Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/NOmKo7u6i0uwt1HUMDXjBC8PYzk.roa
File: NOmKo7u6i0uwt1HUMDXjBC8PYzk.roa (raw, json)
Hash identifier: RDPAZkOvfwadkkqk6p7u2WYbNawxPrmPuEtDfmDLjog=
Subject key identifier: 34:E9:8A:A3:BB:BA:8B:4B:B0:B7:51:D4:30:35:E3:04:2F:0F:63:39
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 11C7B170
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/NOmKo7u6i0uwt1HUMDXjBC8PYzk.roa
Signing time: Sat 01 Jan 2022 15:05:42 +0000
ROA not before: Sat 01 Jan 2022 15:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57344
IP address blocks: 217.174.159.0/24 maxlen: 24
78.142.60.0/24 maxlen: 24
79.124.51.0/24 maxlen: 24
178.132.80.0/24 maxlen: 24
178.132.84.0/23 maxlen: 24
178.132.82.0/23 maxlen: 24
178.132.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298299760 (0x11c7b170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 1 15:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34e98aa3bbba8b4bb0b751d43035e3042f0f6339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:93:0a:b6:fe:4d:1d:7e:03:8a:9e:48:c1:bb:
40:4f:69:5f:eb:95:55:61:29:31:43:c1:e1:76:ac:
39:d4:66:36:dc:d7:b8:ff:4c:a0:59:dd:f1:dd:63:
b0:9e:48:e0:a0:58:9f:25:35:66:c4:ef:3f:99:25:
81:a1:47:91:88:04:13:29:bf:f7:ac:8c:d0:f6:46:
7e:3c:73:87:c6:05:9c:fc:04:7a:c1:58:2c:de:84:
0f:a8:bb:dd:86:bd:81:28:d8:93:e8:35:35:4b:e6:
66:7b:22:39:42:f2:b0:5a:95:1c:55:c3:37:f9:a7:
8c:0f:e7:bd:73:b3:28:ef:84:5d:2d:43:2c:3f:ef:
e5:fb:e5:c1:1f:81:4c:ce:22:26:08:41:63:cb:07:
95:53:03:39:8d:c9:4e:87:65:e7:e4:50:68:c0:c1:
59:44:4e:41:1a:cf:5d:c7:ca:72:5d:fd:93:ae:c5:
aa:49:5a:4e:a4:bf:1c:85:4b:eb:1a:bd:3c:08:fa:
89:48:a1:e6:09:a5:68:bb:8b:64:00:21:a7:10:2f:
0e:cc:49:45:fa:bc:67:9f:92:cf:b3:70:10:f1:e5:
b2:67:dd:16:d4:77:62:2c:b5:76:89:9c:65:b8:76:
33:db:55:9e:99:21:bd:b5:0f:5c:ed:92:51:71:fd:
1b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E9:8A:A3:BB:BA:8B:4B:B0:B7:51:D4:30:35:E3:04:2F:0F:63:39
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/NOmKo7u6i0uwt1HUMDXjBC8PYzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.60.0/24
79.124.51.0/24
178.132.80.0-178.132.85.255
217.174.159.0/24
Signature Algorithm: sha256WithRSAEncryption
37:29:3a:d1:ec:72:de:dc:85:9b:2c:e6:06:5a:6a:17:88:c8:
04:e9:fe:9b:ab:93:a2:57:3e:fb:8f:fd:6d:ea:8a:a7:1a:9b:
2a:5c:ab:cb:a2:be:6d:b2:86:66:26:3c:bd:d8:43:2b:f6:41:
bd:6d:97:be:bf:83:6d:c8:76:70:4d:01:05:fd:ef:4d:f8:f5:
e4:ed:83:0d:b5:e2:26:92:20:d1:51:36:bf:71:d1:d6:a9:c8:
99:4e:72:0e:63:e2:12:83:51:30:4d:e2:6f:c7:a0:db:4d:b6:
64:f6:35:97:58:13:63:f7:7b:4c:7d:9a:55:f0:42:07:39:39:
a2:1f:21:aa:7f:ba:d9:e1:b5:7f:81:1d:15:1d:8f:cb:ad:27:
f5:f0:d8:ed:b2:ae:97:e1:70:50:0d:40:60:03:14:0b:bd:5a:
95:06:73:37:22:cd:f6:ab:bd:e2:07:c6:55:9d:8a:5a:f4:ee:
7a:b9:6a:85:c6:cf:13:b7:da:a2:92:74:30:2a:87:c9:3e:0b:
94:c8:b8:b1:cd:36:63:13:b4:aa:d8:78:8d:30:28:bb:a2:03:
e3:49:a7:4d:eb:5b:49:95:b1:13:fe:d8:6c:0f:c8:33:d7:d3:
4d:d0:9a:05:e3:9e:0a:fc:5d:9f:fd:ec:82:4e:8d:94:01:92:
dc:2d:9e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:15 2024 by rpki-client on console-fra.rpki-client.org