Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/YvwFgX62yKD9iubWrzrCfl5V28k.roa
File: YvwFgX62yKD9iubWrzrCfl5V28k.roa (raw, json)
Hash identifier: x/sH74mdlDQwh7mHaWZDuiXhPGfKrHOB9pqb6YYIUG8=
Subject key identifier: 62:FC:05:81:7E:B6:C8:A0:FD:8A:E6:D6:AF:3A:C2:7E:5E:55:DB:C9
Certificate issuer: /CN=8017eaa1daaf225f453802a33baf9638cccd77a5
Certificate serial: 0182B0F7F2F7A51BE8A4B824572806AD0852
Authority key identifier: 80:17:EA:A1:DA:AF:22:5F:45:38:02:A3:3B:AF:96:38:CC:CD:77:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBfqodqvIl9FOAKjO6-WOMzNd6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/YvwFgX62yKD9iubWrzrCfl5V28k.roa
Signing time: Thu 18 Aug 2022 12:40:15 +0000
ROA not before: Thu 18 Aug 2022 12:40:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396356
IP address blocks: 78.24.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b0:f7:f2:f7:a5:1b:e8:a4:b8:24:57:28:06:ad:08:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8017eaa1daaf225f453802a33baf9638cccd77a5
Validity
Not Before: Aug 18 12:40:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62fc05817eb6c8a0fd8ae6d6af3ac27e5e55dbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:14:1f:0b:45:d4:4c:b5:66:76:5b:dc:15:81:
b2:36:06:df:6d:79:eb:23:74:68:c7:76:a7:4e:1d:
6a:d6:fb:8d:79:a7:80:fa:44:98:36:a6:ef:f0:ed:
b5:4d:5d:93:fe:aa:be:13:46:49:c1:da:2d:5f:9a:
dc:9d:7e:57:86:69:a9:62:67:ae:40:4f:76:7a:10:
58:d3:b4:5d:42:f2:96:79:71:99:2a:d4:8e:39:c0:
51:54:3d:e1:e1:9d:4a:5d:2b:de:76:cc:e6:30:ee:
92:66:35:db:52:d9:99:6d:a4:e5:d0:4c:cc:f5:22:
17:da:7c:a1:7e:9d:36:6f:26:99:93:20:d0:da:91:
29:f0:6d:3e:21:ba:e0:66:bd:e4:ce:d2:24:dd:66:
40:37:cc:3e:ab:83:7f:1a:bc:cd:4b:f1:6d:2a:16:
d0:97:18:7c:71:84:3b:a5:c3:b3:69:bd:e8:cc:a7:
db:5e:5c:5b:9a:04:1b:e8:15:7f:17:a1:cb:5d:5b:
61:a2:d3:b4:19:1e:54:b8:17:89:85:a9:a7:da:21:
83:17:c5:f2:f3:51:8d:41:1b:1d:61:16:bb:38:84:
cc:01:30:d0:c1:13:57:e8:b1:04:96:d1:a4:67:2b:
a2:af:32:58:1a:40:e3:f4:d1:c3:12:44:8f:13:21:
3f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:FC:05:81:7E:B6:C8:A0:FD:8A:E6:D6:AF:3A:C2:7E:5E:55:DB:C9
X509v3 Authority Key Identifier:
keyid:80:17:EA:A1:DA:AF:22:5F:45:38:02:A3:3B:AF:96:38:CC:CD:77:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBfqodqvIl9FOAKjO6-WOMzNd6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/YvwFgX62yKD9iubWrzrCfl5V28k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/4ccd40-e32b-436d-ad7c-62c7fde4838a/1/gBfqodqvIl9FOAKjO6-WOMzNd6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.205.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:a0:04:79:65:52:8f:7f:85:a7:80:3e:f3:6e:e5:26:d5:cd:
fa:0d:c2:50:de:a2:4c:50:56:98:3a:53:d2:79:a1:63:72:20:
f0:8c:71:23:cb:7c:55:fd:26:c2:fb:d8:50:2c:2a:22:2f:50:
4f:8d:8a:20:74:bb:28:bf:b2:d8:c5:d5:35:02:f1:79:93:9b:
c6:56:75:0b:ff:92:da:49:69:55:aa:2f:bc:b5:d4:f3:60:ac:
2a:e9:ce:ca:5a:16:cd:b3:b1:af:1d:f3:b0:fb:8b:f4:b8:2f:
08:ac:e9:85:8a:df:ee:c1:64:9b:20:bf:05:a3:54:f9:03:c8:
c1:9e:3a:86:43:d9:1c:c6:01:47:be:f3:4d:58:6b:77:3e:e5:
d0:99:21:a1:1d:31:71:4a:12:0e:a8:8f:3c:29:e0:8d:d7:a7:
f4:aa:48:47:bc:25:77:52:63:d8:f4:41:f5:a2:4c:86:86:94:
f4:f0:ef:06:3e:86:56:57:36:5d:2f:c1:d3:c6:df:d4:a1:bf:
77:46:e3:c6:83:a8:4b:9b:35:63:70:d4:ba:0a:93:5e:95:0b:
f8:eb:63:2a:b1:8b:84:97:76:a7:0a:6d:ce:d4:2c:37:74:c3:
bc:30:cb:16:9f:5f:d6:d7:c4:7f:4b:58:34:ca:8b:51:9b:e6:
46:ed:95:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:18 2023 by rpki-client on console-ams.rpki-client.org