Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tO9ky1abCsbVfR-Rz-AakutoTMM.roa
File: tO9ky1abCsbVfR-Rz-AakutoTMM.roa (raw, json)
Hash identifier: EclAF+1rq37MK377SyZnR6o06cIaRnAGl2BRtfr3Iik=
Subject key identifier: B4:EF:64:CB:56:9B:0A:C6:D5:7D:1F:91:CF:E0:1A:92:EB:68:4C:C3
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 032F2925
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tO9ky1abCsbVfR-Rz-AakutoTMM.roa
Signing time: Sat 01 Jan 2022 01:54:30 +0000
ROA not before: Sat 01 Jan 2022 01:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211648
IP address blocks: 78.135.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53422373 (0x32f2925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4ef64cb569b0ac6d57d1f91cfe01a92eb684cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c9:9d:95:e3:64:d4:d9:09:13:6b:b6:44:17:
1b:b4:56:23:58:cc:13:6b:02:63:57:77:6d:fb:0b:
b4:f8:18:bf:c2:c1:2c:2b:81:85:5a:9f:72:38:b0:
89:87:ae:aa:17:ca:bf:9a:9c:69:1c:6a:ed:d4:29:
b7:a0:16:50:1c:e7:21:86:69:9d:1f:11:ee:ff:91:
3f:ac:de:d4:e7:0e:02:4d:83:76:e2:85:5e:7f:1b:
4d:5c:b7:96:02:3f:5e:2b:4c:43:29:ce:3a:b3:b2:
a0:7d:78:57:85:08:a7:7f:51:f9:74:0e:c7:f4:39:
cf:18:46:0d:08:c3:d1:ff:35:b6:b1:fe:7f:a9:18:
f0:8e:f5:9a:58:2b:1d:9e:ca:ba:50:a6:3a:20:f5:
3b:ac:5e:f9:c9:3f:96:7b:23:a7:9e:a4:16:31:00:
33:80:15:d1:d4:5a:c9:84:1c:4f:e5:e3:bf:0c:62:
3f:50:f9:86:aa:df:8a:4a:2f:41:97:71:46:6d:58:
dc:83:b3:34:92:29:d4:c4:9f:1b:7b:5e:ac:b8:c0:
81:ff:29:3e:b7:fc:dc:fc:3d:ec:f6:65:39:42:36:
df:95:87:28:84:75:52:0b:21:55:0f:2a:ad:6e:6e:
44:2a:19:49:2a:6c:aa:61:a8:98:d8:cd:b8:f7:99:
12:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:EF:64:CB:56:9B:0A:C6:D5:7D:1F:91:CF:E0:1A:92:EB:68:4C:C3
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tO9ky1abCsbVfR-Rz-AakutoTMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.72.0/24
Signature Algorithm: sha256WithRSAEncryption
66:cd:38:45:d8:9b:a2:59:71:92:d6:ad:77:25:30:bd:a8:8b:
cd:14:52:56:a4:11:00:ce:5e:95:36:74:c1:c4:d4:50:09:6b:
bf:98:a7:e2:57:f1:6f:6d:cf:0e:c5:64:7f:f1:61:89:57:cd:
d3:15:a5:7d:02:fa:e7:72:e8:b2:76:67:7e:7d:dc:d6:98:e3:
52:2a:fa:30:e4:5c:5f:eb:ef:94:77:d9:97:e1:c9:f8:59:0f:
52:9f:57:a0:c5:ad:e8:c1:ff:67:08:f8:ef:21:eb:a0:bf:a7:
20:ab:a8:5c:a4:ed:0b:c5:f1:62:75:a2:01:19:53:9f:c9:05:
98:ac:a1:13:7d:c8:f1:7f:e8:78:d4:79:c2:8b:ab:3b:0c:df:
89:8e:e2:72:c2:2e:b0:ee:7b:9e:20:d1:5d:77:0f:01:0d:4f:
44:de:3d:f9:e0:4e:6b:7b:70:2b:b9:a0:dd:3f:2e:3f:bd:9c:
9b:0e:4d:39:bc:2e:95:82:9b:18:cb:3f:80:ae:84:9d:a9:55:
c4:6e:87:0a:26:79:31:e7:47:20:0e:02:04:42:09:3b:94:60:
80:d6:2e:ac:29:84:50:4e:e8:c8:46:f8:18:9e:55:52:c2:e0:
2d:d9:70:c8:e7:23:a4:c5:8b:cb:81:27:94:fe:7c:f4:d6:a9:
2f:5c:5a:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org