Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/x7RhmVHKrvVAUcU5h_wFc0p3eW4.roa
File: x7RhmVHKrvVAUcU5h_wFc0p3eW4.roa (raw, json)
Hash identifier: vJtnoh5p7OBvaqv5jKcLDsbMmCst6Bmyhn86ZBfkH6A=
Subject key identifier: C7:B4:61:99:51:CA:AE:F5:40:51:C5:39:87:FC:05:73:4A:77:79:6E
Certificate issuer: /CN=a4133524f24a4a8a21d46c06c1025f40f34ad27a
Certificate serial: 16E2327C
Authority key identifier: A4:13:35:24:F2:4A:4A:8A:21:D4:6C:06:C1:02:5F:40:F3:4A:D2:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pBM1JPJKSooh1GwGwQJfQPNK0no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/x7RhmVHKrvVAUcU5h_wFc0p3eW4.roa
Signing time: Sat 01 Jan 2022 00:59:19 +0000
ROA not before: Sat 01 Jan 2022 00:59:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13030
IP address blocks: 185.78.120.0/24 maxlen: 24
185.78.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383922812 (0x16e2327c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4133524f24a4a8a21d46c06c1025f40f34ad27a
Validity
Not Before: Jan 1 00:59:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7b4619951caaef54051c53987fc05734a77796e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8a:55:c1:f9:44:d0:56:fa:f9:ae:3d:e0:f9:
c1:03:aa:03:6e:02:7c:b0:88:5c:aa:d3:6f:a8:ae:
d7:68:6b:e8:18:b4:5d:d8:1b:9a:c6:62:52:8b:d0:
f0:86:0e:ac:a1:97:b4:63:d9:41:09:9e:a7:19:c6:
65:a1:9d:cb:45:d9:3a:4f:a7:72:28:c2:42:7e:a1:
e0:d8:f5:15:86:55:81:c4:ba:c4:81:26:59:88:45:
38:d9:7c:ec:81:c5:ac:e6:7f:e2:da:8b:89:b9:4b:
82:ab:0f:e6:44:6b:01:5d:86:37:79:a2:95:70:47:
2b:a1:b9:56:19:f4:7a:3f:de:ee:c7:0a:fa:d2:40:
16:ad:77:a0:18:46:b9:19:28:cb:60:10:16:a7:e0:
8f:d7:4c:57:59:c2:c8:84:7b:36:20:f8:37:c3:63:
09:24:57:7f:25:9f:30:0b:c5:9f:f9:00:be:fd:72:
b5:8a:02:c1:dc:a9:c6:14:8b:43:05:ef:45:28:dc:
88:0d:03:31:9a:31:f4:b1:5f:c8:92:b4:79:34:74:
93:96:65:5f:67:3e:85:16:fa:8a:64:27:c1:2d:bc:
ff:43:41:b6:7f:70:c5:d2:58:5e:74:83:1b:cb:94:
7a:c7:e8:85:79:2a:95:6e:2a:9f:26:e1:b2:a4:5b:
e0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B4:61:99:51:CA:AE:F5:40:51:C5:39:87:FC:05:73:4A:77:79:6E
X509v3 Authority Key Identifier:
keyid:A4:13:35:24:F2:4A:4A:8A:21:D4:6C:06:C1:02:5F:40:F3:4A:D2:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pBM1JPJKSooh1GwGwQJfQPNK0no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/x7RhmVHKrvVAUcU5h_wFc0p3eW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3c24be-266e-4522-97d6-7d9e62afc444/1/pBM1JPJKSooh1GwGwQJfQPNK0no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.78.120.0/24
185.78.122.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:25:3b:a8:bf:25:e9:42:0a:e9:36:63:39:d3:49:13:65:61:
d0:1b:4e:15:b5:8b:6e:e0:5a:d5:b7:76:49:19:48:70:3c:32:
c5:d6:dd:ed:e0:05:10:89:ec:c7:fb:dc:7e:d5:1b:d5:80:41:
b9:55:84:a5:aa:6e:e5:2d:66:f1:c6:fd:8a:7c:36:56:6a:dd:
f9:3c:ec:67:35:52:71:b5:c4:c7:14:3b:58:d5:c4:9b:08:46:
53:92:35:17:7e:42:0e:b7:5d:eb:9f:30:71:2a:45:d5:5c:93:
b3:69:1b:a9:2f:ce:1e:17:f1:c6:b8:14:53:aa:a3:84:bf:e8:
3c:e2:e2:f0:a7:be:13:9e:7a:f0:0f:1b:68:bb:49:bd:0d:3d:
65:ec:bd:00:56:18:be:d8:94:77:6c:c7:73:c5:40:db:1c:ff:
ac:39:5d:0c:3c:71:c7:e2:0c:ec:36:8c:54:30:60:49:61:28:
67:d5:dd:6d:de:3f:3f:3a:b0:a1:b3:76:9e:82:be:e2:5f:df:
6f:4b:b3:78:09:88:bc:78:c0:37:41:ad:cc:7b:8f:7c:5e:c6:
8c:47:0a:73:a8:05:43:dd:71:8e:96:25:45:75:90:5d:c5:01:
b4:a6:72:5b:5a:13:02:76:69:5b:34:6b:a9:09:22:a1:84:19:
87:c8:35:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:36 2024 by rpki-client on console-ams.rpki-client.org