Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ZHhn40Xv47C0aUfazSdFkspBhI8.roa
File: ZHhn40Xv47C0aUfazSdFkspBhI8.roa (raw, json)
Hash identifier: 42mBX7FDAm0kOU5M4cH5bwyNjMEZ+ZUwOzAx7zT99k4=
Subject key identifier: 64:78:67:E3:45:EF:E3:B0:B4:69:47:DA:CD:27:45:92:CA:41:84:8F
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0324B5C5
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ZHhn40Xv47C0aUfazSdFkspBhI8.roa
Signing time: Sat 01 Jan 2022 01:54:25 +0000
ROA not before: Sat 01 Jan 2022 01:54:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205953
IP address blocks: 78.135.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52737477 (0x324b5c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=647867e345efe3b0b46947dacd274592ca41848f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:03:49:b7:87:74:18:64:e0:63:83:06:a9:a5:
aa:50:ae:ce:53:ee:01:79:e4:6d:ac:3b:2b:45:e1:
17:a6:c8:9e:f7:67:81:ee:08:64:45:e2:e1:76:54:
27:74:33:77:aa:36:7e:f0:6e:ec:30:a4:2c:c7:b1:
cf:ba:7d:d9:6c:83:a7:45:29:40:76:08:da:64:2b:
1a:d4:38:fc:6a:54:b6:34:a8:8f:09:22:db:96:0d:
dd:6c:d4:d5:72:8e:48:3b:79:82:68:6b:ea:e2:c4:
8f:b1:df:d1:cd:da:9d:ec:6b:8c:1c:b9:72:10:37:
2f:96:36:3b:be:03:9b:14:a6:18:e0:0a:5b:47:35:
98:e4:46:05:90:2e:ce:58:c6:86:41:e4:9b:66:f9:
74:9f:1f:19:fa:1c:7a:99:26:0b:76:67:cf:89:c1:
2a:e0:9a:98:4f:85:aa:05:78:a2:6a:7a:8b:28:15:
62:5d:b1:5e:08:83:31:5f:45:50:47:99:63:19:1d:
37:6f:41:31:f1:82:8c:98:e0:98:b8:16:07:15:b5:
37:f2:0a:b0:55:d0:33:f0:2c:d0:ec:40:ca:ed:91:
f6:3f:50:0f:63:66:da:38:cf:26:ba:51:e4:18:0c:
5f:ba:88:c8:82:8b:e6:80:6d:a9:35:00:dd:91:a4:
f2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:78:67:E3:45:EF:E3:B0:B4:69:47:DA:CD:27:45:92:CA:41:84:8F
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ZHhn40Xv47C0aUfazSdFkspBhI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.69.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:05:66:1c:89:93:ef:bb:f5:3f:8c:3a:7b:63:b4:fe:06:42:
16:ec:e7:f4:5e:56:42:39:a0:b0:53:8c:f6:7d:8a:67:24:59:
90:2d:46:b4:f0:45:31:19:47:5f:86:8d:1d:11:fa:6e:7a:c2:
fd:ad:28:35:0f:4d:a1:93:cd:6b:ac:b6:a5:3a:df:5b:7d:7d:
14:a2:0d:1a:87:fd:fa:75:12:5c:50:69:e8:d8:79:dc:59:cb:
b5:b0:e7:40:d4:ce:45:86:ad:27:c1:4e:90:48:3e:bf:01:ca:
ca:5b:92:c9:82:36:31:d3:80:23:05:fd:46:cd:33:a3:4f:4b:
87:42:3f:03:cd:1f:3c:a9:4d:8c:fb:b9:d5:91:9a:8c:9e:33:
60:87:f3:98:0f:af:45:e1:c6:36:67:d3:da:03:af:6a:d1:48:
20:f7:6a:79:5e:fb:7c:01:6e:3a:e8:d9:66:24:ec:1c:54:bb:
66:d8:ac:49:6c:8f:66:f6:76:d5:83:fd:3f:be:33:7e:c5:c3:
5f:ae:9e:44:ea:8a:7d:e6:84:fb:a0:01:2a:04:ed:84:12:09:
56:67:47:3b:80:a9:45:46:55:91:3e:d2:92:4e:be:3c:5e:e4:
5a:44:5e:31:f6:cc:1b:c7:79:94:d4:bd:25:f0:16:e3:29:eb:
09:44:b8:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org