Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/cMjUpWvKS_snKyiYKQxI_tbtRNA.roa
File: cMjUpWvKS_snKyiYKQxI_tbtRNA.roa (raw, json)
Hash identifier: BAzAJkaY7E4jAL0CWvaVXq75OTSAnHXoIrNyFD0lGF4=
Subject key identifier: 70:C8:D4:A5:6B:CA:4B:FB:27:2B:28:98:29:0C:48:FE:D6:ED:44:D0
Certificate issuer: /CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466
Certificate serial: 12E93589
Authority key identifier: FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/cMjUpWvKS_snKyiYKQxI_tbtRNA.roa
Signing time: Sat 01 Jan 2022 15:01:40 +0000
ROA not before: Sat 01 Jan 2022 15:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50710
IP address blocks: 78.109.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 317273481 (0x12e93589)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466
Validity
Not Before: Jan 1 15:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70c8d4a56bca4bfb272b2898290c48fed6ed44d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:80:c9:76:bb:0b:58:6f:44:9a:11:2d:65:d7:
ae:7e:4e:2c:91:6d:45:f2:16:5f:d0:d8:af:df:00:
34:2d:7f:4d:e2:25:a0:15:80:7b:d2:22:b1:4b:b5:
02:63:d9:b5:ac:87:a6:f2:13:7d:94:22:25:61:32:
32:29:5d:50:ce:7c:8e:4e:4e:6b:fb:ac:22:63:4a:
8a:c2:11:5c:86:13:0e:cd:f4:b5:78:9e:9b:5a:23:
df:eb:fd:0b:70:03:f6:ee:3f:f8:2f:d6:95:11:76:
be:56:0e:84:cc:01:08:6c:c8:77:2c:52:9b:6a:7a:
23:0d:fe:1d:b5:52:d1:b4:a6:b8:a4:9b:a8:31:ed:
53:25:bb:75:fe:ca:36:32:8d:5d:75:71:03:a9:ea:
c9:0d:81:b3:39:95:7f:d4:d8:98:cf:6d:75:5b:8a:
aa:63:16:02:fd:fa:67:06:31:bb:b9:89:a2:6b:c9:
06:99:85:1b:29:db:e8:02:5b:49:d7:28:26:e8:d3:
76:14:d6:98:28:b8:de:4a:8f:34:f5:8f:d5:2f:3d:
ac:1a:2f:c2:af:16:40:3c:4a:cf:16:e8:eb:3f:a7:
b1:ae:3d:3e:57:a0:fc:16:43:9b:65:d4:d0:75:83:
15:84:b1:bf:79:28:e2:e0:c1:3d:c3:16:47:e9:c1:
43:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C8:D4:A5:6B:CA:4B:FB:27:2B:28:98:29:0C:48:FE:D6:ED:44:D0
X509v3 Authority Key Identifier:
keyid:FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/cMjUpWvKS_snKyiYKQxI_tbtRNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.109.236.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:14:ab:e5:a6:c8:c5:32:5b:73:57:6d:54:3e:86:cf:0b:b8:
cf:57:44:c1:10:bd:00:09:71:4f:d0:f4:cc:e8:77:d3:f2:61:
b0:9b:ea:50:27:f1:82:be:e7:ea:8b:7e:8d:9c:3e:18:9b:b3:
f5:c2:fc:02:ff:ff:58:71:3e:e9:0f:7a:58:3c:e2:bd:54:3d:
2b:ae:57:a8:aa:c0:6f:7c:3a:6d:f1:5a:8c:1f:33:e2:7b:a9:
79:70:0d:dc:9a:1e:2d:7d:29:a9:be:3f:cd:01:f2:8d:53:22:
f6:13:7d:fe:1f:95:db:ec:5e:71:ab:71:f7:1f:c8:bc:74:10:
12:49:42:f7:59:5f:2d:eb:f1:c9:98:46:5a:41:5f:0b:56:7e:
72:51:62:69:ee:df:44:cd:35:cf:44:d6:cf:e7:0d:11:3c:b7:
35:66:77:a3:aa:f4:8b:51:c1:18:42:d3:c8:fb:d0:d9:e3:36:
f7:40:84:db:a4:6f:ce:59:8b:9a:df:9b:bc:63:70:5b:a0:bd:
14:d5:ab:46:47:b2:4b:7f:37:ba:5d:c4:fe:df:40:41:2a:17:
5e:52:49:f9:be:63:cd:4e:60:81:fc:83:f4:0f:e2:ee:5d:5f:
7a:60:e1:c4:b5:76:e0:be:1d:df:fd:ea:ec:ea:b0:4f:a9:93:
af:47:0d:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:32 2024 by rpki-client on console-fra.rpki-client.org