Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/A7FzmyKjrZaz0jFx6K3CE8B2ozE.roa
File: A7FzmyKjrZaz0jFx6K3CE8B2ozE.roa (raw, json)
Hash identifier: jKWWKas3AfBjRAx4gDaJE0RhxFmW4mXMlIdhvtL3PCw=
Subject key identifier: 03:B1:73:9B:22:A3:AD:96:B3:D2:31:71:E8:AD:C2:13:C0:76:A3:31
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 43178976
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/A7FzmyKjrZaz0jFx6K3CE8B2ozE.roa
Signing time: Tue 24 May 2022 08:52:13 +0000
ROA not before: Tue 24 May 2022 08:52:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57790
IP address blocks: 188.215.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1125615990 (0x43178976)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 24 08:52:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03b1739b22a3ad96b3d23171e8adc213c076a331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:89:b0:ec:b5:63:da:3d:9f:42:63:07:2f:42:
29:0e:f3:19:1f:cd:91:2d:33:2e:f3:a1:31:99:1a:
55:7e:f0:23:68:8a:4e:26:dd:9c:5c:58:7b:18:cb:
c2:c2:e7:0b:07:6f:89:a4:99:d1:e2:50:44:c0:ee:
d9:c7:a3:ac:ae:b7:97:26:9e:98:21:33:ac:92:02:
75:c5:88:59:fd:4d:10:cc:86:8d:c6:a2:3e:02:22:
e6:6f:00:eb:c5:8c:2d:75:b2:58:76:97:5a:d4:47:
00:51:bc:70:f5:a4:57:39:f3:c5:69:1f:b0:11:60:
96:05:98:23:e0:da:3a:50:9a:bc:ea:9b:fd:73:d3:
c0:1d:53:5e:c0:d5:fc:09:2f:64:96:20:f0:f6:70:
83:3c:19:51:44:3e:93:56:a1:68:49:8c:e6:6c:a1:
b8:61:45:10:de:cf:e6:6a:aa:a1:8a:e5:d8:23:41:
45:e3:93:b0:29:32:ea:5b:50:34:6c:dd:0b:70:cc:
ff:2a:16:72:f0:52:45:81:cc:cf:20:dc:3a:98:46:
1a:5a:13:44:4a:3b:f0:f7:eb:ff:49:a2:2c:b3:32:
64:dd:6f:cc:8a:7c:a8:d2:62:c3:48:ba:6a:53:f9:
ef:63:a1:39:a9:7e:ef:4f:eb:ad:db:d9:e6:c4:24:
ca:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B1:73:9B:22:A3:AD:96:B3:D2:31:71:E8:AD:C2:13:C0:76:A3:31
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/A7FzmyKjrZaz0jFx6K3CE8B2ozE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.78.0/24
Signature Algorithm: sha256WithRSAEncryption
de:6d:3c:d6:74:22:65:e2:cf:19:d4:b1:06:c1:44:a2:a7:4e:
fd:4d:09:d0:ee:2c:42:11:f4:f1:88:e5:6c:47:c7:51:ff:b7:
4c:f8:0b:59:94:b6:1a:27:4e:84:56:d9:2d:66:ee:c3:9b:aa:
3d:88:e7:f2:8c:fc:7a:7f:df:6c:74:d8:77:5e:e6:8f:a0:97:
bb:77:c6:2a:75:df:a3:10:40:8d:c7:03:c0:6c:c3:8e:fc:94:
22:81:45:fb:a4:c3:cc:5f:f6:cf:7b:1a:e3:d3:6a:90:23:6b:
a2:9d:82:a4:26:91:8f:43:26:a7:82:fe:c6:af:4c:53:e8:a4:
32:37:ca:ef:18:2c:32:1d:37:e7:39:46:af:b0:bf:0c:1c:27:
e0:85:a5:87:4d:e6:13:44:cb:80:5c:b1:ab:d4:b7:ea:3e:06:
33:ac:67:e8:df:ac:35:fe:38:61:24:06:34:d7:e1:f9:19:f3:
b5:ae:6d:c9:de:32:11:79:0b:18:4f:2a:48:ff:90:57:c4:4e:
b9:e2:99:e5:88:63:36:ae:43:6d:74:1c:79:e4:8e:e4:9c:37:
c5:67:c2:69:d9:f6:42:d0:69:12:52:03:df:97:c6:53:ff:7a:
b3:50:7b:26:0a:65:71:5f:be:5a:af:06:fd:f7:f5:36:ff:f8:
df:f5:f2:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:49 2025 by rpki-client