Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/a9baRvUmnK2u2QEk_AZbSqAQnnM.roa
File: a9baRvUmnK2u2QEk_AZbSqAQnnM.roa (raw, json)
Hash identifier: 9b0uWPmEeobzD1qxGRPD2p5H+sY9Kr03olCUhh8+U30=
Subject key identifier: 6B:D6:DA:46:F5:26:9C:AD:AE:D9:01:24:FC:06:5B:4A:A0:10:9E:73
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0380D152
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/a9baRvUmnK2u2QEk_AZbSqAQnnM.roa
Signing time: Fri 18 Mar 2022 05:54:16 +0000
ROA not before: Fri 18 Mar 2022 05:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 195.34.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58773842 (0x380d152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Mar 18 05:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bd6da46f5269cadaed90124fc065b4aa0109e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d9:17:21:6b:dc:51:1a:07:ce:56:f3:6c:6b:
5a:1e:3e:e1:5e:1a:71:9b:21:0a:3d:c5:fc:b0:9b:
3d:e3:cf:eb:f4:e8:2c:03:ef:82:fc:25:a3:56:8e:
dd:5f:1b:82:c7:29:c1:a5:aa:5b:04:a6:31:00:9e:
b0:2e:5a:0a:66:60:f8:c1:d3:d5:68:b7:b8:61:0d:
fa:21:f1:da:12:2c:90:48:f0:de:dc:1f:ba:0b:9e:
27:07:e0:24:6b:5a:1a:51:fc:ce:03:5f:5c:77:78:
9b:86:de:a7:f6:d4:05:81:62:ba:c2:79:7e:a4:8e:
96:20:82:6d:ac:f4:c5:d7:92:99:33:10:cc:9f:2d:
f5:bd:08:7d:04:1a:62:ae:4b:c3:fc:e8:3e:83:ae:
4a:43:78:1d:6e:d5:64:50:aa:dc:5e:f8:a0:2c:07:
bd:a2:ac:38:2f:62:26:b2:35:fb:94:0d:4d:1a:47:
40:7b:32:e2:56:d5:d2:16:62:1e:2a:e3:ac:10:5e:
d3:c8:66:2c:d7:7f:29:c8:24:93:58:af:70:6f:a9:
b2:bf:fe:14:80:ba:22:b0:ff:c2:af:9e:8e:c1:bd:
d5:40:3b:f8:d3:b6:dc:65:a9:db:2f:44:ff:f5:01:
89:cc:cc:a0:93:26:49:b2:8c:b8:e3:f1:12:35:0b:
f3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D6:DA:46:F5:26:9C:AD:AE:D9:01:24:FC:06:5B:4A:A0:10:9E:73
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/a9baRvUmnK2u2QEk_AZbSqAQnnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.34.78.0/24
Signature Algorithm: sha256WithRSAEncryption
29:9f:f5:45:f3:aa:d7:d5:56:08:dc:0b:e8:76:a8:f5:f6:b1:
70:1b:e4:01:e1:43:67:be:0c:b4:bc:1e:39:b4:cf:da:50:3f:
76:4b:21:d5:d9:68:2d:19:1a:b3:c9:23:11:df:d0:d5:2e:f1:
76:09:e5:ca:84:8e:c9:12:4e:b7:47:0f:8a:50:b6:ff:14:24:
ad:d0:93:c6:aa:ec:b7:76:fb:e7:e3:5b:a5:6a:01:46:74:8a:
71:ba:2a:c6:4b:56:ce:8f:93:f4:2a:19:9b:bd:3c:2e:09:c8:
02:64:74:73:f8:b7:2c:fa:66:c6:f7:d6:61:70:36:0a:f8:50:
52:3d:d3:e0:0e:ee:83:c7:6b:96:c8:37:8f:fe:36:80:85:d4:
d2:7f:d3:a6:03:01:ec:27:44:a1:05:8a:93:85:6f:1e:e5:1f:
8e:95:ee:a2:cc:e6:11:b0:86:4b:73:e6:bf:17:2e:83:a7:e1:
f5:4b:62:c5:24:da:95:fd:bd:a9:b9:5c:a6:a5:52:6c:93:40:
de:57:d0:7c:d2:25:ee:a5:66:69:32:22:87:6a:27:ac:0f:9d:
94:e8:11:76:4f:bd:2c:40:a0:e7:65:15:8a:2c:9d:d7:39:d6:
45:35:98:50:08:3c:20:9c:b1:da:41:fb:69:a3:55:e6:c3:63:
5f:e0:df:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org