Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/aeb23a-f8d8-4a1b-a232-3d7e4b496b23/1/I_LreKocFuGmsuzlt7fUJbHvZfs.roa
File: I_LreKocFuGmsuzlt7fUJbHvZfs.roa (raw, json)
Hash identifier: MeyfTT0493dtiMyqeUjU4srRQGshR0q3nl8kr6GE8CQ=
Subject key identifier: 23:F2:EB:78:AA:1C:16:E1:A6:B2:EC:E5:B7:B7:D4:25:B1:EF:65:FB
Certificate issuer: /CN=6d164d9b6b3c7cbd1e9d279c6c867bad397d1e17
Certificate serial: 01851A657AC8DE453FBB08EE7AAA124035BA
Authority key identifier: 6D:16:4D:9B:6B:3C:7C:BD:1E:9D:27:9C:6C:86:7B:AD:39:7D:1E:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRZNm2s8fL0enSecbIZ7rTl9Hhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/aeb23a-f8d8-4a1b-a232-3d7e4b496b23/1/I_LreKocFuGmsuzlt7fUJbHvZfs.roa
Signing time: Fri 16 Dec 2022 10:05:36 +0000
ROA not before: Fri 16 Dec 2022 10:05:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43507
IP address blocks: 78.156.32.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1a:65:7a:c8:de:45:3f:bb:08:ee:7a:aa:12:40:35:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d164d9b6b3c7cbd1e9d279c6c867bad397d1e17
Validity
Not Before: Dec 16 10:05:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23f2eb78aa1c16e1a6b2ece5b7b7d425b1ef65fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c4:63:6e:f4:31:79:d8:79:ea:ed:60:9b:5d:
29:28:90:55:de:1e:9a:b4:76:1c:cd:d8:a7:a5:f1:
0b:e1:b8:77:16:6c:a8:a3:46:80:e9:bc:aa:66:ad:
74:d6:80:81:0c:be:85:61:f5:09:03:ef:87:b6:bf:
d6:50:76:94:e6:ee:33:5c:54:5e:66:3f:f5:50:eb:
6a:6f:8e:89:15:a0:75:50:21:ae:ce:a9:11:0f:34:
c7:f5:ff:b8:b6:79:50:b8:6c:19:df:b0:10:23:ad:
2d:c0:c4:db:7c:a0:54:73:25:a8:a2:3b:73:2a:7a:
e6:d3:b5:f7:bc:eb:ec:4e:29:2f:2b:9c:22:d5:7a:
42:d4:99:f1:02:f6:a1:88:de:c8:01:10:66:d9:27:
34:19:f8:7d:22:b8:d8:50:66:f1:46:de:19:e4:34:
7f:be:38:86:bb:0d:37:ee:be:7f:dc:23:b4:c8:2d:
93:46:90:1d:89:8f:30:fd:22:60:15:1d:03:4d:48:
2c:4c:41:58:c9:ab:6b:9d:e7:5c:06:fb:2c:26:36:
a1:6c:7f:1c:d7:10:11:2c:8d:e4:91:76:08:2f:ed:
69:7c:85:29:cc:a2:1a:31:ee:b4:37:3a:c5:6d:fb:
56:16:7e:49:3b:ae:63:9a:e8:94:c6:ba:36:6b:56:
1f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F2:EB:78:AA:1C:16:E1:A6:B2:EC:E5:B7:B7:D4:25:B1:EF:65:FB
X509v3 Authority Key Identifier:
keyid:6D:16:4D:9B:6B:3C:7C:BD:1E:9D:27:9C:6C:86:7B:AD:39:7D:1E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRZNm2s8fL0enSecbIZ7rTl9Hhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/aeb23a-f8d8-4a1b-a232-3d7e4b496b23/1/I_LreKocFuGmsuzlt7fUJbHvZfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/aeb23a-f8d8-4a1b-a232-3d7e4b496b23/1/bRZNm2s8fL0enSecbIZ7rTl9Hhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.156.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a0:49:a6:dc:65:d9:b0:9b:6c:1a:29:4a:cf:39:6b:9d:57:d7:
32:c3:ce:1a:04:81:f8:1d:de:7d:5f:be:75:cf:c4:cc:5d:57:
f1:70:5b:f4:f1:00:b1:b8:cb:c5:b3:38:05:c6:40:b4:dc:34:
50:12:b4:a6:63:b0:76:e1:8d:e2:e9:3b:84:40:4d:06:ee:0a:
95:11:49:77:49:f3:7d:56:ae:c6:f0:53:1a:d7:72:9a:93:52:
7c:0a:a5:52:a8:68:32:80:df:8a:95:6c:56:a7:13:5b:9a:6c:
61:b5:19:7b:c3:5f:03:de:31:35:11:2b:91:b1:7b:b1:6c:2c:
a3:7e:0a:66:4e:71:c7:94:26:f5:a0:88:ce:7a:1a:50:32:24:
4e:37:04:6e:52:18:5c:3b:a6:40:5b:57:44:ad:49:52:8f:f1:
b1:71:17:9f:80:81:47:94:44:dd:67:4b:c2:73:36:1b:58:c4:
29:af:e1:0f:0d:1c:75:2b:ae:c4:db:d4:9a:04:0f:c7:27:b2:
e4:70:07:31:4c:d6:fd:f9:97:87:24:0c:9e:90:fc:7e:3f:45:
b2:be:cc:c8:06:3f:c7:0e:c7:33:02:e7:a0:0d:1b:e2:83:f2:
da:24:9a:bb:27:60:7d:6e:a1:08:0d:98:28:96:8c:a3:a5:3a:
93:68:f3:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:19 2023 by rpki-client on console.sobornost.net