d:14:0e:2e:44:1a:a1:7a:
a1:80:37:90:29:f8:f3:a6:f9:83:1e:78:2a:55:42:bb:63:7b:
36:56:07:35:fb:d0:c7:d0:3b:60:a8:6c:37:00:5c:94:6b:24:
3e:53:de:a7:cc:b9:a8:75:14:cb:a7:e9:8e:3c:d0:38:80:34:
9a:1c:9c:6d:88:bb:cc:9a:a1:f7:c1:d7:ed:3a:72:86:ed:41:
96:3a:f0:bd:72:1e:e5:e0:f3:e4:44:9f:7f:8c:7a:7f:2e:4d:
d7:2b:63:2b:63:c5:f5:74:53:43:58:10:a6:09:54:18:92:c8:
14:66:8f:22:ee:3a:91:68:a8:54:7f:81:f0:a8:1d:f5:cd:e0:
45:b1:d9:52:eb:0e:4d:25:89:e0:a3:14:18:b6:fe:ff:a8:8a:
7f:55:ea:84:b9:98:ac:88:1f:b1:c5:9b:4b:c9:5f:f2:03:fe:
7f:6f:94:8a:a7:18:dd:88:32:76:7c:c0:a4:29:b9:ea:0e:98:
71:be:c4:c2:1a:62:2a:84:91:2b:a7:77:8c:2a:c7:76:dc:2a:
f5:30:f8:8a:79:10:90:5a:52:ea:5c:97:c1:b4:13:bd:07:16:
2d:ab:17:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org