Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/hS2cbdcNC0d6uCidpyB5JTPNqcQ.roa
File: hS2cbdcNC0d6uCidpyB5JTPNqcQ.roa (raw, json)
Hash identifier: 9ix7ek9jclbhpm4stulxXl73E8Jh+2FjTOu6g8006hs=
Subject key identifier: 85:2D:9C:6D:D7:0D:0B:47:7A:B8:28:9D:A7:20:79:25:33:CD:A9:C4
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 042EAE4B
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/hS2cbdcNC0d6uCidpyB5JTPNqcQ.roa
Signing time: Tue 05 Apr 2022 13:04:45 +0000
ROA not before: Tue 05 Apr 2022 13:04:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 77.92.154.0/24 maxlen: 24
78.135.80.0/24 maxlen: 24
188.132.209.0/24 maxlen: 32
78.135.87.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70168139 (0x42eae4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 5 13:04:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=852d9c6dd70d0b477ab8289da720792533cda9c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a0:f9:57:a0:b2:52:64:1c:0d:f5:4f:5c:ec:
3c:d6:d3:d5:4a:b2:af:69:b1:69:d1:97:38:15:21:
fd:9e:44:0b:1c:c6:65:9f:57:6e:4f:13:32:80:04:
12:87:f5:56:0f:bb:70:dd:0f:84:cf:e5:98:02:fd:
80:60:2c:45:cf:9d:49:52:d7:07:b9:79:fe:74:57:
61:2a:d2:89:a3:dc:a3:cc:fb:0a:0b:6d:09:27:d3:
db:c5:6a:88:06:52:5e:08:d8:2b:ba:ad:bb:52:1e:
ab:a9:f1:cc:99:ec:94:e6:cb:a8:18:0b:11:53:59:
f2:f4:05:fc:7a:02:23:8a:76:62:7b:56:75:bc:75:
3b:7e:29:c1:3b:8c:04:f9:c2:49:02:d9:ba:8a:58:
b3:4b:e3:6b:d7:3d:eb:62:a1:72:97:e3:47:52:00:
ce:62:2c:b5:a7:35:0f:b1:dc:5f:a2:42:59:c5:89:
25:7a:2c:6d:6b:77:75:0e:34:18:8e:8f:bb:9a:5f:
41:8f:31:e3:66:dd:63:75:6a:ca:9f:c8:db:f6:0d:
aa:fb:13:3f:86:9f:02:0a:52:7d:98:f5:76:c6:b2:
dd:3e:a9:bc:7d:47:db:39:ef:5e:35:c7:ca:fd:f4:
05:ea:da:8d:ca:6e:d3:b9:d8:cd:bc:7d:d0:8f:ae:
60:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:2D:9C:6D:D7:0D:0B:47:7A:B8:28:9D:A7:20:79:25:33:CD:A9:C4
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/hS2cbdcNC0d6uCidpyB5JTPNqcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.154.0/24
78.135.80.0/24
78.135.87.0/24
188.132.209.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:9c:96:03:bf:95:61:0a:9b:a7:0c:40:51:6e:52:16:c9:83:
a6:37:d9:0e:dc:a9:a9:08:85:ec:a2:26:28:7f:3d:8e:a1:c0:
a7:26:81:3c:c5:33:bc:da:18:aa:51:77:c4:12:e2:b4:3b:a8:
c5:8b:32:1a:20:0b:cc:fd:92:c0:2a:47:35:d4:a0:7f:29:89:
4b:5b:2e:fe:73:c7:e8:b0:76:59:9e:97:03:82:24:a0:31:3c:
81:40:e9:ff:62:13:50:df:b5:60:6e:4d:78:7b:0d:67:f8:d0:
ed:a6:7c:ac:91:77:44:1b:ad:f9:c5:a1:b4:d6:42:23:bf:0b:
28:06:f3:08:75:93:5f:0f:c6:4c:1b:c5:64:c2:5c:4c:4a:2d:
12:fb:c9:69:9f:a6:f1:ef:20:ab:f7:ca:f9:fe:98:c6:4b:d2:
11:ee:6c:b8:15:30:f6:f9:2d:39:5d:01:17:a9:fe:25:e7:22:
f0:bf:4f:f8:37:b5:e5:a3:10:d3:b4:0f:57:d0:02:a1:13:a0:
74:a8:a8:5c:52:39:16:9c:87:f4:fd:4c:34:ec:a6:08:49:3d:
5b:6d:cb:51:53:6e:a2:29:ab:46:0f:47:b9:7e:c2:d4:79:d4:
ed:8e:5b:d2:af:c0:84:51:08:f9:e4:61:5f:3e:ff:9b:b6:b6:
e9:fd:c5:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org