Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/xhbNPSCI5vAt3lKHNSam37Friac.roa
File: xhbNPSCI5vAt3lKHNSam37Friac.roa (raw, json)
Hash identifier: 7FaG3aLbHsEn6msTtSx5qocyh4e40preLFGYT5iPCCU=
Subject key identifier: C6:16:CD:3D:20:88:E6:F0:2D:DE:52:87:35:26:A6:DF:B1:6B:89:A7
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 018414B524B6A5B3BC0F6E33F769C17E60E6
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/xhbNPSCI5vAt3lKHNSam37Friac.roa
Signing time: Wed 26 Oct 2022 14:32:06 +0000
ROA not before: Wed 26 Oct 2022 14:32:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33908
IP address blocks: 82.140.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:14:b5:24:b6:a5:b3:bc:0f:6e:33:f7:69:c1:7e:60:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Oct 26 14:32:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c616cd3d2088e6f02dde52873526a6dfb16b89a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:79:49:f3:e2:00:09:ed:a1:60:73:8f:b4:39:
4a:d5:ab:6d:63:a9:c6:84:7c:4d:68:44:f3:74:a9:
e2:16:d5:30:01:e3:46:5d:20:47:22:05:bf:67:e3:
69:f8:31:03:e5:11:8f:17:72:e5:32:54:43:e6:bb:
39:41:5f:a7:f4:f4:04:a4:44:47:1b:c1:6c:1e:e9:
42:7b:ef:7d:93:9b:e0:78:d1:34:d3:e4:76:e7:ca:
73:da:e1:48:53:d4:c1:ef:f5:a7:6d:b9:b1:85:c6:
59:35:a0:44:28:63:bb:b2:dc:6f:94:7f:5c:4a:af:
6c:5d:62:04:57:47:6b:29:11:07:f0:20:6e:88:5b:
a9:a1:93:c6:42:bf:ec:8e:ee:75:aa:c2:77:19:e3:
16:e1:d7:4c:cb:5e:47:6c:50:e8:fe:39:dd:ae:bb:
2b:42:e4:da:7c:bd:50:7a:5c:6c:af:e2:f9:6d:39:
55:ef:63:53:66:94:6a:2d:6a:a9:e5:57:dd:a5:81:
7d:89:19:f5:d4:d1:70:77:57:18:da:e7:11:23:1c:
73:43:df:bd:43:ff:2c:14:27:e7:21:13:ed:ee:48:
90:71:91:85:f3:36:0c:06:9f:cf:6c:6d:01:ca:9a:
8b:d9:f9:ec:03:d9:de:bb:8b:20:7b:31:a5:f6:41:
fc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:16:CD:3D:20:88:E6:F0:2D:DE:52:87:35:26:A6:DF:B1:6B:89:A7
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/xhbNPSCI5vAt3lKHNSam37Friac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.78.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:1a:e6:f1:21:9b:ed:6f:8c:c8:29:3f:8e:f4:4c:c4:66:d2:
c5:16:47:c2:8a:f2:4c:86:79:7b:5c:ad:09:fb:81:90:e6:83:
4e:6b:38:30:bf:17:27:c2:ce:85:8c:5b:e2:9e:d2:c1:13:78:
e8:1f:11:da:86:40:e8:d5:55:2a:62:c5:64:d4:88:13:70:19:
ec:4d:b1:43:eb:e7:b2:c9:49:a8:d2:45:93:a9:a4:f9:ab:2f:
38:1c:bb:4c:9e:48:c2:24:37:c0:f7:d1:fb:6e:0b:b5:92:36:
37:83:26:c3:a6:05:5d:8f:62:6a:3a:f0:af:b7:6a:8f:56:ee:
84:f6:19:3f:77:38:d5:16:2e:c1:32:b6:62:64:f0:b1:a1:dc:
fd:44:97:68:6d:3a:9e:49:a9:06:62:c3:43:e0:a2:6c:19:ee:
10:58:5f:de:92:42:05:d4:66:53:23:56:bd:d1:2c:ba:3a:f0:
7c:03:17:46:5f:72:a8:77:60:97:f3:04:b2:04:cd:29:82:7c:
a0:4e:b6:d0:6a:54:71:28:80:24:62:38:e9:6d:61:c3:48:a7:
0b:6e:ea:9c:03:57:27:55:6a:32:57:86:5b:c5:3d:69:95:fe:
ab:34:96:b7:25:c8:25:c6:05:a3:a9:6a:99:34:b9:f8:2f:6b:
ce:a8:ac:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:26 2025 by rpki-client