Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/Q-4kkJR-RIFWdo8DJBBPZ3UAAe8.roa
File: Q-4kkJR-RIFWdo8DJBBPZ3UAAe8.roa (raw, json)
Hash identifier: zqM/oIqvk9XclUszKFYoIJCAKebA9ti5rxNCE5utopc=
Subject key identifier: 43:EE:24:90:94:7E:44:81:56:76:8F:03:24:10:4F:67:75:00:01:EF
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 032FEFAF
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/Q-4kkJR-RIFWdo8DJBBPZ3UAAe8.roa
Signing time: Wed 04 May 2022 05:11:11 +0000
ROA not before: Wed 04 May 2022 05:11:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35579
IP address blocks: 78.142.80.0/22 maxlen: 24
78.142.90.0/24 maxlen: 24
2a04:5080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53473199 (0x32fefaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: May 4 05:11:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43ee2490947e448156768f0324104f67750001ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:88:bc:2a:5a:f2:ed:10:f4:bd:d8:ad:49:83:
8f:53:78:46:47:cd:70:78:46:12:6e:d2:8d:32:50:
65:33:32:43:e2:15:30:d3:58:3c:d5:35:80:ed:95:
b4:66:06:69:9e:c2:e9:1b:c1:7f:c5:d3:be:af:c1:
35:49:c6:e2:52:c5:f6:8a:96:a0:c9:f4:dd:af:a2:
1f:c9:01:8a:a5:30:2f:f7:9e:84:4f:cc:ae:2e:b9:
54:da:24:de:69:30:84:12:9c:16:cd:c0:e5:fe:5f:
1b:f0:b5:64:05:c3:b0:f4:d0:07:e1:31:75:33:95:
18:ed:38:23:55:b3:43:ef:61:fb:1c:46:80:53:13:
d9:72:8f:a3:87:07:0f:ff:ea:1b:33:d1:63:7c:54:
63:87:43:85:ae:cb:50:a5:60:6e:e7:bd:75:95:62:
d4:01:da:11:30:32:7e:98:cd:f4:7b:14:13:fc:84:
43:85:55:7f:ce:15:f3:e8:9c:74:1e:50:8c:88:d8:
f6:72:80:b1:14:e4:36:93:3f:c3:78:db:77:fd:17:
e4:6f:a6:11:e5:41:fd:e1:29:1a:cc:3e:9e:69:a6:
05:e1:3f:5b:28:0f:b5:49:8c:7b:ca:ca:f2:72:3d:
19:4c:16:22:65:33:29:cf:1a:f0:9d:75:af:e9:78:
91:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:EE:24:90:94:7E:44:81:56:76:8F:03:24:10:4F:67:75:00:01:EF
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/Q-4kkJR-RIFWdo8DJBBPZ3UAAe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.80.0/22
78.142.90.0/24
IPv6:
2a04:5080::/29
Signature Algorithm: sha256WithRSAEncryption
74:0c:e2:9b:6e:ba:dc:8b:3b:3e:d7:c0:bc:a7:d4:32:9b:95:
96:08:08:4f:da:1e:a2:86:7a:d1:41:74:fb:fb:1e:52:d2:a3:
8d:f4:7c:10:d3:7d:89:41:fd:f9:0e:d8:e4:18:80:7c:5b:54:
55:6b:01:32:e5:8f:00:10:f0:5b:5d:52:ce:e2:5a:1a:5c:a7:
9d:71:e1:bb:6c:8e:f1:a9:f2:14:e3:5a:e4:bc:df:1a:35:1e:
f7:d5:b8:7a:bf:e1:19:3b:1d:47:7d:a2:5f:06:1e:6d:09:6b:
ed:86:75:e7:1c:b1:d5:85:34:32:90:27:6c:57:1a:3a:4d:d5:
f8:55:e1:38:2d:02:ab:c5:80:d7:05:f1:55:1d:21:87:50:5c:
8a:38:c9:00:13:9c:88:ac:e2:7f:56:9b:85:c3:ec:df:f6:ec:
8c:8e:f4:1d:ab:54:6d:1f:4c:bf:fb:21:5e:34:11:f7:de:39:
68:d9:7b:13:13:e9:02:ab:56:61:ff:e4:83:c7:b7:43:15:c4:
30:15:da:05:e4:6b:7f:77:88:c4:b3:f9:f6:8d:cc:e8:e8:cf:
b6:a4:0d:04:48:14:f8:60:91:2e:6f:ab:ed:4c:60:6e:76:b4:
cd:78:4e:87:06:38:ce:a3:fe:b6:c5:a7:4d:4b:d6:a2:d6:c1:
c8:e5:a4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:49 2024 by rpki-client on console-ams.rpki-client.org