Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/t_4cBmkRhPchGTduWPkOFM9mxzc.roa
File: t_4cBmkRhPchGTduWPkOFM9mxzc.roa (raw, json)
Hash identifier: bxT1BpCIVf7xdvl3WRrSRSIFfCZoSGLQTyKKCYEeLAc=
Subject key identifier: B7:FE:1C:06:69:11:84:F7:21:19:37:6E:58:F9:0E:14:CF:66:C7:37
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 04640B62
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/t_4cBmkRhPchGTduWPkOFM9mxzc.roa
Signing time: Fri 29 Apr 2022 12:17:52 +0000
ROA not before: Fri 29 Apr 2022 12:17:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60446
IP address blocks: 188.132.174.0/24 maxlen: 24
78.135.76.0/24 maxlen: 24
78.135.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73665378 (0x4640b62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 29 12:17:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7fe1c06691184f72119376e58f90e14cf66c737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6c:46:7e:d9:7f:cd:fb:b9:32:e1:53:1c:2d:
38:7f:97:d0:e5:43:6a:52:73:97:31:da:5f:12:bd:
24:82:03:70:49:09:05:1e:94:a9:fc:11:d6:3e:05:
f6:bd:ad:4c:46:df:b3:48:8f:c2:64:90:30:cf:de:
24:53:5b:fd:a1:2d:b2:8d:43:4c:6f:40:83:a5:ff:
9a:5a:ed:98:02:04:3c:7b:ea:ae:c8:10:f5:0b:31:
c5:9a:86:5d:4d:e3:92:9c:a8:f1:46:40:05:27:69:
0c:10:30:58:09:49:6c:3a:88:c2:36:09:dd:3b:2d:
40:1b:bc:ee:9a:f4:3a:3c:2d:46:55:fe:eb:70:b7:
4c:82:8a:c8:43:c1:d4:2a:40:16:c9:94:9c:04:21:
58:de:9c:96:a9:49:01:b1:06:32:57:0f:bd:3c:6e:
26:51:eb:89:3f:6d:21:68:13:96:5d:29:16:51:25:
74:02:3d:31:1d:94:9f:5a:46:bd:bb:6e:22:72:e2:
eb:89:60:cb:1c:4f:ea:58:31:6a:8e:b6:83:51:18:
db:ae:ca:71:a8:8f:62:f2:e2:df:d8:4d:ae:2d:91:
fe:2f:3b:fa:eb:5e:65:0d:70:85:db:ea:ec:83:70:
ed:9b:75:58:37:3a:b1:49:7a:7e:17:fb:fe:12:71:
b4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FE:1C:06:69:11:84:F7:21:19:37:6E:58:F9:0E:14:CF:66:C7:37
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/t_4cBmkRhPchGTduWPkOFM9mxzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.75.0-78.135.76.255
188.132.174.0/24
Signature Algorithm: sha256WithRSAEncryption
82:5d:71:40:32:e9:b8:42:60:f9:55:e3:f9:1a:b9:32:fa:ee:
15:e7:59:40:56:3d:19:50:d3:e7:b6:49:de:d0:45:b5:2a:94:
46:ab:8b:30:ab:0a:b4:c3:97:ea:5f:ba:3f:62:fa:6b:24:09:
7a:bf:34:e1:89:2a:f4:8b:67:33:34:b6:f7:17:55:2d:bc:95:
21:8b:bc:fd:f6:c2:b9:c6:9a:64:6c:df:22:e4:38:b5:49:3f:
86:40:79:c1:52:f6:1a:26:11:01:88:75:00:c1:f4:f3:b2:dd:
82:e3:87:ad:c2:38:78:f6:ea:5a:dc:ac:54:c2:0a:e8:cf:6f:
96:fa:2a:75:02:75:12:e5:eb:77:20:7a:f7:72:bc:80:bd:53:
04:4a:08:10:3b:7d:b9:54:81:4e:58:88:28:50:4d:ac:54:20:
13:64:50:89:07:42:e4:48:d4:b4:4e:46:4b:6e:85:7d:8a:4a:
7b:0b:19:c9:7b:4d:2b:47:27:92:d0:ee:18:19:2b:dd:b5:1f:
7d:08:ba:b8:e5:51:3f:6d:be:30:10:62:26:7f:8d:73:21:87:
1d:af:1a:8f:69:80:3e:de:f0:50:5f:5b:fa:5b:10:2d:c9:1b:
80:26:05:96:ab:6b:e2:f7:52:c8:06:56:d7:62:94:60:16:db:
38:25:72:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org