Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/V0bQEuYc4lVeA6sITDtuxxz9UuE.roa
File: V0bQEuYc4lVeA6sITDtuxxz9UuE.roa (raw, json)
Hash identifier: W5e6M/boOM0MZJX8OVWhHy1ZU1oZzuFx7CivSoqzDho=
Subject key identifier: 57:46:D0:12:E6:1C:E2:55:5E:03:AB:08:4C:3B:6E:C7:1C:FD:52:E1
Certificate issuer: /CN=5aedcb334d39e797817e2eb47703c018b4dc49d5
Certificate serial: 0182201CA2A315F29B48CA272C9B3C98C151
Authority key identifier: 5A:ED:CB:33:4D:39:E7:97:81:7E:2E:B4:77:03:C0:18:B4:DC:49:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wu3LM00555eBfi60dwPAGLTcSdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/V0bQEuYc4lVeA6sITDtuxxz9UuE.roa
Signing time: Thu 21 Jul 2022 09:35:23 +0000
ROA not before: Thu 21 Jul 2022 09:35:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60079
IP address blocks: 78.158.87.0/24 maxlen: 24
2a05:e201::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:1c:a2:a3:15:f2:9b:48:ca:27:2c:9b:3c:98:c1:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aedcb334d39e797817e2eb47703c018b4dc49d5
Validity
Not Before: Jul 21 09:35:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5746d012e61ce2555e03ab084c3b6ec71cfd52e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:9d:76:8d:50:d5:0a:81:38:61:be:7f:ec:46:
61:c6:c7:7e:cc:5d:bb:bc:15:fb:24:83:1c:e2:f3:
d6:14:bf:e5:c7:3e:18:05:6b:c3:16:25:6c:bf:9f:
72:53:56:a7:0d:b5:d5:c3:fd:46:c2:43:0b:b5:d6:
8b:33:30:85:9a:15:c7:a5:cb:f2:be:56:11:32:83:
e0:78:aa:00:b3:d3:ba:f8:7e:00:68:29:c1:87:b3:
d5:63:1c:2b:db:87:50:a8:9f:99:ae:2a:b0:57:6e:
de:60:f4:88:65:0f:68:3d:30:cd:f3:81:dd:3f:0f:
cb:df:93:24:15:3a:b9:ab:59:cc:34:c5:57:56:e5:
19:6a:3c:a1:6a:33:21:db:ee:85:0f:13:c6:6f:3c:
33:4b:d1:4a:71:e0:5f:db:77:19:c4:df:a0:d8:ca:
d6:ee:d0:bb:47:7e:8d:94:05:e0:84:2b:c3:24:4e:
1c:2b:cd:bf:68:fa:72:c0:44:80:44:39:ed:e1:a5:
34:c3:42:39:9e:89:06:26:66:69:33:75:f0:62:24:
3d:ba:d0:df:1c:7f:bd:c4:5c:d3:03:9d:1a:56:c7:
14:51:27:2c:61:d9:56:91:0e:8c:c2:2e:0c:ed:6f:
f9:58:73:b0:0f:5f:0c:b3:a6:c1:1b:9d:72:44:8b:
73:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:46:D0:12:E6:1C:E2:55:5E:03:AB:08:4C:3B:6E:C7:1C:FD:52:E1
X509v3 Authority Key Identifier:
keyid:5A:ED:CB:33:4D:39:E7:97:81:7E:2E:B4:77:03:C0:18:B4:DC:49:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wu3LM00555eBfi60dwPAGLTcSdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/V0bQEuYc4lVeA6sITDtuxxz9UuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/Wu3LM00555eBfi60dwPAGLTcSdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.158.87.0/24
IPv6:
2a05:e201::/32
Signature Algorithm: sha256WithRSAEncryption
4d:f9:f1:61:93:79:53:51:91:6c:a1:15:f5:89:90:1f:38:74:
f9:da:26:86:fe:f8:75:68:c9:d9:86:54:4d:19:20:8c:9f:98:
2a:6f:2a:aa:ff:18:16:62:00:70:57:f7:3f:88:3e:ea:1f:88:
32:2b:2c:2a:e5:09:6e:32:ea:b4:37:5d:3f:d8:91:67:cc:b5:
8c:77:7d:9e:d9:ec:1b:b5:ff:f1:9c:81:0b:cc:48:51:dd:74:
a5:26:c8:da:0e:d4:38:12:13:10:7c:57:e0:ea:d0:f2:92:bd:
ad:ac:91:2d:73:fc:ce:ba:58:83:38:20:e4:c9:21:61:0e:0a:
7a:e0:f3:2e:7b:16:9c:5b:11:21:3e:29:cd:6f:45:2f:d4:3c:
db:72:8b:54:a3:f1:33:95:1e:7b:9f:c8:d0:ac:5e:dc:3e:6c:
37:84:17:44:6a:89:e7:c9:a8:1f:7d:86:8d:13:5c:c9:22:c7:
75:75:a4:4c:28:15:2c:87:b7:96:e4:83:d7:d2:d1:fa:95:62:
5b:ed:c7:6b:f6:b0:66:25:2e:92:0b:eb:97:bb:28:82:bc:ac:
36:42:8e:e6:85:a7:2d:97:27:ca:2c:aa:15:51:fe:39:b0:2d:
2c:f6:90:53:bc:59:7d:46:c5:84:88:a6:ee:c0:45:90:c9:62:
88:be:ac:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:09 2023 by rpki-client on console-ams.rpki-client.org