Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/9IPNiMfddF1jXFvHv9QBkEBYit8.roa
File: 9IPNiMfddF1jXFvHv9QBkEBYit8.roa (raw, json)
Hash identifier: KLB9mZQxQ2Gx5rKGLsJlet4x9kiu/HXXJBIV8xu2+As=
Subject key identifier: F4:83:CD:88:C7:DD:74:5D:63:5C:5B:C7:BF:D4:01:90:40:58:8A:DF
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 0384C8E5
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/9IPNiMfddF1jXFvHv9QBkEBYit8.roa
Signing time: Sat 01 Jan 2022 01:59:21 +0000
ROA not before: Sat 01 Jan 2022 01:59:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60637
IP address blocks: 78.157.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59033829 (0x384c8e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Jan 1 01:59:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f483cd88c7dd745d635c5bc7bfd4019040588adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8a:c8:1d:46:05:76:9f:6d:a7:28:f2:f7:7a:
09:fc:85:33:98:33:85:61:88:ea:2f:39:32:38:a5:
6c:40:7f:f6:04:5a:a0:4c:ea:f7:b6:0f:cd:5a:28:
0c:9d:af:fb:6e:52:7d:60:c1:01:e7:86:ab:0e:12:
ab:c6:06:b8:95:35:c3:ab:ff:9f:5a:dd:7c:b6:db:
7c:01:9c:b6:b3:66:c7:0a:c8:1b:21:c0:a6:47:4a:
1f:16:f3:8e:d3:d3:40:72:ff:c9:ae:84:e1:f0:fe:
a2:a7:a0:37:d9:2d:ca:cf:ef:a0:3e:05:ec:ce:2c:
77:6a:df:9a:5a:df:5a:4e:66:8c:80:f1:14:dd:d9:
49:a7:60:fa:0d:50:44:2a:d8:37:6d:1d:19:0f:38:
8c:25:05:06:65:29:bc:8e:7d:01:18:11:25:23:7e:
ec:90:84:8b:4d:3a:c7:67:da:d7:7d:a2:e6:a1:ca:
55:4e:aa:b1:e6:37:84:ee:ab:7a:b5:22:ed:34:72:
49:b0:8a:75:c5:50:ae:fa:b4:0e:85:01:e9:f6:19:
94:4f:0d:45:3c:75:24:a8:8e:bc:f6:1a:b8:d0:0d:
56:60:3c:f5:9c:6c:d7:67:04:e3:bc:ce:30:6b:1e:
a2:ac:e8:3e:4e:7f:91:14:57:d5:e7:c7:b4:8c:48:
82:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:83:CD:88:C7:DD:74:5D:63:5C:5B:C7:BF:D4:01:90:40:58:8A:DF
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/9IPNiMfddF1jXFvHv9QBkEBYit8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.157.33.0/24
Signature Algorithm: sha256WithRSAEncryption
36:14:d1:70:d2:0e:d7:c6:75:0a:04:f1:65:90:60:b8:02:2b:
08:b6:97:41:b2:fd:36:3a:81:59:7e:0e:c5:43:1a:7d:61:ef:
95:a2:6a:dd:8c:15:e3:d6:0a:ad:ec:72:8f:03:e0:12:fa:2e:
a1:9d:15:68:2b:2e:0e:de:55:86:f8:ce:b8:ce:c8:4c:29:59:
8c:04:e1:fd:c3:b8:d7:8d:9f:0a:2c:f4:e4:2d:01:57:d3:2c:
ec:00:43:7e:c3:05:1b:da:e0:b9:65:3f:96:49:24:85:42:28:
fc:90:21:fc:f2:2b:84:a2:2b:d9:6a:32:b0:26:27:75:d0:ca:
f8:17:f5:5c:f2:a3:59:e1:11:94:40:f1:7e:ae:bd:8d:d6:29:
b9:22:9e:5e:f8:d9:8f:4a:4e:af:bb:b0:a3:94:01:85:5a:29:
e2:ca:0a:d5:88:49:f9:c9:d2:79:c5:c5:f2:77:9b:ad:19:31:
9f:5b:64:bd:12:f1:e0:7b:9e:bd:2d:c5:e8:ad:c0:5d:41:08:
7d:63:6f:cc:2b:05:1a:e2:4a:76:34:d0:5f:6c:e8:31:c1:ae:
76:c3:8e:c7:b2:0d:e0:58:1d:61:56:c5:bd:a5:0f:bf:d5:8b:
4c:88:3f:f9:de:9f:07:64:b5:27:de:c8:86:42:17:ec:72:7c:
dc:e9:be:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:35 2024 by rpki-client on console-ams.rpki-client.org