Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Ze0ZYMWc45DPQxhlyspGggpZEr0.roa
File: Ze0ZYMWc45DPQxhlyspGggpZEr0.roa (raw, json)
Hash identifier: qpAu+6hHfvhbrmONUc7wC05kFLfSGjESkZ8HXYtFi6M=
Subject key identifier: 65:ED:19:60:C5:9C:E3:90:CF:43:18:65:CA:CA:46:82:0A:59:12:BD
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 04B631A7
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Ze0ZYMWc45DPQxhlyspGggpZEr0.roa
Signing time: Wed 01 Jun 2022 14:26:20 +0000
ROA not before: Wed 01 Jun 2022 14:26:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48678
IP address blocks: 78.135.105.0/24 maxlen: 24
78.135.100.0/24 maxlen: 24
188.132.130.0/24 maxlen: 24
188.132.156.0/24 maxlen: 32
78.135.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79049127 (0x4b631a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 1 14:26:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65ed1960c59ce390cf431865caca46820a5912bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c1:1b:50:e0:10:6d:a7:e1:00:21:68:cb:f0:
22:d6:c9:22:25:f3:ac:be:57:9c:63:d6:93:de:1a:
f6:1d:77:f1:8f:ac:00:88:36:e6:58:f5:c9:2e:c3:
41:8a:5e:f7:31:53:67:71:18:7c:32:40:c5:b9:94:
6a:bb:19:b7:d7:1e:20:0b:3c:90:e6:80:91:28:a0:
59:45:e2:4a:36:14:d8:2c:f6:35:ab:bc:67:7f:c2:
f0:ea:23:bf:a8:43:80:8d:61:5a:78:0c:a0:21:46:
70:e6:4d:fd:d0:26:02:db:44:c3:2b:07:fa:fc:0e:
a7:c7:3a:35:46:8e:98:10:e0:49:c5:c2:63:62:8f:
c6:0b:4a:61:00:bd:b3:0e:ec:08:57:1a:de:85:26:
7b:96:ba:6b:0f:65:22:eb:81:e5:7f:95:15:14:1c:
93:0d:ee:c9:31:36:6e:1a:07:60:fb:b8:c5:69:96:
53:ff:b4:b1:37:ea:32:ea:b3:15:c9:51:60:6b:d6:
92:0d:f0:bc:4c:fd:a9:2a:69:d9:06:35:8b:ae:ed:
69:bc:d5:dc:63:fa:81:d9:a2:03:28:a4:82:48:02:
8e:cd:3f:64:f2:5a:3e:88:61:ba:2c:1e:b7:0d:8f:
3c:f7:35:5b:91:49:18:c1:4d:cc:36:18:9b:15:65:
a3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:ED:19:60:C5:9C:E3:90:CF:43:18:65:CA:CA:46:82:0A:59:12:BD
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Ze0ZYMWc45DPQxhlyspGggpZEr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.64.0/24
78.135.100.0/24
78.135.105.0/24
188.132.130.0/24
188.132.156.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:94:8a:ab:bb:fd:14:be:cb:90:1a:22:5f:84:d2:7e:7d:3f:
c1:be:f1:e9:58:8b:b6:4e:df:9e:32:c4:23:9d:10:23:ac:5c:
75:8b:7c:0c:97:68:b0:59:b6:81:aa:ce:14:7b:06:3e:91:35:
fe:c1:ce:54:72:57:9d:8a:06:97:74:bd:df:98:dc:af:04:b4:
a5:c3:26:16:91:8b:a6:b1:ee:27:84:7a:29:3a:5f:e1:f9:bd:
2e:1d:1d:72:3a:9e:d7:3e:37:ba:27:06:a2:68:c1:c4:6c:e4:
e2:4b:e8:36:01:9c:4f:41:4f:c7:2e:2d:de:3f:67:8f:98:9f:
68:b5:ae:db:52:af:5a:eb:b1:2d:fe:af:c0:42:a3:c3:8b:9a:
f7:3b:3b:00:17:39:b5:42:b4:38:03:0d:e2:b9:fc:6f:cd:bc:
64:63:65:50:bd:a0:31:14:4d:7a:8a:c1:f6:cd:1f:48:4b:2f:
fc:3e:cb:e5:91:66:2e:7c:97:21:af:a6:e4:0a:79:66:84:e2:
19:db:e8:53:4e:24:1f:5d:d0:d9:e4:bf:1b:16:0b:fc:42:57:
26:09:04:0b:0d:ce:de:34:e3:56:31:94:f2:d7:e7:81:3d:0c:
21:10:28:af:1a:5e:9f:39:6a:00:0e:bf:fe:0e:8d:8a:2b:12:
d5:fd:23:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org