Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/TX7LeyiwV8Dex0DjLite-SHAcVY.roa
File: TX7LeyiwV8Dex0DjLite-SHAcVY.roa (raw, json)
Hash identifier: eteIREUuPTlf+bOYz/bd+NghKWqsjHhkNuXpKiaKetw=
Subject key identifier: 4D:7E:CB:7B:28:B0:57:C0:DE:C7:40:E3:2E:2B:5E:F9:21:C0:71:56
Certificate issuer: /CN=54b24d895bf9c0a5fd000a45a347510b2a087fb8
Certificate serial: 097EBDAF
Authority key identifier: 54:B2:4D:89:5B:F9:C0:A5:FD:00:0A:45:A3:47:51:0B:2A:08:7F:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLJNiVv5wKX9AApFo0dRCyoIf7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/TX7LeyiwV8Dex0DjLite-SHAcVY.roa
Signing time: Sat 01 Jan 2022 04:02:07 +0000
ROA not before: Sat 01 Jan 2022 04:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57773
IP address blocks: 147.78.228.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159301039 (0x97ebdaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b24d895bf9c0a5fd000a45a347510b2a087fb8
Validity
Not Before: Jan 1 04:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d7ecb7b28b057c0dec740e32e2b5ef921c07156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cf:d0:9e:60:96:bc:07:40:0a:ac:fd:42:00:
7b:cf:cc:ec:ef:08:e5:f4:b4:76:04:9e:df:7f:6d:
32:93:ea:e4:fd:a2:dc:26:ac:b6:82:34:94:b7:99:
60:a7:38:62:0d:f1:01:eb:db:e2:bb:99:83:be:6d:
98:70:cf:cd:91:fd:a2:04:5c:8d:c9:49:b8:96:fa:
12:28:4b:a6:28:5b:80:71:3d:c2:65:11:fc:16:c1:
af:7e:7e:5b:07:bd:80:63:00:2d:9c:c8:61:57:31:
a0:8a:b7:14:c4:f4:87:d7:14:8a:36:ad:ff:33:b8:
fe:3e:3b:42:00:d2:34:e6:e2:f8:9e:b1:a0:6e:68:
d9:19:2b:0e:71:a5:48:58:38:99:14:16:b4:d0:76:
ed:76:f2:93:68:02:30:cb:e0:9e:51:7a:e9:94:b7:
55:73:e9:ed:e0:b3:c5:fd:f2:92:32:8d:0e:ce:fb:
5d:c3:9c:81:fe:68:46:94:dd:56:f8:cd:ce:82:4a:
71:2d:75:90:2c:31:68:31:03:f6:7d:2d:e5:4a:99:
bf:1a:f0:14:f2:2a:a5:56:a8:0b:e1:53:51:2b:8e:
7b:86:5e:78:01:e6:ae:f9:72:29:26:8c:e8:c0:2d:
71:18:ca:f0:45:93:c2:80:d2:d3:dc:bf:87:a6:06:
66:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7E:CB:7B:28:B0:57:C0:DE:C7:40:E3:2E:2B:5E:F9:21:C0:71:56
X509v3 Authority Key Identifier:
keyid:54:B2:4D:89:5B:F9:C0:A5:FD:00:0A:45:A3:47:51:0B:2A:08:7F:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLJNiVv5wKX9AApFo0dRCyoIf7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/TX7LeyiwV8Dex0DjLite-SHAcVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/VLJNiVv5wKX9AApFo0dRCyoIf7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.228.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:e5:6a:54:55:f3:40:24:2b:ab:03:20:30:99:99:c8:1d:0a:
09:57:53:9b:57:25:68:32:ed:70:ed:f5:d8:20:03:9d:4b:81:
bc:55:e3:29:03:9b:5a:65:da:6e:4b:d6:6f:a5:c8:67:f3:b3:
0f:03:d9:3a:3c:75:44:a6:34:7c:38:e8:d9:76:de:31:e2:ca:
23:7d:51:fb:2f:eb:7c:af:d4:c4:05:f7:0e:6e:42:d0:06:9b:
79:20:a0:d2:87:0f:94:77:a7:21:c0:41:64:2c:d8:f2:4a:84:
9e:ef:21:9a:c9:9a:36:6a:01:a6:73:58:90:db:e2:e4:4f:77:
62:bb:6a:a2:42:26:c7:8b:4c:20:da:74:05:37:06:0c:8c:6e:
4c:c4:d5:89:d6:54:c1:bb:01:e4:0c:3a:2b:72:52:38:a4:67:
99:ce:5d:85:12:a0:ce:0a:98:72:13:8c:4e:79:dd:2a:7e:71:
22:da:70:09:29:d5:ee:63:da:9b:e5:5b:a9:90:26:99:e0:e1:
ea:52:25:91:07:a5:f3:75:e3:85:90:16:3c:0b:ce:48:f3:06:
ac:1e:b7:52:ca:1c:cd:07:e1:ec:33:78:ed:3d:a7:1c:f5:8c:
fc:1c:c9:a1:53:d6:f3:d2:c2:46:5f:ca:ed:25:f8:44:07:75:
39:7e:dd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:59 2023 by rpki-client on console-fra.rpki-client.org