Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ek0xD0e0YCuPXnyG3B96x4KIN78.roa
File: ek0xD0e0YCuPXnyG3B96x4KIN78.roa (raw, json)
Hash identifier: aP/FrqForjXvm7vURBeelaqVylAB93OCct7xH/TnDFI=
Subject key identifier: 7A:4D:31:0F:47:B4:60:2B:8F:5E:7C:86:DC:1F:7A:C7:82:88:37:BF
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 050A9346
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ek0xD0e0YCuPXnyG3B96x4KIN78.roa
Signing time: Wed 29 Jun 2022 13:56:03 +0000
ROA not before: Wed 29 Jun 2022 13:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61135
IP address blocks: 212.68.35.0/24 maxlen: 24
78.135.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84579142 (0x50a9346)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 29 13:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a4d310f47b4602b8f5e7c86dc1f7ac7828837bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:9e:ab:88:b9:1b:23:cc:40:0a:a6:c8:a2:84:
bc:b1:b1:6a:8b:b5:77:70:c3:a1:ff:00:ac:07:52:
2e:c0:f1:01:14:ce:f0:80:2b:0a:11:ea:bc:11:9b:
d1:f4:db:8b:09:fa:7c:fa:e5:d4:cd:b4:f3:c3:80:
89:f6:cb:43:78:e7:75:f8:e8:64:76:4e:39:ae:29:
02:1d:11:70:b4:6d:0e:ab:e0:07:a8:80:c8:61:da:
f9:06:d7:28:a9:a6:0f:0d:50:25:be:a3:16:e6:6b:
55:66:5b:cc:95:22:00:00:6a:f2:81:41:f0:5b:02:
44:11:ac:47:b9:ce:e1:33:ff:73:39:79:b0:25:47:
46:0b:06:d5:da:63:8f:be:79:6e:84:a3:2a:56:d1:
0a:9d:03:07:d8:a7:fc:37:15:58:65:82:1e:ee:e3:
25:18:19:29:57:a9:55:00:87:a0:09:ad:99:72:a2:
aa:5f:31:0d:53:9a:d2:52:78:36:dd:0c:d3:31:7c:
58:da:91:de:19:57:12:1a:f9:a2:ea:e2:9c:55:8c:
81:6d:9d:5e:f6:46:13:da:fc:7e:ec:51:7f:78:52:
45:35:5f:8d:d7:08:17:c1:5d:07:6f:fa:39:40:05:
ce:b4:51:c0:35:f3:4d:25:fd:04:fc:2c:5e:d0:92:
05:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4D:31:0F:47:B4:60:2B:8F:5E:7C:86:DC:1F:7A:C7:82:88:37:BF
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ek0xD0e0YCuPXnyG3B96x4KIN78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.87.0/24
212.68.35.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:46:ff:92:00:6b:e3:97:7c:8a:2c:b1:f9:40:8c:f2:60:47:
9a:93:82:cc:41:7a:35:ef:76:33:cc:e9:78:c8:ff:80:f8:a6:
a1:14:24:2a:d7:d0:77:f5:cc:48:d0:8a:fd:07:c5:14:46:91:
b8:8d:b4:99:51:dd:98:57:fc:ec:74:14:92:69:a1:51:15:12:
ff:af:36:b6:f0:bf:b2:97:fe:3f:c2:92:f2:6c:11:cb:42:3d:
9f:fc:3d:eb:74:c1:e5:18:eb:c6:22:81:69:c8:bf:08:6c:cc:
6e:cf:59:41:82:c7:16:c7:68:73:b4:68:7f:7a:d1:b2:d7:c0:
52:3d:51:98:b7:42:a5:9e:dd:c1:54:2b:09:de:07:4f:5d:24:
bb:7a:ba:dc:7e:01:f3:21:50:8a:29:ed:b1:20:d1:9b:9e:ba:
28:5c:45:29:12:0f:68:a7:59:08:0c:63:18:5d:d8:d0:4c:dd:
3e:e9:b3:31:5d:89:c1:e5:67:fd:b4:c2:fd:ee:e6:a3:7c:78:
f3:a7:0a:a7:24:42:23:7d:07:0a:e1:61:a1:fc:26:9d:de:9c:
53:a7:77:38:db:14:95:d1:1f:11:a2:59:17:16:e3:84:81:cf:
6f:29:5c:fc:9a:4a:93:d4:be:da:01:ae:51:48:c6:9f:d7:6d:
b6:8d:20:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org