Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/0a5817-ba85-4244-a052-f7c4657b7b8d/1/Lt37ku1hZDM48MTLAwiFWVPMqqc.roa
File: Lt37ku1hZDM48MTLAwiFWVPMqqc.roa (raw, json)
Hash identifier: 2DT/Nqoh9RHYj6H569XjqDTJDsuUIkZ4aB+ocd84WO0=
Subject key identifier: 2E:DD:FB:92:ED:61:64:33:38:F0:C4:CB:03:08:85:59:53:CC:AA:A7
Certificate issuer: /CN=849ace066a44ed2f95fe6bc2d0a7da412763bf2a
Certificate serial: 12D9D937
Authority key identifier: 84:9A:CE:06:6A:44:ED:2F:95:FE:6B:C2:D0:A7:DA:41:27:63:BF:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJrOBmpE7S-V_mvC0KfaQSdjvyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/0a5817-ba85-4244-a052-f7c4657b7b8d/1/Lt37ku1hZDM48MTLAwiFWVPMqqc.roa
Signing time: Sat 01 Jan 2022 11:55:47 +0000
ROA not before: Sat 01 Jan 2022 11:55:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43852
IP address blocks: 78.159.161.0/24 maxlen: 24
78.159.162.0/24 maxlen: 24
78.159.164.0/24 maxlen: 24
78.159.160.0/19 maxlen: 19
78.159.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316266807 (0x12d9d937)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=849ace066a44ed2f95fe6bc2d0a7da412763bf2a
Validity
Not Before: Jan 1 11:55:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2eddfb92ed61643338f0c4cb0308855953ccaaa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:27:ef:24:20:3b:96:16:6c:e7:0b:b8:1f:ff:
69:c1:f9:ac:9e:c7:fc:4a:fc:ec:fd:7b:f4:6e:7f:
72:eb:e9:18:33:f4:ef:20:c1:e7:10:c7:fa:70:7e:
e6:84:17:8c:49:91:86:ec:ee:44:46:02:15:6e:9e:
7d:ed:a0:5d:82:d1:ae:7c:43:63:eb:fe:59:b0:83:
27:da:1f:f5:bf:a9:53:f3:b7:ad:2d:c4:c7:5f:5f:
88:ce:92:47:15:ae:3a:f7:c3:76:d0:2c:15:6b:24:
c7:1b:26:33:8c:fb:25:a9:2f:f0:e9:a2:1e:60:73:
b4:1b:d3:ef:7b:1f:93:8a:07:e0:de:f5:33:24:af:
e0:ce:39:26:07:33:e6:96:78:0a:a0:bb:4e:3b:26:
b8:5c:b0:ed:23:51:c0:16:3d:55:6c:f5:2d:1e:65:
b5:22:79:44:e2:6b:bd:b9:fe:6c:87:81:7b:4b:1d:
30:da:a0:67:f2:66:82:90:d9:46:b3:38:ca:02:e4:
d9:e4:8a:02:53:90:ad:05:84:da:4e:ed:d1:c3:f5:
b1:50:63:67:5b:94:f7:30:dc:69:fc:6c:9d:ff:26:
bf:8f:cd:b6:80:9a:9c:2e:43:6d:30:1f:62:ea:4a:
9a:46:53:2e:11:f2:5d:b3:fc:a2:17:79:fd:ba:f2:
04:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:DD:FB:92:ED:61:64:33:38:F0:C4:CB:03:08:85:59:53:CC:AA:A7
X509v3 Authority Key Identifier:
keyid:84:9A:CE:06:6A:44:ED:2F:95:FE:6B:C2:D0:A7:DA:41:27:63:BF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJrOBmpE7S-V_mvC0KfaQSdjvyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/0a5817-ba85-4244-a052-f7c4657b7b8d/1/Lt37ku1hZDM48MTLAwiFWVPMqqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/0a5817-ba85-4244-a052-f7c4657b7b8d/1/hJrOBmpE7S-V_mvC0KfaQSdjvyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.160.0/19
Signature Algorithm: sha256WithRSAEncryption
2c:31:70:6c:40:1c:6b:68:46:39:04:8f:54:95:2e:fc:b7:a4:
30:f9:4a:2c:13:26:31:5d:08:e9:d5:b2:e0:6c:57:56:fc:d6:
0d:15:20:d2:36:c6:d9:fc:ae:e7:79:3d:17:66:e3:30:2f:26:
72:66:ba:85:f4:12:7b:f0:bf:05:40:e3:f0:c4:73:00:92:5e:
38:a3:c6:e7:dc:a7:87:b9:49:50:5b:d4:33:2e:70:f8:8f:e9:
7e:89:24:15:01:07:6a:8f:ea:a0:8f:aa:4c:4a:96:6a:bb:45:
d1:2c:c2:a5:f5:83:79:e9:50:fd:b8:46:26:10:77:0d:41:32:
b9:8b:fd:dc:6e:42:38:9c:1a:79:2a:79:a8:0c:f7:1a:ec:a2:
9d:8b:af:6b:db:4c:84:a1:e3:54:54:50:8d:41:19:0e:ad:2e:
99:fb:13:58:52:51:c4:0b:26:65:4b:06:28:f4:33:38:c6:ef:
62:46:7a:bd:e8:be:d6:db:0d:c2:ab:e9:9f:73:97:73:66:b6:
87:a8:b6:aa:27:f7:5b:12:ca:b2:8e:8e:fa:ab:96:ff:2c:a5:
dc:c1:7e:1f:00:b6:59:c7:96:32:c5:d3:f7:d2:2a:92:a1:c4:
6c:b1:7d:76:ae:72:c2:28:6d:84:0c:08:b0:ab:ca:ba:4b:d8:
b5:59:50:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:03 2024 by rpki-client on console-fra.rpki-client.org