Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/rs1ugBdGjKRwIOfyD7vMr8vkowY.roa
File: rs1ugBdGjKRwIOfyD7vMr8vkowY.roa (raw, json)
Hash identifier: /KYM8lxHRsTNXNXSZhE1POWVyUTa/24PhSPSjzSHoaw=
Subject key identifier: AE:CD:6E:80:17:46:8C:A4:70:20:E7:F2:0F:BB:CC:AF:CB:E4:A3:06
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 046349FD
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/rs1ugBdGjKRwIOfyD7vMr8vkowY.roa
Signing time: Fri 29 Apr 2022 12:06:33 +0000
ROA not before: Fri 29 Apr 2022 12:06:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203576
IP address blocks: 78.135.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73615869 (0x46349fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 29 12:06:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aecd6e8017468ca47020e7f20fbbccafcbe4a306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:88:51:b6:3d:82:24:d1:3d:f6:d4:f1:f5:f5:
79:e0:78:34:3d:fe:ab:b6:3d:81:09:d5:c4:b0:4c:
8a:4a:cd:aa:48:04:f2:0c:88:53:97:97:4c:0b:72:
72:fa:92:21:f1:08:d3:33:8a:7c:8a:4e:da:91:41:
94:dc:cc:c7:28:3d:c9:fa:75:24:c0:87:bf:a3:2d:
46:d8:7c:32:b7:37:63:85:9c:54:5d:ba:38:d0:d1:
a8:a7:ff:bb:a8:41:95:57:b0:8b:4a:7c:85:df:15:
63:73:47:d7:67:8a:be:7b:9b:dd:bc:99:57:5b:25:
7f:9b:25:36:b2:cb:2c:b7:74:7e:0d:32:92:f8:96:
e8:b1:3d:9c:5f:4c:fd:da:f9:90:ef:17:f1:d1:f7:
fb:20:df:43:64:58:0c:ee:b9:f9:b8:d2:f1:6b:22:
91:81:67:34:56:48:49:7a:0c:a0:3c:7f:94:c1:cd:
a4:7c:19:2e:02:a3:75:82:cd:e3:4f:97:51:3a:c1:
6d:51:78:45:36:1e:19:1c:91:8d:fb:dd:82:e7:f9:
54:90:d3:a2:a3:97:40:62:5e:51:f3:29:a3:d8:f0:
e3:1c:4d:54:62:bb:d7:2a:b9:a1:32:37:73:ca:34:
ae:06:83:09:21:4c:03:cb:34:15:94:c8:b6:35:a7:
1e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:CD:6E:80:17:46:8C:A4:70:20:E7:F2:0F:BB:CC:AF:CB:E4:A3:06
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/rs1ugBdGjKRwIOfyD7vMr8vkowY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.110.0/24
Signature Algorithm: sha256WithRSAEncryption
46:38:3b:f3:87:ab:2a:92:91:0e:b5:3c:f1:99:bd:67:8b:2c:
35:0d:4e:6a:56:eb:35:67:9a:ab:13:e7:fd:07:01:82:74:5b:
3f:ae:4e:91:2d:da:25:8a:fd:0c:77:ec:7d:91:29:f3:8a:90:
c5:e6:9d:a3:a8:76:23:05:e1:25:36:1c:19:79:2a:a5:20:86:
e3:9d:d1:a1:77:f8:6c:8c:d7:1f:06:95:94:79:0e:3f:42:3b:
2b:87:70:a9:2a:a7:6c:33:d1:ee:ee:b6:bc:7e:00:33:23:fe:
46:41:5e:50:93:1d:14:14:15:aa:57:5a:b3:30:c3:24:74:99:
78:53:77:f2:38:a8:7c:f3:50:a7:bf:24:cf:fa:a1:59:7c:b6:
53:70:c0:11:6a:47:74:f3:18:fd:6d:bf:bb:e9:4e:f5:05:50:
ae:e1:5f:c5:f4:6c:ba:d3:9f:7d:c7:71:07:59:05:ca:9c:07:
cb:31:9c:2a:da:07:91:5c:74:6b:e3:c0:1e:26:fc:0b:8e:68:
91:30:8f:cf:86:7b:ea:ae:e4:d3:3d:7d:1e:6d:92:7c:d4:f2:
d5:cd:b1:6c:89:22:8f:a2:9e:81:1a:19:58:fc:1f:c0:02:82:
c1:3c:56:01:ef:ea:1a:4d:35:30:44:44:ee:23:db:5b:ae:b8:
27:27:ae:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org