Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/emAlABUygl2h0nD8l9qNupMVl3w.roa
File: emAlABUygl2h0nD8l9qNupMVl3w.roa (raw, json)
Hash identifier: fqUzWePTO51okWLqPcVnsMVC9DiXeUDn7KbGXcCZnOI=
Subject key identifier: 7A:60:25:00:15:32:82:5D:A1:D2:70:FC:97:DA:8D:BA:93:15:97:7C
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 0182C515D0A227BFA7F0544F85727B14A09D
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/emAlABUygl2h0nD8l9qNupMVl3w.roa
Signing time: Mon 22 Aug 2022 10:25:17 +0000
ROA not before: Mon 22 Aug 2022 10:25:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3330
IP address blocks: 92.63.213.0/24 maxlen: 24
78.142.66.0/23 maxlen: 23
78.142.86.0/23 maxlen: 24
195.16.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:15:d0:a2:27:bf:a7:f0:54:4f:85:72:7b:14:a0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Aug 22 10:25:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a6025001532825da1d270fc97da8dba9315977c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b6:89:49:a1:c8:4f:c0:e6:06:26:6d:eb:71:
05:42:c6:10:11:34:51:2a:b0:c1:71:f6:5d:41:d4:
96:39:48:5f:4d:a9:21:86:cc:e3:2f:a5:0f:28:bf:
2f:ea:93:a3:a6:f2:6d:ed:19:30:3f:93:99:96:cd:
11:47:c4:0a:88:5e:81:1b:91:ea:81:d5:5c:4c:5c:
c8:20:cb:d0:6f:7b:6d:78:05:7f:01:ab:3b:eb:ea:
95:00:48:19:c9:ed:d8:10:a4:c1:60:02:7d:a2:fd:
35:04:07:16:33:e6:f8:37:20:f3:4a:52:78:60:e3:
9f:a3:80:9b:26:20:67:db:a8:19:dd:5f:5a:97:dd:
9a:0c:c7:df:27:11:f0:57:a2:8e:ac:8e:37:f1:f1:
eb:58:f0:b0:94:c8:e7:87:13:2d:d9:b4:05:d6:52:
e1:50:bf:dd:1d:e5:0b:b5:b3:d6:67:ab:7f:10:a3:
af:a9:13:c3:53:c2:d1:56:81:44:08:d1:25:e7:ff:
c5:82:0c:e3:da:6b:af:04:83:ac:e1:59:48:42:f4:
87:7e:74:80:58:13:cb:ee:84:79:63:1c:70:80:73:
1c:64:81:f9:5d:42:a3:ca:af:fa:3b:a4:fb:df:82:
1a:2f:62:bb:d8:9b:bc:88:96:41:92:8b:e0:4a:86:
3c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:60:25:00:15:32:82:5D:A1:D2:70:FC:97:DA:8D:BA:93:15:97:7C
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/emAlABUygl2h0nD8l9qNupMVl3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.66.0/23
78.142.86.0/23
92.63.213.0/24
195.16.244.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:46:13:ee:4b:3e:41:88:aa:6b:e9:a6:9b:e3:1f:09:6a:e8:
f5:68:c0:83:09:a5:aa:5f:3a:9f:ee:a4:f5:dc:81:60:a7:ec:
9e:5b:f6:52:98:7c:e2:09:72:44:ef:18:8b:be:7e:34:7e:ff:
88:1a:41:fc:54:9a:4b:83:a3:b9:f2:6e:25:b6:74:78:32:e7:
6d:76:84:02:da:d5:fe:57:af:65:82:b0:d7:d7:19:8d:fb:91:
80:7c:1f:c3:e5:cc:17:4e:a5:a2:53:f6:62:a5:da:bf:0e:c8:
37:1d:9d:24:8c:48:7d:32:94:57:06:d6:64:b5:cd:06:10:19:
87:1c:31:77:68:9b:87:89:5c:9f:95:ac:d9:9c:90:1a:84:df:
c4:e9:aa:c5:fc:2d:5d:ec:ed:72:bd:1c:99:97:52:63:1e:ae:
64:20:35:95:ee:b2:51:b2:61:6a:61:a1:32:92:a2:09:85:5e:
f0:f6:8b:fb:c0:c2:ca:cc:48:b2:1a:0c:27:60:ce:64:27:2f:
54:8f:b9:72:5f:35:2a:ff:de:46:ec:01:78:fd:e8:d2:9d:e9:
e6:6d:9b:7c:db:d7:a1:b4:d5:85:c4:e7:a7:10:c9:52:d9:da:
8e:e2:7a:f6:79:60:ad:05:67:b2:d5:be:6d:78:2d:f1:8d:91:
04:c7:cc:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:12 2023 by rpki-client on console-fra.rpki-client.org