Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/3fFn6DTwnQc7MUFTWqBswA_Z5dw.roa
File: 3fFn6DTwnQc7MUFTWqBswA_Z5dw.roa (raw, json)
Hash identifier: SPTtJyK5I2QY+AyvVR5gZ4ucis93fLzjKSr06vHv+2k=
Subject key identifier: DD:F1:67:E8:34:F0:9D:07:3B:31:41:53:5A:A0:6C:C0:0F:D9:E5:DC
Certificate issuer: /CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Certificate serial: 1A19F736
Authority key identifier: 57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/3fFn6DTwnQc7MUFTWqBswA_Z5dw.roa
Signing time: Wed 20 Apr 2022 08:32:06 +0000
ROA not before: Wed 20 Apr 2022 08:32:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34306
IP address blocks: 78.108.224.0/20 maxlen: 20
80.69.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437909302 (0x1a19f736)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db
Validity
Not Before: Apr 20 08:32:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddf167e834f09d073b3141535aa06cc00fd9e5dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:da:3a:0c:15:a6:e8:cf:dc:0d:eb:d6:3f:15:
61:56:91:c6:c1:29:b9:40:23:96:d2:77:f1:4f:58:
de:19:10:a3:42:00:50:40:03:96:d2:bc:22:50:dc:
ea:cc:ac:18:c1:c9:e0:0e:e1:63:11:55:23:87:c9:
27:2c:a6:2d:ff:13:6b:b8:1d:cd:2c:8c:e8:bb:8e:
e1:99:64:26:4b:e2:13:ad:16:2c:3b:aa:56:6c:af:
5a:0b:5a:c8:8e:28:dd:71:27:e8:ef:2b:b2:ae:6c:
a4:80:e5:ec:63:1c:bf:19:24:cd:c3:02:4d:71:33:
ca:bb:ce:28:69:22:16:e1:a0:34:7e:d0:e5:85:e4:
96:45:d8:ff:49:6b:3f:08:05:26:00:de:85:8a:87:
f8:89:91:51:4d:d4:11:90:cc:56:44:8d:86:8c:dc:
ae:37:f5:74:0b:ab:2b:e7:2d:5d:9c:63:93:35:d2:
e9:8e:bf:97:8d:17:21:91:8a:d4:84:7d:5f:e5:30:
3b:5f:ef:83:7a:a2:ff:96:d0:2d:88:a1:26:79:ea:
02:16:7a:36:ee:fb:b7:e3:b8:cf:dc:6b:d6:9b:f5:
7b:ab:05:b7:d3:66:da:4c:d1:0d:dc:a1:7f:97:ce:
1b:cb:c7:82:0b:7b:8a:97:02:f3:ea:57:ea:4a:ab:
23:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F1:67:E8:34:F0:9D:07:3B:31:41:53:5A:A0:6C:C0:0F:D9:E5:DC
X509v3 Authority Key Identifier:
keyid:57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/3fFn6DTwnQc7MUFTWqBswA_Z5dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.224.0/20
80.69.208.0/20
Signature Algorithm: sha256WithRSAEncryption
36:ab:15:97:50:c7:cd:f0:dd:ab:83:02:16:90:7a:c1:83:f7:
d9:34:04:9b:92:47:4d:b0:8b:6c:58:d6:2f:dc:fd:d4:d3:50:
8d:c5:62:af:9b:5d:e6:5f:91:4f:eb:65:f6:84:8c:08:78:4e:
2d:ea:c8:bf:48:0a:3d:b6:2e:e5:87:51:60:4a:8b:ac:c8:94:
03:87:36:5c:2b:bd:6f:0c:f1:2d:47:61:ee:e8:c9:66:8d:9a:
7e:53:84:ed:4e:ab:01:31:ba:61:74:e2:d9:fd:f0:89:05:13:
57:32:e4:6a:85:6d:71:e6:d9:83:7d:d6:10:23:6a:ec:aa:67:
da:78:86:52:4a:a2:93:75:12:6b:91:47:ac:31:a1:1a:2c:f2:
04:2a:84:63:e4:a1:d5:58:ba:ba:9b:1d:ab:47:75:27:e9:09:
7f:b8:95:81:9e:2a:9f:44:0c:64:bf:6e:51:11:d8:ab:4e:21:
ad:e7:4a:fc:61:38:63:27:1a:72:c2:f3:dc:07:5e:f0:eb:a9:
90:15:f4:3c:72:ed:59:8e:87:6d:d0:f0:58:36:99:6d:b3:bf:
a1:aa:8e:eb:4c:42:60:97:c6:20:dc:82:38:6d:a0:41:08:5c:
ae:a9:b5:73:e3:d1:ca:a6:ad:fc:02:a2:d1:6a:ef:89:10:1a:
14:16:6f:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:36 2024 by rpki-client on console-fra.rpki-client.org