Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/Kd0uetvyiO_zsNTGV9L8s663dKY.roa
File: Kd0uetvyiO_zsNTGV9L8s663dKY.roa (raw, json)
Hash identifier: waGpIwFPNeDvjc0Lx5LTeANwvz58VxPMMBu3XEa/5So=
Subject key identifier: 29:DD:2E:7A:DB:F2:88:EF:F3:B0:D4:C6:57:D2:FC:B3:AE:B7:74:A6
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17E5785C
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/Kd0uetvyiO_zsNTGV9L8s663dKY.roa
Signing time: Sat 01 Jan 2022 00:54:42 +0000
ROA not before: Sat 01 Jan 2022 00:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204380
IP address blocks: 78.28.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400914524 (0x17e5785c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29dd2e7adbf288eff3b0d4c657d2fcb3aeb774a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:04:23:db:2e:82:ac:c7:b3:73:d6:f6:b8:b2:
75:45:99:9e:8d:f5:fe:b4:3f:80:28:b6:7f:29:78:
01:9c:35:c2:bc:72:96:41:03:07:36:a0:e1:34:85:
3c:88:01:a0:18:62:6f:71:f6:ad:9e:e3:9c:bf:47:
20:4d:45:cd:62:98:78:ae:0d:7a:07:67:68:a6:a3:
ff:f1:a6:74:b7:88:a8:eb:79:e7:e8:e6:7a:0a:92:
fe:a5:8b:ec:4b:be:61:81:2d:e6:e5:b0:8d:bb:97:
1f:53:d7:52:6c:94:92:eb:28:79:49:b5:cb:0c:0e:
62:21:d4:6e:2c:a9:c1:ce:d4:6c:67:8c:83:ad:68:
c2:3e:a0:29:05:55:ef:7e:97:bf:cc:74:12:13:8f:
86:a7:e8:8b:ff:72:89:b0:14:89:d7:81:aa:e0:02:
f8:79:98:23:a3:db:fd:21:bc:9a:f3:48:9f:3a:f3:
37:02:d8:d1:a0:25:a1:d9:1b:b6:f7:a1:45:a4:bf:
ec:79:91:13:9a:66:05:80:25:df:6b:a3:1e:d1:61:
46:f3:7f:e7:05:d6:4e:62:03:cd:d3:9d:8d:89:d3:
3a:e9:2d:84:e9:63:52:f7:be:0d:48:20:f2:c9:2a:
38:8b:a7:0f:84:86:c1:c8:33:7c:65:98:da:95:c1:
00:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DD:2E:7A:DB:F2:88:EF:F3:B0:D4:C6:57:D2:FC:B3:AE:B7:74:A6
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/Kd0uetvyiO_zsNTGV9L8s663dKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.28.225.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b5:72:61:a3:50:76:b7:5d:86:43:d9:1e:e5:3e:a2:8b:94:
85:d7:70:5b:54:22:1d:b8:4f:56:95:b2:63:11:54:b3:8d:a3:
1f:34:8e:9a:49:48:44:a7:d0:5a:50:d3:56:ff:93:e6:e9:07:
d7:32:c3:80:9e:eb:10:2d:5e:65:95:8b:92:b7:36:49:ca:00:
4a:cf:51:29:54:8b:a0:d0:60:af:bf:94:2a:70:94:73:24:a2:
1e:ba:ba:df:6b:e6:f9:0e:7b:90:bc:5b:77:1a:0a:b6:1b:ce:
ed:af:5a:da:93:58:7a:14:1e:87:3d:6b:58:e3:04:17:28:8f:
e0:65:88:f2:d0:de:1c:87:b3:28:20:0f:d2:4b:8d:fe:bf:49:
cd:68:cf:db:48:88:e0:0a:4f:d0:88:06:96:01:d4:b1:65:62:
e8:d4:45:52:f5:f5:8b:5d:e9:45:8b:63:33:d0:db:55:69:8c:
90:de:9e:d4:a8:a7:31:0f:1d:1a:61:17:a5:82:3e:0b:a3:b3:
54:e5:2d:f4:c7:a6:61:0f:50:1e:de:07:88:7d:3e:8e:77:5c:
b7:fd:25:35:f6:12:50:d0:3b:9a:0e:aa:56:d2:47:3e:aa:1a:
59:b6:01:a3:f0:c5:82:8d:e4:67:01:5d:5c:b6:e7:0c:af:af:
c2:bb:e8:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org