Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tmDJnFAiFLLQS2kRkI0skefOCtM.roa
File: tmDJnFAiFLLQS2kRkI0skefOCtM.roa (raw, json)
Hash identifier: IUzs3MlXTAaD5yvVMUksuotYpLIeqv/b9WKxG078hIQ=
Subject key identifier: B6:60:C9:9C:50:22:14:B2:D0:4B:69:11:90:8D:2C:91:E7:CE:0A:D3
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018268D959AB5ABDE37FC8BC2F2F8DB4040E
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tmDJnFAiFLLQS2kRkI0skefOCtM.roa
Signing time: Thu 04 Aug 2022 12:34:10 +0000
ROA not before: Thu 04 Aug 2022 12:34:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210388
IP address blocks: 78.135.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:68:d9:59:ab:5a:bd:e3:7f:c8:bc:2f:2f:8d:b4:04:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Aug 4 12:34:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b660c99c502214b2d04b6911908d2c91e7ce0ad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f3:87:1d:12:75:1c:bb:13:12:cb:bf:65:98:
ed:9c:1a:10:94:2c:51:6b:62:e9:03:f7:02:bb:b6:
0a:9d:e2:01:e1:f1:2e:b0:f6:74:c7:d3:4b:b2:aa:
31:a5:97:a1:bf:1d:0a:a0:bb:11:ef:df:61:a0:c1:
90:e5:71:06:59:24:9a:ac:5d:cb:4b:0b:a5:56:cf:
fd:d7:7a:da:b6:85:d6:91:de:f5:0d:3b:19:56:da:
98:e4:7b:dc:ce:f1:88:d5:09:e2:8d:a9:55:fd:83:
9b:dc:b5:39:43:31:d5:f1:15:7b:3c:9b:b9:3d:09:
ed:1f:b3:bc:05:c0:c6:55:80:a5:92:f0:94:f3:75:
3f:fb:46:e0:3e:f0:19:70:0e:c5:50:94:ce:d2:7b:
7c:fa:cc:a1:dd:e4:ed:7a:91:8b:96:24:13:64:96:
c6:bb:4f:25:84:73:08:82:de:3c:f9:89:01:be:dc:
31:fe:96:30:b0:41:d2:b5:81:fc:ef:d1:f8:2c:10:
59:16:a7:39:42:03:37:d5:8e:6e:62:cd:aa:48:bf:
81:22:6f:4d:b7:d4:f2:56:b1:25:70:a7:51:60:b0:
95:56:8c:c2:63:29:d0:28:75:43:d1:c7:98:55:00:
a2:dc:98:b3:97:e2:56:18:e9:5a:58:d1:a5:5f:9f:
26:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:60:C9:9C:50:22:14:B2:D0:4B:69:11:90:8D:2C:91:E7:CE:0A:D3
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/tmDJnFAiFLLQS2kRkI0skefOCtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.105.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:d6:3b:62:bb:41:83:25:de:96:67:7f:d4:5f:56:76:59:35:
bd:6f:25:70:4b:54:3b:5c:fa:ab:95:01:87:7c:b9:28:b3:57:
3a:98:e5:35:30:bb:47:64:c6:b5:4b:0a:da:20:27:82:c4:58:
33:29:88:f9:0d:1d:a4:0c:6c:30:87:01:c2:23:c3:8a:22:59:
45:b9:a4:79:8d:01:34:6b:a8:af:f4:a4:81:cb:bc:98:6e:f4:
f9:fa:37:ab:87:66:30:91:a2:fb:ff:00:2a:b0:04:1f:51:91:
6a:4e:3c:a7:fd:80:0b:42:08:46:1e:2d:d4:fe:db:96:65:43:
26:5f:56:fb:c7:75:05:11:c2:2b:27:49:76:6e:e5:9f:6e:70:
c0:50:4b:d3:bf:89:b8:4a:de:31:fd:03:15:3d:f6:98:a7:e2:
1f:7b:b0:57:7a:ca:36:f3:e5:1d:3d:e0:ff:31:25:1e:a0:c3:
09:8c:d9:79:24:d9:22:7a:cb:ee:90:30:f4:71:5c:d7:32:db:
87:85:88:03:21:09:f5:ff:e5:43:3d:34:1d:14:c0:62:2f:e9:
00:9f:8e:e4:82:6e:96:6e:96:2d:c2:03:b2:a1:91:8a:52:89:
03:d1:1c:a0:0a:7c:87:88:2e:7d:c1:1f:25:13:86:8c:df:12:
10:f1:89:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:59 2024 by rpki-client on console-ams.rpki-client.org