Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/iQ_4BjtmqWF-yA9k4m1nRbyg2R8.roa
File: iQ_4BjtmqWF-yA9k4m1nRbyg2R8.roa (raw, json)
Hash identifier: Ko7RNS/NuIlKZ02i1C4N09fgIInDBPYRkOdQ+SsDxcs=
Subject key identifier: 89:0F:F8:06:3B:66:A9:61:7E:C8:0F:64:E2:6D:67:45:BC:A0:D9:1F
Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Certificate serial: 01849F7C5AB043F0EA1ED888C51B9CF543E6
Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/iQ_4BjtmqWF-yA9k4m1nRbyg2R8.roa
Signing time: Tue 22 Nov 2022 13:17:17 +0000
ROA not before: Tue 22 Nov 2022 13:17:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210911
IP address blocks: 78.159.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:7c:5a:b0:43:f0:ea:1e:d8:88:c5:1b:9c:f5:43:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Validity
Not Before: Nov 22 13:17:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=890ff8063b66a9617ec80f64e26d6745bca0d91f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:11:88:27:85:0a:f1:df:ee:ef:ad:33:1f:98:
39:97:09:39:9a:04:42:86:f4:5a:ad:dc:cc:0e:3d:
66:57:43:0e:74:63:9c:96:b1:37:e7:00:13:84:86:
dd:bb:15:a6:bb:c7:80:e2:d4:45:48:60:52:82:b5:
f4:11:4f:51:6c:86:6f:f0:07:2c:22:13:39:c7:d4:
33:ee:6b:9b:62:80:15:1c:22:1d:40:33:57:73:80:
2a:ca:b4:29:3b:d1:a1:31:e5:c9:b2:ea:93:65:90:
b0:50:bd:e0:26:a1:c5:80:52:12:e5:1e:1e:f8:ec:
43:6d:be:e3:26:04:af:c6:12:93:b1:83:ae:73:93:
cd:7c:11:67:8e:60:e8:3e:f7:11:c8:b6:03:57:d5:
a4:0a:74:d4:09:fb:91:0b:05:22:c2:ba:a6:bc:b3:
92:00:2e:6e:8e:05:e7:17:3d:d4:87:7c:5b:68:b8:
6a:02:b9:b9:c7:ed:71:72:bc:36:f1:f2:11:ff:eb:
14:55:e3:99:a1:fb:e6:9a:35:fb:06:95:4b:d5:e5:
cb:15:80:16:f7:ba:de:7d:96:e8:7b:91:23:ee:19:
f1:30:7b:38:c9:e3:3e:5e:aa:be:fa:0d:1d:75:1d:
f8:5b:3c:5f:e8:13:87:04:7f:3b:77:b8:a3:64:06:
3c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:0F:F8:06:3B:66:A9:61:7E:C8:0F:64:E2:6D:67:45:BC:A0:D9:1F
X509v3 Authority Key Identifier:
keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/iQ_4BjtmqWF-yA9k4m1nRbyg2R8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.92.0/24
Signature Algorithm: sha256WithRSAEncryption
57:49:ca:6b:3d:5c:e4:0c:03:e6:25:cc:04:3e:68:e6:50:3b:
03:42:e2:2c:20:d7:6a:09:b3:fb:7f:26:3d:6c:b3:e6:4d:60:
51:8c:9b:8f:30:58:77:0f:8e:28:71:94:1d:ad:73:22:10:89:
e6:fe:73:40:30:00:3a:3f:c0:96:87:2f:68:f0:8b:c8:ac:cc:
15:9c:fe:ee:00:9e:47:43:24:71:8d:7a:20:f3:cf:18:32:0c:
89:e5:82:bf:d0:92:0d:66:03:6a:e9:ab:9d:67:6c:64:9d:35:
f6:fb:9b:08:e5:34:55:57:b0:24:ec:56:3d:55:f1:bd:e8:58:
54:a6:c0:3b:ff:2e:2d:25:bd:5c:ab:dd:d0:3c:9e:ab:94:24:
10:c5:65:92:61:5a:b8:ef:36:1d:a7:97:69:ad:8c:28:56:6b:
bf:f8:d6:80:90:7d:a5:d7:78:e1:74:b9:9c:28:2a:c7:43:3c:
84:dc:e5:0b:e8:72:7a:68:52:60:74:8c:49:7b:2b:8b:49:7d:
0a:e6:c9:e1:e5:70:ae:12:6a:b3:c4:5d:69:49:72:d8:36:ae:
10:a2:04:8c:93:2c:27:ad:36:21:87:35:df:f5:a2:7c:70:d4:
ab:aa:27:67:74:0b:83:7e:55:a4:18:40:cf:82:39:a5:65:07:
a8:98:ee:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:44 2024 by rpki-client on console-ams.rpki-client.org