Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Apd132mx81BgvkWUJ5cTm9Wntno.roa
File: Apd132mx81BgvkWUJ5cTm9Wntno.roa (raw, json)
Hash identifier: A4XmtZN1Uuszzd6bP6ayW9A6Tk1cx6/1sxEjo8ixvzo=
Subject key identifier: 02:97:75:DF:69:B1:F3:50:60:BE:45:94:27:97:13:9B:D5:A7:B6:7A
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 39F394AE
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Apd132mx81BgvkWUJ5cTm9Wntno.roa
Signing time: Sat 01 Jan 2022 14:00:31 +0000
ROA not before: Sat 01 Jan 2022 14:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41097
IP address blocks: 78.133.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 972264622 (0x39f394ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=029775df69b1f35060be45942797139bd5a7b67a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3f:a7:1d:07:9b:86:36:81:e8:50:9c:ea:69:
f5:33:2a:ba:12:d4:22:0d:e5:38:b8:f7:5c:28:33:
dd:06:13:02:9f:b9:4e:eb:34:89:5a:18:0c:42:f0:
16:28:1f:ad:73:fa:9c:ad:65:af:05:5d:3c:d9:be:
fd:df:d8:c3:99:31:0d:44:16:50:6e:0b:fd:52:a1:
b5:f7:6b:75:d1:58:c7:64:65:b8:fd:c8:b7:bc:17:
6e:2c:14:e9:74:8f:7d:1d:f0:e9:c7:2b:a4:8a:0c:
db:47:8f:cd:58:d5:ea:1f:5f:91:57:1b:3f:9c:22:
49:51:b9:58:b3:4e:3b:d0:21:03:98:83:54:25:a9:
70:b4:20:64:a1:88:ab:20:03:24:58:08:75:b9:2c:
74:82:b1:bd:55:50:cd:61:21:95:c3:b3:fa:5f:01:
75:ad:03:56:9b:eb:96:be:fc:9b:27:d8:1d:57:95:
14:c0:85:39:d7:40:7a:f4:a4:0d:45:de:b8:54:7a:
fe:26:1a:af:0f:6b:c5:d1:c0:3c:5a:82:54:aa:82:
85:ae:07:46:1c:83:d3:bf:f3:03:1f:d8:5d:02:98:
a6:19:e2:0a:06:b4:74:ab:76:80:da:2a:dc:4e:46:
25:59:d8:0a:46:8f:89:e5:b3:14:dc:4c:6f:2a:8a:
40:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:97:75:DF:69:B1:F3:50:60:BE:45:94:27:97:13:9B:D5:A7:B6:7A
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Apd132mx81BgvkWUJ5cTm9Wntno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.133.228.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:3c:2d:19:b2:96:c9:64:6a:6b:7b:3f:93:88:68:d0:10:9d:
17:6f:3c:29:5d:5b:fb:b5:50:eb:73:b7:df:46:87:4c:45:8c:
4c:0a:ae:9c:38:59:c3:00:e0:6e:99:61:f3:fc:b0:bd:9e:9e:
e9:2e:72:80:20:4f:29:fe:32:41:fe:ab:27:38:b9:c8:88:e9:
15:83:5e:1b:ea:f4:8c:db:38:95:41:12:4c:6c:db:d4:09:2d:
07:c5:a2:54:7c:a9:a3:75:fe:26:db:7c:57:bf:89:0d:db:c9:
08:9d:67:bc:b7:df:af:61:4a:e0:1a:dc:2f:94:0e:3c:a1:68:
18:3a:a9:db:51:52:e1:11:6f:8a:58:5a:64:62:2f:15:b1:60:
d1:43:4b:f9:76:32:57:40:e3:97:41:0e:bf:46:6b:e5:09:57:
29:ea:35:cd:3e:ea:8c:43:f6:30:a2:c3:70:44:7c:1f:62:6f:
5d:4e:fc:51:e2:1e:95:af:7e:bb:ba:41:bd:1c:2d:b5:64:f1:
d0:c2:f9:b0:b9:26:d8:16:d8:e5:4a:11:df:41:35:de:92:08:
3f:e9:0e:a9:00:55:8a:d8:88:6a:95:90:fe:a8:33:af:8b:a3:
ef:6d:50:8a:d9:f4:f2:f4:1a:3a:63:a7:16:4e:e9:a6:88:93:
00:4d:12:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-fra.rpki-client.org