Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/124ac8-fa93-4c23-bd62-5b4aff7a6398/1/Tvos6WQ4YIG_XCjnbXF-bWlGPlA.roa
File: Tvos6WQ4YIG_XCjnbXF-bWlGPlA.roa (raw, json)
Hash identifier: TVXqXL5JqNPagP3QwiPn2rOJUI8r22zUZ2ZO3mz6WFU=
Subject key identifier: 4E:FA:2C:E9:64:38:60:81:BF:5C:28:E7:6D:71:7E:6D:69:46:3E:50
Certificate issuer: /CN=1ebe3e521407f597f255f3fb4e0b569c32083552
Certificate serial: 058B5A35
Authority key identifier: 1E:BE:3E:52:14:07:F5:97:F2:55:F3:FB:4E:0B:56:9C:32:08:35:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hr4-UhQH9ZfyVfP7TgtWnDIINVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/124ac8-fa93-4c23-bd62-5b4aff7a6398/1/Tvos6WQ4YIG_XCjnbXF-bWlGPlA.roa
Signing time: Sat 01 Jan 2022 09:00:16 +0000
ROA not before: Sat 01 Jan 2022 09:00:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43728
IP address blocks: 78.31.4.0/22 maxlen: 22
78.31.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93018677 (0x58b5a35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebe3e521407f597f255f3fb4e0b569c32083552
Validity
Not Before: Jan 1 09:00:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4efa2ce964386081bf5c28e76d717e6d69463e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ba:6e:fd:28:fc:07:a0:14:a6:71:e9:aa:3d:
f7:4d:30:2e:c4:b0:37:ef:79:be:1e:8c:21:25:41:
27:58:e4:b3:16:e5:e1:40:7c:ab:c0:9e:50:9a:a9:
a0:df:fa:6c:3e:5f:5e:5d:c2:6f:d4:02:e7:d2:27:
a6:a1:15:11:04:c3:56:06:86:b0:ef:66:7d:13:fb:
8a:50:be:18:db:7e:f4:39:f5:1a:3a:13:b1:51:cc:
33:46:85:7f:14:16:0d:61:d2:86:9a:c0:36:9e:e6:
a6:39:62:91:f0:d0:71:a0:86:f4:2a:00:3f:4c:5c:
ae:74:8c:03:48:78:61:e7:dc:85:71:2d:06:de:1d:
74:46:26:2f:3b:40:16:97:9e:60:eb:e0:a3:fc:a1:
e1:29:25:06:1e:f7:c3:c9:9a:7f:29:56:3e:96:bc:
6a:d6:74:00:56:43:32:7a:cc:44:39:2d:fb:76:2a:
ff:98:d2:8b:2a:8a:8e:d2:f2:74:c7:73:2e:37:0d:
d9:ca:df:50:9b:d7:dd:f7:7c:8a:ea:bb:9a:a6:64:
70:73:8e:18:ff:87:3e:fc:cb:c5:a3:b8:b2:ef:40:
6c:6c:75:b6:ed:3c:ef:15:19:ac:d6:b4:ca:ea:8e:
9b:de:76:08:fc:59:4e:28:5a:b1:6d:31:9f:d2:7f:
91:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FA:2C:E9:64:38:60:81:BF:5C:28:E7:6D:71:7E:6D:69:46:3E:50
X509v3 Authority Key Identifier:
keyid:1E:BE:3E:52:14:07:F5:97:F2:55:F3:FB:4E:0B:56:9C:32:08:35:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hr4-UhQH9ZfyVfP7TgtWnDIINVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/124ac8-fa93-4c23-bd62-5b4aff7a6398/1/Tvos6WQ4YIG_XCjnbXF-bWlGPlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/124ac8-fa93-4c23-bd62-5b4aff7a6398/1/Hr4-UhQH9ZfyVfP7TgtWnDIINVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.31.0.0/23
78.31.4.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:8d:1c:da:0b:8b:ec:97:b3:e0:79:3d:89:bf:a9:c6:51:5a:
51:a8:2d:5e:a7:5f:b7:c6:78:53:f4:68:a0:23:97:0b:5b:0f:
55:62:cd:9d:7d:b0:be:5a:c5:18:35:64:69:73:b4:ba:29:5b:
e8:c1:b3:23:2d:7d:5f:f5:34:68:47:e6:a2:ed:99:70:39:2c:
3b:ee:96:da:4d:ce:f4:03:aa:53:7b:22:c4:ca:4d:15:ff:51:
c3:8b:88:7c:8d:f7:e7:d7:ec:fd:03:64:84:92:6a:0e:77:17:
97:e5:8f:a7:03:16:91:95:6b:99:07:64:c6:64:5c:9c:7f:24:
97:81:f2:8d:b2:98:3a:1c:db:9a:a6:dd:02:5c:60:db:28:d1:
23:7f:4b:25:9d:be:f2:15:d2:47:26:e2:7c:10:9b:bf:1f:a7:
cc:4c:7d:17:7b:f9:d5:bd:d4:a9:80:38:a1:4b:0b:42:99:1c:
7b:85:0c:ec:7e:c9:f4:42:77:7f:9e:69:f8:05:e6:51:87:87:
2f:5c:05:ad:71:9a:ab:9c:27:9d:29:f6:7e:33:c0:8a:4a:e2:
0f:10:e8:00:39:07:f9:f8:87:4b:27:47:27:2c:8d:75:f8:4a:
18:e1:b5:01:77:c0:78:f8:4f:b1:c5:78:7f:ab:de:a6:15:e8:
41:ed:61:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:39 2024 by rpki-client on console-fra.rpki-client.org