Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/XbaOqzPJcWi1-zLxrH_BgzBDbFQ.roa
File: XbaOqzPJcWi1-zLxrH_BgzBDbFQ.roa (raw, json)
Hash identifier: GxB80lc+kCqUmjBmKvKdHl3e3g/0bBJqjYlm3+fnhnI=
Subject key identifier: 5D:B6:8E:AB:33:C9:71:68:B5:FB:32:F1:AC:7F:C1:83:30:43:6C:54
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 050F8C50
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/XbaOqzPJcWi1-zLxrH_BgzBDbFQ.roa
Signing time: Wed 29 Jun 2022 14:01:02 +0000
ROA not before: Wed 29 Jun 2022 14:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207633
IP address blocks: 78.135.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84905040 (0x50f8c50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 29 14:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5db68eab33c97168b5fb32f1ac7fc18330436c54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:72:7f:d6:78:2b:d1:9f:31:c3:05:e0:a6:b2:
eb:8f:24:da:bd:e9:3d:3f:0e:8f:aa:48:22:09:9b:
3a:f2:ed:11:69:6e:4c:50:22:50:d0:78:23:c1:d0:
f9:b9:e6:12:ae:6f:24:84:cd:f1:93:44:a8:96:78:
51:ed:0b:ac:8a:49:27:86:30:bd:41:c2:00:d2:bf:
64:74:58:41:64:cc:b7:6a:27:f0:88:45:8f:51:ff:
78:f7:44:54:64:7d:cb:8f:97:45:94:4e:34:cc:fc:
39:3c:97:ea:72:1a:78:3e:87:63:59:14:f7:ea:fa:
35:3f:3b:e8:ba:16:5e:5b:a8:5c:1b:30:27:ad:6d:
5b:9e:49:4b:b6:7e:84:61:4e:c6:e6:9f:ba:a0:b1:
c7:ed:a8:19:77:63:67:ce:4b:06:6b:8e:24:38:f5:
f8:36:13:ab:48:67:07:28:37:2b:ed:aa:49:c0:03:
dd:5f:5f:eb:ec:14:4a:05:20:c9:78:a6:69:05:98:
7b:6f:a8:05:d6:c4:b9:e6:0b:43:96:ad:85:79:01:
18:5b:23:43:bc:e8:9e:2b:51:cf:c6:f6:09:c8:fd:
64:1c:12:2c:f3:0c:80:dd:08:8f:d5:fc:9f:a9:56:
a7:56:39:5e:7a:f3:ee:ac:78:64:3f:b8:8a:18:c7:
93:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B6:8E:AB:33:C9:71:68:B5:FB:32:F1:AC:7F:C1:83:30:43:6C:54
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/XbaOqzPJcWi1-zLxrH_BgzBDbFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.111.0/24
Signature Algorithm: sha256WithRSAEncryption
49:8d:f9:e5:c8:66:29:a4:1a:0f:fe:91:d2:98:68:af:73:47:
c6:12:c5:53:c2:af:a1:ad:d9:94:1a:86:3e:9d:e7:8b:1e:f8:
b7:ab:97:34:0f:c3:ea:0e:e8:a3:d3:1d:08:90:56:11:fb:34:
2e:69:74:ef:ff:35:2d:8e:54:e9:66:d2:15:82:be:85:e2:e6:
af:57:66:90:1c:4f:f4:e5:f7:09:41:fc:2c:67:0b:61:10:74:
f4:eb:62:5d:84:20:51:81:94:6c:20:a9:72:e9:d8:d9:e7:34:
65:31:61:fa:aa:02:d0:88:b2:9e:59:e0:a9:75:58:98:2e:9f:
b4:24:56:ef:5b:ae:f3:09:3b:79:25:64:d0:31:00:f4:c1:ef:
61:32:29:93:c6:53:fb:17:5f:51:a2:7f:5f:82:d8:0e:48:92:
f2:83:8b:ea:2d:f3:1a:48:4d:3f:e3:bd:1d:9b:50:cf:c2:51:
0f:b8:cf:c7:2a:eb:75:ff:2f:56:de:e8:08:23:a0:de:b3:4c:
f6:e6:00:57:47:47:f3:7f:84:bc:f4:b1:b7:6d:c1:5e:f5:05:
8b:27:72:29:e1:ce:25:61:11:ca:47:5f:be:7d:d8:6b:46:ce:
2e:a5:f9:40:48:b2:e3:d9:0c:0d:fa:f6:8b:ad:1e:1e:16:45:
ad:0c:81:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org