Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ksSRCvm6dHiHMdGb7sHyow5gGaE.roa
File: ksSRCvm6dHiHMdGb7sHyow5gGaE.roa (raw, json)
Hash identifier: rz8UINPcoDYj/VYd4wOBrc2TLO8gzhRgcW4gsGa9N6M=
Subject key identifier: 92:C4:91:0A:F9:BA:74:78:87:31:D1:9B:EE:C1:F2:A3:0E:60:19:A1
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0183A3A903A2C3E8B19B745D44D50E3A3D0C
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ksSRCvm6dHiHMdGb7sHyow5gGaE.roa
Signing time: Tue 04 Oct 2022 15:41:46 +0000
ROA not before: Tue 04 Oct 2022 15:41:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205953
IP address blocks: 188.132.161.0/24 maxlen: 24
78.135.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a3:a9:03:a2:c3:e8:b1:9b:74:5d:44:d5:0e:3a:3d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 4 15:41:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92c4910af9ba74788731d19beec1f2a30e6019a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:72:29:cb:21:8f:1a:b1:18:c5:4a:71:d1:bd:
9c:fc:41:14:8b:41:0c:e7:35:be:c6:3b:5c:1b:9d:
4c:ef:23:31:f4:d8:94:80:6b:de:98:fd:e0:87:1c:
6d:39:53:d7:04:12:13:da:f4:60:3c:1e:75:c3:58:
3f:e9:d1:a5:8c:6d:d6:b5:2a:ca:38:26:f2:aa:22:
8a:38:d2:be:34:bb:10:d5:a5:c8:92:4d:60:84:67:
e6:4b:9f:06:26:d5:fa:b7:9e:31:91:18:79:7c:f5:
a7:48:0f:54:43:42:e7:34:a3:32:83:dc:ff:29:1e:
04:f8:ed:05:0f:2a:08:8d:7d:f5:f9:58:c3:9e:18:
42:00:49:32:e4:25:e9:da:ea:54:c5:00:62:14:18:
b2:89:95:97:07:fa:56:ac:d8:5f:ef:4d:2f:3b:e2:
78:7e:1c:64:f8:a5:0a:5a:4d:4a:26:9f:86:bf:53:
71:66:36:ae:99:f0:fb:41:72:3d:32:e0:ac:7a:8c:
8e:6e:fd:a5:b8:dd:3e:15:4c:50:28:eb:33:7d:d8:
00:18:22:55:72:29:5f:9d:a4:9a:f2:a3:9a:8a:5c:
32:b6:76:92:41:b8:96:5c:2e:73:5e:c8:7a:48:0c:
8f:db:29:4d:52:90:e5:54:d2:36:75:86:d9:eb:f7:
40:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:C4:91:0A:F9:BA:74:78:87:31:D1:9B:EE:C1:F2:A3:0E:60:19:A1
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ksSRCvm6dHiHMdGb7sHyow5gGaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.69.0/24
188.132.161.0/24
Signature Algorithm: sha256WithRSAEncryption
50:f7:4e:4f:d2:87:10:2d:7e:83:da:3c:a0:3e:96:a4:df:55:
a6:7b:fa:67:15:7e:3a:dd:22:50:5a:6b:8f:5e:52:77:15:74:
22:10:b1:e7:c0:cd:92:80:e9:d7:b5:50:ee:c0:41:6b:2c:c8:
c4:db:ed:1e:17:c7:40:ed:ca:09:3f:6a:e6:20:98:c3:54:2c:
bf:ab:b2:eb:a7:53:6d:1f:16:9f:ca:b3:2a:76:d5:46:a4:c6:
2e:3c:52:be:67:57:b8:c8:ad:ac:da:78:fd:3b:60:d2:bc:cc:
2e:d2:35:07:6d:ba:9a:92:29:91:54:f0:ce:17:dc:22:11:2a:
a0:f7:71:96:ad:92:3c:a0:db:b2:47:11:d3:92:ba:49:94:da:
43:ff:34:58:8c:d3:9d:3e:76:d4:e3:5f:fa:eb:3b:76:ff:c6:
f3:8b:3f:40:a3:d9:64:72:0b:5b:7e:d0:4e:45:4f:5e:01:20:
ab:b3:19:8d:62:5d:15:cd:f4:b6:a3:3f:59:43:1f:67:60:d0:
50:02:ce:ad:e5:c0:47:d9:b3:6b:7e:92:07:b0:4b:60:f5:56:
98:e8:11:01:0b:98:45:74:f3:8b:3e:ef:04:be:9d:39:20:63:
ca:a2:95:32:18:75:67:f2:df:98:3e:4e:25:65:03:21:b8:79:
53:49:36:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org