Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/CvfrQGYSBt9CURZEFDorIc9V5vg.roa
File: CvfrQGYSBt9CURZEFDorIc9V5vg.roa (raw, json)
Hash identifier: V7jM1lea6zP0OK4vbaHmZ4pI9vmjfzTSViW101qpcY4=
Subject key identifier: 0A:F7:EB:40:66:12:06:DF:42:51:16:44:14:3A:2B:21:CF:55:E6:F8
Certificate issuer: /CN=8017eaa1daaf225f453802a33baf9638cccd77a5
Certificate serial: 01856D6F8996452739D0DC53B6EF5870BBD8
Authority key identifier: 80:17:EA:A1:DA:AF:22:5F:45:38:02:A3:3B:AF:96:38:CC:CD:77:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBfqodqvIl9FOAKjO6-WOMzNd6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/CvfrQGYSBt9CURZEFDorIc9V5vg.roa
Signing time: Sun 01 Jan 2023 13:05:04 +0000
ROA not before: Sun 01 Jan 2023 13:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396356
IP address blocks: 78.24.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:89:96:45:27:39:d0:dc:53:b6:ef:58:70:bb:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8017eaa1daaf225f453802a33baf9638cccd77a5
Validity
Not Before: Jan 1 13:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0af7eb40661206df42511644143a2b21cf55e6f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e8:1c:d7:e8:82:e2:ad:6b:91:f1:a9:d1:85:
09:e5:a8:f7:fa:86:e3:50:0c:a2:51:d4:b1:1c:af:
62:de:41:f0:d9:c5:46:a7:13:4e:61:5a:d9:9c:e7:
34:d0:18:14:e7:b0:25:d3:94:5f:2c:4b:3f:92:7f:
4a:bf:d9:90:5e:aa:06:1b:4e:f2:91:ab:d7:1f:f4:
c9:9c:e2:cc:41:66:a0:76:23:16:a7:4f:34:6f:83:
91:81:1a:2c:bd:9c:a3:f0:68:64:25:51:d9:33:d1:
02:6d:9b:36:a1:0b:13:7b:76:44:9b:60:83:5a:44:
15:34:4a:d4:0e:d8:e7:18:2b:8f:6b:70:05:b9:aa:
d8:39:71:22:ce:79:c9:a5:4b:66:c4:bd:f3:f0:d9:
20:11:22:15:5f:dd:75:ff:4a:70:0f:23:e5:26:f1:
3b:cc:01:2d:d8:74:e7:67:81:28:79:1e:25:50:dc:
ac:54:02:ba:65:8a:b4:3f:a1:53:79:77:72:97:3f:
c5:20:8e:e8:a9:1d:c5:e6:93:f9:d7:b5:94:28:01:
23:dd:bd:5c:01:68:01:a7:03:30:0c:8e:63:4c:ea:
ac:10:cf:e0:b5:01:a4:b0:d2:34:62:12:77:4d:8a:
1e:33:cf:5f:b8:c2:20:c7:b1:40:8d:f3:9e:35:82:
21:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F7:EB:40:66:12:06:DF:42:51:16:44:14:3A:2B:21:CF:55:E6:F8
X509v3 Authority Key Identifier:
keyid:80:17:EA:A1:DA:AF:22:5F:45:38:02:A3:3B:AF:96:38:CC:CD:77:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBfqodqvIl9FOAKjO6-WOMzNd6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/CvfrQGYSBt9CURZEFDorIc9V5vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/gBfqodqvIl9FOAKjO6-WOMzNd6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.205.0/24
Signature Algorithm: sha256WithRSAEncryption
80:11:24:0c:90:8c:05:68:1c:33:8e:1f:7f:56:c0:2b:d4:14:
0b:23:62:87:66:21:0a:db:94:b3:db:b7:d5:fc:ea:a4:cc:0f:
aa:e5:4c:ff:1b:8e:58:dd:3b:73:f6:1b:0f:2a:50:40:9e:a7:
b0:4c:fe:42:01:f2:b3:9f:9d:75:a8:f2:a8:dc:6d:20:ea:ae:
12:6e:9f:2b:e9:75:fd:fe:6f:f2:c2:57:ac:26:00:19:15:bb:
47:0a:61:96:7d:4d:f8:4d:5b:f0:cf:19:16:45:e5:c3:af:aa:
2a:44:9a:9a:16:14:0b:bd:de:44:0b:5d:fb:d0:18:0e:78:e7:
87:38:7b:ac:2a:d9:28:c4:69:e6:91:3c:b2:3f:32:d6:67:ba:
99:c4:91:11:e2:98:d8:f4:a7:37:58:bc:c2:a8:9c:6b:08:d5:
a1:97:43:83:d0:63:e6:89:04:6f:aa:04:ed:2a:2e:16:e0:ab:
39:60:fb:f5:66:29:c3:a5:83:27:7d:53:4a:5f:03:2f:7e:a0:
ae:7a:c9:01:3d:4c:ac:7c:45:26:5d:4a:66:c7:79:39:e1:c3:
af:b9:67:da:8a:eb:d5:ab:b9:de:56:9c:fe:29:70:16:00:d2:
45:52:0c:7b:d2:dd:bd:1f:5d:2f:a4:05:af:40:09:40:9e:ab:
2b:f0:75:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:38 2025 by rpki-client