Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/cMIZwwJspxDwRvykGEpH0t6lzgY.roa
File: cMIZwwJspxDwRvykGEpH0t6lzgY.roa (raw, json)
Hash identifier: LWFEQGIcm6lcSK156Jum2ndhQiet05bt1HMY0NKrkA4=
Subject key identifier: 70:C2:19:C3:02:6C:A7:10:F0:46:FC:A4:18:4A:47:D2:DE:A5:CE:06
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 032FF716
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/cMIZwwJspxDwRvykGEpH0t6lzgY.roa
Signing time: Sat 01 Jan 2022 01:54:31 +0000
ROA not before: Sat 01 Jan 2022 01:54:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211735
IP address blocks: 78.135.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53475094 (0x32ff716)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70c219c3026ca710f046fca4184a47d2dea5ce06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b4:0b:af:c0:c8:5d:81:0a:97:67:bc:c5:b3:
b5:72:d1:bd:ed:3b:91:f9:a6:6d:ce:3b:89:d2:2e:
42:bd:42:77:b7:22:72:d5:b5:b8:11:3f:90:3c:b6:
fb:45:8a:c3:96:1d:42:42:c2:be:49:8f:ff:6c:7e:
ce:3a:4e:bf:38:45:1e:37:8b:52:62:9d:9e:7b:4c:
be:35:8c:7f:9f:26:9f:34:76:22:af:8d:24:cb:d4:
67:d1:dd:91:5e:dc:5d:40:42:73:98:98:07:01:8d:
60:95:99:21:7b:91:8f:23:f0:ae:69:67:42:eb:a4:
cf:6f:1d:4a:70:15:bc:ae:82:eb:3a:68:be:44:65:
88:d7:f3:ba:39:44:12:c4:39:0a:06:2d:e0:0f:99:
23:5b:6b:d1:53:98:2f:f0:30:55:0f:8e:e2:4b:20:
21:ef:4a:22:71:dd:43:ed:55:80:c9:00:57:6c:b7:
51:e4:83:88:e9:d7:9d:fe:4d:d8:e0:96:01:86:e6:
3d:87:06:d4:18:a4:e2:c4:2c:a3:88:0a:1b:52:8f:
09:01:5f:a1:aa:75:2d:25:81:84:1b:38:a9:ba:2b:
3d:87:36:d6:45:ab:6a:e1:90:8a:1e:3e:32:59:b0:
60:f2:56:4a:d1:ca:87:9c:39:e3:10:fe:60:e9:73:
09:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C2:19:C3:02:6C:A7:10:F0:46:FC:A4:18:4A:47:D2:DE:A5:CE:06
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/cMIZwwJspxDwRvykGEpH0t6lzgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.68.0/24
Signature Algorithm: sha256WithRSAEncryption
26:95:4b:8e:7e:6c:65:21:56:da:8c:ae:81:57:24:60:9f:72:
74:2c:39:36:72:4f:46:0c:4d:d2:87:5e:aa:06:e1:f8:1e:97:
ce:3a:28:aa:58:6a:de:b1:3a:26:76:2d:ac:de:9a:4c:95:a5:
41:97:ab:5a:4f:5f:f8:48:1d:ba:98:98:4d:6b:52:37:70:0f:
ef:36:5c:f5:ac:26:85:bb:bb:0a:e4:3c:19:fa:db:b7:8b:27:
38:36:8b:ef:28:47:ed:81:38:d3:62:f1:f1:14:3a:e2:1a:e1:
c8:59:68:4a:62:b1:04:d0:70:25:97:cd:d0:46:27:94:e6:af:
48:07:9e:40:22:45:50:be:26:91:46:91:39:c0:34:32:5e:ae:
9b:6f:67:4a:57:3d:12:c7:06:cf:ea:80:92:49:e6:c1:6f:9d:
53:44:42:b7:5d:e6:54:1a:12:37:58:5b:a3:97:af:81:2e:57:
b7:4c:c9:28:e5:e9:cc:ff:ab:f4:16:67:45:0c:cc:43:86:7a:
0a:f1:f6:d1:92:ec:45:51:d6:08:df:f8:7e:3f:6b:b9:2c:7c:
c7:cd:fb:3b:e6:c3:7e:16:83:f6:86:83:bc:e5:ae:49:4b:f1:
7e:6a:2d:07:fc:21:3c:96:9b:35:27:c4:82:97:b8:e0:c5:ec:
dc:86:12:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org