Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gg_BfwC-ijG09-hkTHcTO3rX3L0.roa
File: gg_BfwC-ijG09-hkTHcTO3rX3L0.roa (raw, json)
Hash identifier: oiSIsIDEeszkJY74KHrwn5DMCaGa/GDd1crn1sNfzOM=
Subject key identifier: 82:0F:C1:7F:00:BE:8A:31:B4:F7:E8:64:4C:77:13:3B:7A:D7:DC:BD
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 04230414
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gg_BfwC-ijG09-hkTHcTO3rX3L0.roa
Signing time: Fri 01 Apr 2022 14:53:13 +0000
ROA not before: Fri 01 Apr 2022 14:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210388
IP address blocks: 78.135.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69403668 (0x4230414)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 1 14:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=820fc17f00be8a31b4f7e8644c77133b7ad7dcbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:73:0d:e0:ff:59:8e:3d:d0:65:03:69:70:f0:
72:fb:79:84:5c:eb:3d:ed:ac:a3:41:1e:1b:73:99:
67:1a:88:83:79:71:33:f6:f6:bf:88:75:21:6b:c5:
78:67:af:07:ee:27:83:ad:21:15:bc:ef:46:0b:7f:
91:df:f1:e8:ad:0c:be:ed:c4:05:52:a2:fa:94:24:
2a:ce:ca:2e:a7:a5:ab:a2:5b:3f:a9:99:39:ac:66:
4d:a0:dd:cc:4b:9f:2f:a6:c3:ab:37:52:cb:02:c7:
3c:83:02:29:67:c4:10:ba:58:6b:96:df:e8:3c:74:
ff:e2:90:a8:cd:87:bc:b3:44:35:5d:af:90:58:97:
7f:60:91:01:11:3f:10:24:49:55:63:66:c9:68:e8:
a7:e3:19:3f:c4:fc:47:1c:d2:ac:bd:b9:20:72:4f:
86:58:43:bd:f4:0d:f6:2a:3d:aa:54:8f:88:91:a8:
c1:88:73:37:e4:21:bf:94:db:27:7b:33:55:8d:9c:
cd:83:2c:b4:a4:fc:91:34:14:01:79:1c:db:48:90:
36:77:5b:62:a9:78:7e:94:87:9b:e7:8e:75:e4:2b:
97:2a:e2:24:e7:e1:95:a4:18:83:78:ac:eb:f3:65:
d5:fd:27:c2:0c:7c:1a:00:7b:71:bb:e6:c0:47:af:
dd:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:0F:C1:7F:00:BE:8A:31:B4:F7:E8:64:4C:77:13:3B:7A:D7:DC:BD
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gg_BfwC-ijG09-hkTHcTO3rX3L0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.105.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:53:9b:34:5f:ef:ff:40:ab:06:93:87:97:c4:c3:cc:2e:0e:
b4:17:09:2a:27:08:c3:7a:00:93:75:83:5b:86:dd:2d:45:88:
c9:f0:e3:31:b3:7b:c7:3b:0e:a5:60:51:07:dd:66:9c:5e:b6:
bd:a1:1b:33:f8:2f:f9:62:ed:94:32:db:b2:2c:77:d4:c8:d9:
38:69:57:49:7d:f0:76:32:f1:db:29:db:24:28:28:68:25:d3:
fa:e8:7c:c0:35:81:ed:48:07:cb:f6:67:d3:f6:bd:44:89:5d:
16:53:ef:3e:64:1a:b6:76:e6:76:e8:6e:0a:1a:db:92:36:55:
84:5c:9a:a4:f6:99:64:bf:48:d4:3a:4d:cd:f8:f5:e3:67:ad:
0a:68:f4:bb:a2:a3:c8:6b:82:cc:62:7d:7f:56:b0:ca:c5:96:
12:bf:c2:41:d9:f2:1f:f7:a9:52:cd:6b:55:9c:39:ec:a5:7b:
b2:8f:3b:21:44:47:33:99:1e:96:da:75:6e:7f:54:f4:35:7a:
41:f7:0f:37:7e:62:f0:16:50:cd:d7:10:20:23:74:0c:a4:d2:
a0:fa:44:5b:1e:8f:fb:f8:b3:16:01:f8:12:54:19:59:26:ce:
82:64:64:ce:61:81:f3:c4:45:32:a8:98:0f:19:25:dc:03:0e:
07:d0:e4:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org