Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/y9_s5tg2RxTNmOdzeN310gu4Awc.roa
File: y9_s5tg2RxTNmOdzeN310gu4Awc.roa (raw, json)
Hash identifier: +sEe/mC/+BXLAFjg+/XMSJYBQbiVswg+inig0Klj+24=
Subject key identifier: CB:DF:EC:E6:D8:36:47:14:CD:98:E7:73:78:DD:F5:D2:0B:B8:03:07
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 032B0F05
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/y9_s5tg2RxTNmOdzeN310gu4Awc.roa
Signing time: Sat 01 Jan 2022 01:54:28 +0000
ROA not before: Sat 01 Jan 2022 01:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210666
IP address blocks: 212.68.59.0/24 maxlen: 32
212.68.60.0/24 maxlen: 32
78.135.88.0/24 maxlen: 32
78.135.89.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53153541 (0x32b0f05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 1 01:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbdfece6d8364714cd98e77378ddf5d20bb80307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6f:ba:19:6b:7b:c6:d5:a4:a0:12:12:52:44:
41:10:88:00:7b:1b:24:16:d3:9d:89:02:3c:9f:6f:
1e:53:cd:14:12:4a:2c:3e:fc:06:16:09:3a:db:ad:
3c:b9:c1:ab:61:fc:65:a7:07:0f:13:c5:f8:8f:9e:
b8:72:0b:78:88:a4:24:08:65:4d:9a:4c:21:4d:fe:
7d:bf:a0:2a:6d:97:f9:82:46:f2:40:47:0b:dd:dc:
46:0f:3d:7e:e4:66:16:77:fd:70:3e:86:7c:21:d0:
d7:a6:35:4f:2d:3a:9d:96:d0:5a:36:1d:6b:24:6c:
f7:40:23:87:5b:1d:6d:8c:9f:ff:09:b9:3c:8d:ec:
32:6a:07:db:85:e5:1c:d0:f3:41:05:60:b2:65:96:
b1:87:dc:be:05:b6:d0:37:7e:7e:ad:23:14:27:fc:
c1:f3:18:7b:d4:ef:99:b1:aa:4f:43:ec:54:e7:89:
be:88:1e:b3:c1:d2:e1:52:e1:88:1f:bd:5e:55:48:
ca:49:f1:19:2d:f5:05:c8:1c:a9:16:dc:0f:bc:e0:
de:16:00:9d:71:23:7e:7c:01:fa:9c:12:43:17:98:
81:8a:f7:ea:ba:4c:51:e6:db:d8:55:bd:c2:31:07:
84:40:b7:a2:13:bd:32:1f:b4:5b:c5:c6:08:48:b0:
93:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:DF:EC:E6:D8:36:47:14:CD:98:E7:73:78:DD:F5:D2:0B:B8:03:07
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/y9_s5tg2RxTNmOdzeN310gu4Awc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.88.0/23
212.68.59.0-212.68.60.255
Signature Algorithm: sha256WithRSAEncryption
30:2b:86:36:11:ab:a5:c9:ea:ab:3e:8d:fe:1a:55:50:84:3f:
8f:8e:2e:7d:ec:ec:76:32:41:64:23:6f:fe:1e:e3:dc:75:ea:
fb:4c:f3:44:0f:5a:26:a0:e9:3b:43:06:de:23:f1:f3:04:94:
5e:3d:a1:03:58:63:44:b8:4a:91:4e:ea:1b:92:18:42:1e:e9:
fe:ae:18:d6:bb:40:8d:9a:c6:4c:77:a0:18:a9:d1:f9:1f:88:
70:62:13:a1:99:81:ae:c0:19:7f:f2:16:05:6a:ad:02:d3:7a:
7d:68:b4:91:ad:a1:a9:64:e0:96:b3:32:ff:48:9f:91:f5:29:
58:37:20:7c:54:56:73:be:4b:6a:e9:de:4b:50:dc:63:4f:75:
f8:ae:ae:6b:e8:1d:59:92:fb:e2:ce:88:55:80:11:0e:59:5b:
7a:9f:83:e7:40:2a:c6:dc:88:76:ec:47:9c:e6:28:69:5a:8a:
51:35:f1:55:29:cd:22:19:c7:a8:ab:7c:0e:25:a0:34:8b:5e:
1b:67:20:bd:9d:75:bf:bd:d4:17:85:d8:91:59:c2:e0:85:07:
a1:32:91:9d:14:20:a3:d0:51:3e:6d:ce:fa:03:27:47:29:81:
87:27:b0:c0:07:a3:60:c3:09:cb:61:fc:b8:d4:4c:b1:1f:49:
50:28:c9:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org