Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/1-L5Rmz1WaFa34-4LPxyZaVWj_t8.roa
File: 1-L5Rmz1WaFa34-4LPxyZaVWj_t8.roa (raw, json)
Hash identifier: P4pXtoZHm7vVPJHs3TshODQt7cSliGd36EpVNt1IZDY=
Subject key identifier: F8:BE:51:9B:3D:56:68:56:B7:E3:EE:0B:3F:1C:99:69:55:A3:FE:DF
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 0401FE1A
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/1-L5Rmz1WaFa34-4LPxyZaVWj_t8.roa
Signing time: Sat 01 Jan 2022 01:52:29 +0000
ROA not before: Sat 01 Jan 2022 01:52:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48900
IP address blocks: 78.130.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67239450 (0x401fe1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 1 01:52:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8be519b3d566856b7e3ee0b3f1c996955a3fedf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:40:8b:e5:d8:c4:91:2e:6d:7c:68:55:1d:8f:
fb:06:2c:64:e3:29:44:ea:53:c9:c3:62:e7:60:2e:
a7:d5:8a:6b:e3:a0:3d:d4:15:b9:fc:c6:70:a9:20:
0d:c3:1a:46:02:f8:34:92:cc:1f:ef:16:fa:5b:e9:
32:cb:6f:7e:11:29:ad:f6:cb:11:6c:a7:25:cd:04:
ca:07:e6:90:a2:57:53:8e:51:ac:31:02:97:fe:fd:
5f:2f:53:20:17:af:a7:a8:0e:e7:78:3d:34:0b:a2:
a6:74:e3:6b:58:8a:0f:19:f0:22:c6:1c:ee:3f:b7:
c7:84:22:52:ce:1d:d4:d5:93:bb:74:fe:b9:f9:54:
01:da:06:8f:cd:8a:f0:01:c8:e1:78:46:be:8a:ff:
ac:cd:7d:6d:9d:47:cb:f5:53:8d:5e:a4:03:45:0d:
29:e4:a0:ad:df:04:a2:7b:7d:40:3b:3f:00:4a:d5:
42:c1:58:6d:37:2f:41:7a:56:85:55:46:27:85:89:
f9:07:8b:f8:17:17:9f:47:78:85:b5:11:5c:c0:fd:
90:56:ef:9d:ae:fd:76:21:3e:b5:de:b2:9b:9b:df:
c1:b0:66:ed:a1:64:25:61:a3:01:20:9e:50:87:07:
ae:1c:0e:a2:09:77:42:41:91:98:e1:b8:73:41:d8:
4f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BE:51:9B:3D:56:68:56:B7:E3:EE:0B:3F:1C:99:69:55:A3:FE:DF
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/1-L5Rmz1WaFa34-4LPxyZaVWj_t8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.130.128.0/24
Signature Algorithm: sha256WithRSAEncryption
39:51:c8:9f:14:53:90:5d:1b:80:de:4b:8d:23:3d:23:85:d8:
59:53:6e:ee:61:88:2f:f2:83:33:cc:2d:a1:bc:5e:80:10:c6:
24:0a:c9:27:8d:65:65:37:c0:9e:89:19:06:42:f5:34:67:c3:
c1:31:3d:57:18:51:7b:e6:83:b4:f4:05:53:b7:53:12:37:52:
a3:16:d8:5d:ba:05:af:bc:b9:84:9f:e8:d9:d3:c0:58:8e:f0:
b6:9c:52:9b:44:83:40:9b:e5:a4:89:cd:13:a6:81:49:6b:7b:
cf:f1:20:89:9c:ab:22:a2:07:b4:03:fd:6b:bd:1b:7c:71:8b:
22:a1:45:30:31:10:67:fa:26:c1:6f:5d:02:56:2f:09:77:31:
e8:a8:b8:78:cf:7d:b4:65:41:c8:3b:7a:28:cf:53:c7:df:9d:
74:82:53:a7:24:e5:ae:f4:cb:f1:29:fd:8f:36:56:55:6a:61:
85:3a:a2:7b:d1:a4:89:c8:26:80:ed:ee:94:9a:88:9c:e2:d0:
c4:1c:89:89:3d:b1:9e:12:d2:90:38:43:25:83:7b:ed:17:e1:
5d:a2:95:57:30:a4:94:7c:7d:07:c6:9f:cf:55:0f:49:ea:79:
74:67:0e:d1:80:f2:b2:ff:92:dc:63:75:bd:87:70:1c:cf:e0:
49:ca:7e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:46 2024 by rpki-client on console-ams.rpki-client.org