Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ncjW4pYvLgHhYOazrzhF7b3vvNA.roa
File: ncjW4pYvLgHhYOazrzhF7b3vvNA.roa (raw, json)
Hash identifier: cMs6wGnjpuLzbRVPWu26QujRLmbk/Z4BuyUzb95RLwE=
Subject key identifier: 9D:C8:D6:E2:96:2F:2E:01:E1:60:E6:B3:AF:38:45:ED:BD:EF:BC:D0
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 033086EE
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ncjW4pYvLgHhYOazrzhF7b3vvNA.roa
Signing time: Sat 01 Jan 2022 01:54:32 +0000
ROA not before: Sat 01 Jan 2022 01:54:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211859
IP address blocks: 78.135.104.0/24 maxlen: 24
78.135.106.0/24 maxlen: 24
78.135.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53511918 (0x33086ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dc8d6e2962f2e01e160e6b3af3845edbdefbcd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a5:94:04:d2:7d:2f:37:24:9b:90:8c:af:2a:
9f:3b:9d:01:ce:72:7b:7f:40:49:2a:e3:02:83:6a:
e3:17:6f:17:b4:71:dc:34:de:7d:67:37:24:cc:c3:
22:ec:61:8a:1a:de:64:77:57:ef:52:ac:fb:47:ea:
2f:ac:c6:0b:59:d7:34:bf:10:ef:0f:70:a4:0c:9a:
42:dc:2b:bb:05:47:ff:1d:09:88:84:94:24:b7:1b:
c7:48:fb:47:40:ed:b1:a8:00:81:40:65:1a:64:b3:
ae:f8:b5:16:83:d8:07:46:98:c2:ba:2b:af:29:6e:
3e:63:55:4c:9d:d8:39:23:9c:1c:9e:20:ff:d8:fa:
b2:29:90:dd:b7:74:de:02:e2:08:c5:b5:a7:2d:32:
d6:a3:cd:ce:e4:8b:6f:14:bd:75:86:86:72:d4:2b:
ff:22:b4:fb:1a:68:5b:63:23:50:b9:a0:52:77:4c:
6c:39:45:62:55:ba:ed:49:c5:07:ad:1c:9a:2e:51:
ff:d3:8f:47:f4:b7:e9:0f:e5:2d:f0:48:58:e5:09:
ff:14:28:e1:bd:3f:d2:52:6f:d3:c0:9e:34:58:27:
07:9f:ce:cf:0d:5a:02:64:4e:b1:ee:02:6d:a2:f2:
ef:fe:00:b5:9e:ab:b2:a2:ca:16:27:c2:61:49:2f:
e2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C8:D6:E2:96:2F:2E:01:E1:60:E6:B3:AF:38:45:ED:BD:EF:BC:D0
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ncjW4pYvLgHhYOazrzhF7b3vvNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.104.0/24
78.135.106.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:cc:68:d9:03:b0:4e:d6:71:6b:5b:b8:aa:57:55:ff:dd:18:
35:0a:66:5e:ac:20:98:af:f0:95:74:3c:6c:d5:94:25:a9:ed:
9b:bd:bd:9b:9c:36:21:79:f1:2a:59:1a:ba:f7:a6:65:3c:26:
62:de:ed:9e:90:07:e3:8b:ec:df:b9:06:7d:12:b7:cb:ec:4a:
d4:da:51:bb:28:26:dc:d4:ce:57:67:14:22:cd:ae:54:42:22:
7a:fa:0f:a9:2b:f9:4e:52:47:4e:58:3c:14:8f:26:3c:79:5a:
1c:19:99:51:a2:f8:5c:22:98:04:ce:76:4a:eb:09:67:4d:cc:
d7:be:08:92:80:4d:93:af:e1:1f:8b:62:15:cf:b2:bb:77:80:
48:de:1d:e6:90:9a:fc:6b:08:06:e8:94:07:37:37:df:33:37:
b4:4f:c9:75:4e:ee:67:16:47:2e:b7:5c:36:35:1f:c8:a8:a6:
20:15:cc:af:30:a1:e7:92:7d:29:b4:5c:b9:87:37:8a:d5:a6:
24:e4:a6:ec:46:4a:16:3c:a1:78:84:e8:c7:20:21:79:22:65:
17:6d:75:c8:ac:bf:bb:1c:d9:a4:4e:03:03:99:d7:68:8c:52:
35:51:9c:4f:26:3e:07:de:7d:c2:d3:13:23:98:d4:b5:78:61:
c8:64:e1:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:59 2024 by rpki-client on console-ams.rpki-client.org