Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/a_19so1sH7D7pzfedHGglDswztM.roa
File: a_19so1sH7D7pzfedHGglDswztM.roa (raw, json)
Hash identifier: VeGVVNwot73zLRU97/SU3G5DBKmMCOhvmSnfJpu8V3o=
Subject key identifier: 6B:FD:7D:B2:8D:6C:1F:B0:FB:A7:37:DE:74:71:A0:94:3B:30:CE:D3
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 0184A86A65F588B547A164B13586BD831DB6
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/a_19so1sH7D7pzfedHGglDswztM.roa
Signing time: Thu 24 Nov 2022 06:54:15 +0000
ROA not before: Thu 24 Nov 2022 06:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3330
IP address blocks: 78.142.86.0/23 maxlen: 24
195.16.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a8:6a:65:f5:88:b5:47:a1:64:b1:35:86:bd:83:1d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Nov 24 06:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bfd7db28d6c1fb0fba737de7471a0943b30ced3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:88:4a:b4:b8:cd:02:3a:7b:da:1a:72:58:a5:
3d:b2:fd:a8:21:31:f0:28:7f:ad:76:b8:57:19:d0:
59:6d:89:d6:90:3c:e1:c1:11:18:8b:ad:a0:d1:d3:
51:6e:c8:9c:8f:bb:6c:ef:6e:a7:17:8a:ec:62:20:
94:8a:1d:9d:32:2b:88:ad:14:cb:02:ee:14:17:d2:
24:a2:7a:e9:a4:93:be:e0:18:ba:69:78:35:fb:b9:
2e:15:70:d6:02:ab:b5:cd:ec:6b:1e:64:91:2e:9a:
af:a8:38:22:ca:c0:b6:4f:4b:35:7e:8a:75:52:66:
f9:c7:ac:9c:3d:1e:34:43:da:41:b2:fa:f3:25:6a:
79:e4:7a:0b:14:59:15:b4:1a:31:1c:c6:45:58:bf:
37:43:c0:52:4b:cc:4a:0f:60:53:35:65:b4:08:57:
27:06:a6:5b:3a:4a:58:40:85:60:ae:ed:e3:54:41:
94:a3:22:ac:04:b1:11:1e:f8:06:3c:15:3f:73:0e:
72:b8:e8:12:b6:a8:06:bc:24:7b:89:e3:23:ec:80:
d9:6f:b1:61:cc:4a:38:59:87:51:4e:e2:a4:2a:93:
47:cd:7d:b1:bd:95:93:ea:9f:db:54:5d:06:0a:63:
bc:76:1e:31:73:32:0e:30:2e:66:c6:80:49:08:54:
0e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:FD:7D:B2:8D:6C:1F:B0:FB:A7:37:DE:74:71:A0:94:3B:30:CE:D3
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/a_19so1sH7D7pzfedHGglDswztM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.86.0/23
195.16.244.0/24
Signature Algorithm: sha256WithRSAEncryption
78:0a:80:45:78:8b:82:a7:a7:e0:d4:ea:c4:f3:d8:5f:46:27:
d4:84:0c:dd:ec:21:21:41:4d:3f:ff:01:70:14:09:0d:c4:ec:
d1:23:80:96:59:cf:8b:bb:e7:d1:55:0a:b0:e3:51:27:12:6c:
dc:1b:85:8f:ca:ca:7b:79:2a:fe:94:dc:88:9f:42:6b:98:79:
eb:ff:5d:f5:1a:de:c2:93:ab:f8:fd:24:c6:b8:a4:4e:46:bd:
3f:8d:57:90:7a:68:d9:b7:e3:6b:e1:eb:08:85:73:03:31:b2:
fc:e2:24:4e:ec:15:20:1f:11:de:33:b3:38:a6:e1:d8:33:4a:
c0:cd:a8:a5:da:33:bc:c4:38:cc:0c:dc:48:e8:23:d5:8e:ee:
ae:83:0b:07:55:49:25:7c:61:4f:38:f9:72:96:89:87:50:80:
c7:38:9b:36:62:4d:ad:96:ed:2a:9e:4d:e0:60:6c:32:2f:9e:
b5:7b:16:74:3a:52:df:88:f6:99:b8:ff:b4:98:53:b6:70:c9:
4b:5b:67:d6:87:7e:63:8a:2c:f9:cb:fd:d9:7c:c8:91:14:35:
c8:8a:68:23:6b:77:ab:1a:02:d3:68:4e:c3:b5:49:23:2d:cc:
ad:1b:62:d8:c8:b7:3b:1d:49:3f:fc:ca:7e:24:48:e9:d6:26:
09:c9:ff:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:37 2024 by rpki-client on console-fra.rpki-client.org