Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/9EI_DASZ0qYNGnLL8vmVtg6MZ4o.roa
File: 9EI_DASZ0qYNGnLL8vmVtg6MZ4o.roa (raw, json)
Hash identifier: nbvK4Q+T/BS56M2okFMUZZe+xyzcBr+CDaLSLDko6Ws=
Subject key identifier: F4:42:3F:0C:04:99:D2:A6:0D:1A:72:CB:F2:F9:95:B6:0E:8C:67:8A
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 07C9BF2C
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/9EI_DASZ0qYNGnLL8vmVtg6MZ4o.roa
Signing time: Sat 01 Jan 2022 08:58:56 +0000
ROA not before: Sat 01 Jan 2022 08:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208271
IP address blocks: 147.78.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130662188 (0x7c9bf2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Jan 1 08:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4423f0c0499d2a60d1a72cbf2f995b60e8c678a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c3:da:06:57:80:e2:11:1b:e9:5f:4c:ed:73:
d8:fc:f7:d3:80:0f:d8:ff:25:c8:20:55:c4:0a:b8:
94:dd:8e:c5:de:e2:e9:3e:07:43:76:c1:d8:97:06:
64:11:8c:89:74:b8:bc:39:9c:05:c6:76:b8:5e:59:
2c:67:a7:83:35:e9:c1:6c:24:da:72:3d:9b:ed:c5:
a8:67:e1:c2:29:57:32:2e:a2:8e:c7:ba:17:3b:5c:
8b:bd:80:d7:fd:4f:9d:4b:2e:1e:c6:bd:78:4a:b7:
29:bc:62:e6:76:34:6d:67:a7:54:d5:94:74:99:95:
33:c2:fd:84:73:d8:4d:fb:05:79:a8:7e:b6:cb:58:
88:60:0a:e4:a7:a0:ea:9e:e1:26:23:fd:d4:86:d2:
c3:ec:74:97:68:ae:fa:77:58:c2:54:15:ab:0a:cc:
92:e1:3e:17:de:47:0d:d7:f6:0f:55:c6:d0:95:0b:
72:6d:47:3b:62:40:aa:4a:81:b1:b4:e9:3d:df:7c:
84:60:95:c6:2e:2a:53:80:9a:6f:96:b2:42:a0:78:
5e:f4:48:f5:00:da:f6:e1:29:92:28:03:92:8f:7f:
dd:d3:76:56:f0:69:af:a1:41:e8:d3:cb:b8:08:d0:
ce:05:90:d7:f0:ec:8f:8f:ec:08:47:94:d9:4b:88:
82:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:42:3F:0C:04:99:D2:A6:0D:1A:72:CB:F2:F9:95:B6:0E:8C:67:8A
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/9EI_DASZ0qYNGnLL8vmVtg6MZ4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.34.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:8d:b6:92:6b:e1:58:b2:bc:34:cb:bc:34:fd:8b:90:b5:2b:
d7:30:77:80:45:38:b6:ec:88:d1:a8:22:94:9c:3d:4a:eb:6f:
13:95:5b:6c:59:27:03:cb:ef:fb:04:30:cf:24:9d:34:59:64:
df:9e:8f:48:7b:d3:6f:ab:ff:ec:8e:ce:4f:36:74:7f:db:17:
a6:2a:ca:4b:96:b0:84:9e:a6:4c:e6:20:a9:6a:30:02:31:90:
35:aa:f0:4d:20:a0:02:a6:ef:3a:ae:21:27:2d:aa:9a:1f:33:
a6:4e:42:32:91:bb:64:70:be:8f:06:ae:a2:a0:10:bb:9b:60:
68:d5:41:c8:90:b1:50:34:9c:c7:9f:21:76:11:a6:fb:f5:7d:
b5:3e:47:22:cd:9c:c7:31:f2:77:d7:5f:67:47:ce:ba:d2:a2:
8a:4f:3d:f7:bf:36:f6:dd:8a:17:b5:40:fd:f7:0a:67:39:1f:
e0:71:54:0c:a5:27:31:00:99:60:c3:c7:33:37:22:c4:d8:fd:
b8:05:20:ae:fa:e2:01:0a:22:33:4c:81:e6:a2:88:4f:78:e6:
21:83:74:43:52:9f:36:74:9d:de:80:bc:5a:3e:b7:7f:74:97:
1a:2e:90:b7:ec:a8:bc:5f:77:a5:f9:f8:e9:99:f2:cd:ef:02:
78:e7:8e:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:20 2024 by rpki-client on console-fra.rpki-client.org