Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/KhLJ9MdUO29wtfxokR9KJ09KqCM.roa
File: KhLJ9MdUO29wtfxokR9KJ09KqCM.roa (raw, json)
Hash identifier: 1d1sXE9gAQYkmep/OGdzIpdf9lT0lsl+D6aPUXl3NzY=
Subject key identifier: 2A:12:C9:F4:C7:54:3B:6F:70:B5:FC:68:91:1F:4A:27:4F:4A:A8:23
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0464C176
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/KhLJ9MdUO29wtfxokR9KJ09KqCM.roa
Signing time: Fri 29 Apr 2022 15:11:04 +0000
ROA not before: Fri 29 Apr 2022 15:11:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48678
IP address blocks: 78.135.105.0/24 maxlen: 24
78.135.100.0/24 maxlen: 24
188.132.130.0/24 maxlen: 24
188.132.156.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73711990 (0x464c176)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 29 15:11:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a12c9f4c7543b6f70b5fc68911f4a274f4aa823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:07:96:cd:d6:29:e9:80:f9:65:d9:03:32:3b:
e8:57:86:40:18:ff:30:7c:b1:e3:28:24:94:08:af:
ba:0a:32:05:3b:b5:f7:d7:f9:81:1c:73:e2:d5:fa:
0e:7f:43:55:34:0d:51:a8:f3:b4:35:d2:3f:1e:e4:
cf:41:cf:15:c7:5f:eb:a5:12:94:f5:30:5f:cd:53:
a5:d3:69:18:45:c1:0a:97:ff:6b:6e:69:3b:68:2f:
b1:c8:59:da:42:b2:1a:65:33:7a:ee:cb:c6:b6:a5:
6f:1b:48:63:69:2e:6a:91:cf:cb:a1:7c:af:e0:22:
0c:64:64:8b:59:58:7e:6a:11:a8:5c:4f:23:ca:c3:
5a:a6:d5:51:56:ae:c3:0e:32:88:52:37:b8:08:69:
6d:f4:29:ac:99:8c:54:6b:a8:fb:c2:1d:4a:5f:05:
e4:9c:58:01:e1:47:27:b1:8e:88:92:de:bb:93:39:
f7:2a:91:d6:50:e5:66:74:67:36:32:7b:68:f6:3f:
86:db:d8:cb:57:83:d9:0e:60:38:ed:64:40:e2:bb:
f3:d4:cc:b0:c7:2e:36:53:21:98:0e:0e:33:fe:11:
7f:33:c2:48:77:82:de:d8:74:39:66:d1:dc:c6:51:
50:21:4b:0f:5e:07:38:72:ac:36:a3:f6:ef:f7:2a:
22:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:12:C9:F4:C7:54:3B:6F:70:B5:FC:68:91:1F:4A:27:4F:4A:A8:23
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/KhLJ9MdUO29wtfxokR9KJ09KqCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.100.0/24
78.135.105.0/24
188.132.130.0/24
188.132.156.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:1f:11:d7:b5:e4:73:58:d3:ec:d4:36:77:93:d3:13:ab:3b:
82:57:0f:86:dc:19:ad:fc:6f:b1:04:3a:34:f1:c6:a0:66:a0:
1a:96:d4:a9:51:8f:41:6b:c3:01:33:22:20:4e:30:53:b8:a0:
30:7b:ed:49:0d:6f:4b:ac:26:02:9b:da:e4:9a:4d:e9:a7:79:
94:99:96:0c:c3:3c:1d:60:ad:5b:37:2e:cc:cc:a0:91:e7:ca:
1e:d1:e9:d6:22:6e:2a:76:75:39:27:a1:4b:51:8c:c1:b2:5c:
be:a7:d6:e2:d6:8b:62:12:54:69:02:6b:2a:2e:ee:31:1d:23:
d5:e4:9f:17:30:b9:9e:1a:4c:49:3e:19:6a:16:7e:7e:05:28:
00:64:2b:02:9f:56:c2:9d:68:38:27:64:7f:60:da:5c:6d:3e:
a6:be:00:c2:9a:41:c4:e7:d5:b8:93:2a:c2:d7:10:4d:b7:cd:
62:aa:80:69:ae:9f:e2:dc:2f:03:67:89:83:3f:63:f5:a2:39:
89:a6:cc:b3:50:44:34:9b:e5:5b:96:6b:ad:61:cd:80:4a:c2:
94:3e:b2:40:15:90:8a:88:59:27:b6:e9:98:98:4b:7e:16:34:
2e:23:bc:78:67:bc:8d:fe:4d:35:ea:2a:9a:bb:dd:0b:16:78:
4a:29:ef:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org