Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/B5Vb8DxolVpfXzyKozlXWsy0Zn0.roa
File: B5Vb8DxolVpfXzyKozlXWsy0Zn0.roa (raw, json)
Hash identifier: 3F1fonAsPF00V1e63QI2pXR+twLnDeavoXUf3eoY8Ag=
Subject key identifier: 07:95:5B:F0:3C:68:95:5A:5F:5F:3C:8A:A3:39:57:5A:CC:B4:66:7D
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 031E7637
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/B5Vb8DxolVpfXzyKozlXWsy0Zn0.roa
Signing time: Sat 01 Jan 2022 01:54:21 +0000
ROA not before: Sat 01 Jan 2022 01:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8685
IP address blocks: 78.135.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52327991 (0x31e7637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07955bf03c68955a5f5f3c8aa339575accb4667d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:16:c8:e6:eb:61:cb:f8:19:a4:72:2c:c3:73:
aa:e2:28:10:d2:1c:cf:bd:ed:b1:dd:18:f8:9b:8a:
2b:73:1a:07:80:78:61:0d:0d:b9:00:b5:a9:8b:bf:
c5:4f:91:29:0d:03:4f:29:e4:17:e4:64:06:bb:b9:
6b:39:ab:39:7f:66:cc:c3:c3:8f:d7:7b:50:c9:28:
f4:7c:8f:2e:9e:bf:b6:28:86:a3:98:49:c2:e9:aa:
cb:5e:08:d9:64:6b:4f:9b:bc:cd:76:2b:c6:98:dd:
d9:60:ee:c7:54:34:fc:3b:c3:e8:4c:b4:97:42:d2:
3c:b2:1b:f2:92:a1:0c:41:bd:ef:ac:dc:60:2d:db:
33:39:1c:df:21:93:1f:1b:b5:4a:4b:1f:ea:f3:66:
ca:96:00:ae:c8:b0:b3:e7:6c:73:1d:10:64:70:98:
8d:cb:5b:9d:a7:44:85:43:bc:b6:6b:3b:e0:bc:9d:
c9:91:0f:8b:3e:c0:99:85:f7:04:42:ab:00:3f:06:
3b:97:5b:22:b5:d4:94:37:70:69:63:7c:af:85:cb:
9f:38:f8:45:e8:ab:1f:3f:0e:08:8e:c1:f2:c4:22:
7d:75:ed:81:e3:77:33:51:08:e9:3a:1e:e0:4d:19:
16:12:54:f8:95:10:bb:c1:11:b4:0e:81:9d:8f:7c:
56:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:95:5B:F0:3C:68:95:5A:5F:5F:3C:8A:A3:39:57:5A:CC:B4:66:7D
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/B5Vb8DxolVpfXzyKozlXWsy0Zn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.102.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:c1:87:b7:7a:9d:79:2d:38:7a:fc:f8:f3:46:a8:14:17:f4:
68:50:41:2a:a9:f9:76:47:a3:45:71:54:e9:4b:a5:9a:5a:28:
44:07:90:96:fc:77:9e:95:8d:dd:5a:e3:40:d3:79:fc:42:e4:
cc:ed:10:56:72:75:e1:b1:6a:31:f9:ab:b9:b4:37:27:cb:62:
2a:4a:27:6c:6b:e8:31:1c:70:ae:5d:c6:32:77:f9:d2:8a:81:
be:95:fe:e4:a4:ca:79:27:88:a5:b3:9d:66:dd:72:e3:68:0d:
5f:8e:1d:63:70:3f:16:32:c4:1a:28:e5:28:c4:e1:8d:97:99:
e7:6a:42:79:51:e7:cd:99:b3:89:d2:fa:f9:fa:32:d0:11:2e:
c1:b5:51:3c:48:7e:2e:8f:3e:45:c4:14:29:78:d2:e0:e8:63:
3a:21:04:84:b4:37:00:4d:54:33:6e:34:32:9a:34:8e:65:b3:
5d:3f:f4:8c:8b:d2:a4:30:62:0b:04:92:d8:6f:73:3a:eb:a3:
d7:2b:a6:cf:48:06:18:23:f0:d4:fe:52:92:9f:fd:cf:29:1e:
df:48:68:21:d0:bb:65:c0:3f:e5:7c:49:c1:ae:1f:0b:9d:ac:
52:fb:d0:10:4e:0f:74:e7:72:6d:89:61:61:ea:c0:f0:79:19:
89:27:ac:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org