Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/oTSBkgwUVNJWfWo6Qa4bNkoe7-Y.roa
File: oTSBkgwUVNJWfWo6Qa4bNkoe7-Y.roa (raw, json)
Hash identifier: IiB/03L2PKnWT6Tk8/fm+bCEUSpqL3lcoIuIbIQqIt0=
Subject key identifier: A1:34:81:92:0C:14:54:D2:56:7D:6A:3A:41:AE:1B:36:4A:1E:EF:E6
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 035347D3
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/oTSBkgwUVNJWfWo6Qa4bNkoe7-Y.roa
Signing time: Fri 20 May 2022 05:33:30 +0000
ROA not before: Fri 20 May 2022 05:33:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3330
IP address blocks: 92.63.213.0/24 maxlen: 24
78.142.66.0/23 maxlen: 23
78.142.85.0/24 maxlen: 24
78.142.86.0/23 maxlen: 24
78.142.88.0/23 maxlen: 24
195.16.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55789523 (0x35347d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: May 20 05:33:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a13481920c1454d2567d6a3a41ae1b364a1eefe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:66:a0:20:d2:4b:88:92:33:a9:d0:96:87:f8:
43:ab:05:ba:56:a0:11:3d:86:d2:23:93:fd:9d:32:
b7:74:1a:2e:ab:8e:a9:1d:8e:b4:49:67:11:55:56:
bf:f2:6e:37:56:c0:2e:4b:02:91:40:85:5c:c6:9c:
dd:9f:c7:ac:cf:07:6d:36:5c:e1:4f:84:6a:18:71:
8e:dd:4b:e5:47:54:13:ec:d1:ef:00:27:4d:bb:95:
09:a4:17:68:e9:d0:02:84:c1:19:64:47:1d:03:ff:
68:24:b3:fb:e3:3e:cb:d9:16:fc:7a:1b:49:55:7f:
0e:8c:32:25:6e:47:6d:a2:5b:75:51:7d:e9:62:fc:
44:8a:bd:b6:5a:9c:5d:36:36:a6:7f:61:26:3c:7d:
0d:9e:25:01:fa:b1:98:73:15:c6:1a:40:5f:a5:6c:
6a:bf:f2:04:5c:97:f4:be:e2:2f:62:29:df:9b:83:
65:e2:21:94:15:db:c1:27:99:a4:01:d8:de:4b:d3:
33:4c:b8:a0:ca:5e:75:6a:fe:60:8c:fd:a8:a3:95:
e2:75:e0:6e:5c:5c:e9:c1:89:28:51:b6:8d:a9:d6:
d4:1a:55:d8:1c:84:f9:6f:ad:be:0c:24:06:71:71:
76:38:95:e6:14:4c:7c:7d:68:f9:0e:16:f2:27:87:
09:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:34:81:92:0C:14:54:D2:56:7D:6A:3A:41:AE:1B:36:4A:1E:EF:E6
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/oTSBkgwUVNJWfWo6Qa4bNkoe7-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.66.0/23
78.142.85.0-78.142.89.255
92.63.213.0/24
195.16.244.0/24
Signature Algorithm: sha256WithRSAEncryption
74:09:06:40:7a:1c:0a:9d:40:a6:20:4d:61:13:4a:db:13:80:
97:d7:53:ff:56:1b:99:2f:19:59:89:87:95:ac:87:ad:f8:3d:
47:34:93:b5:73:b3:eb:ec:cd:6b:82:f5:e1:ef:68:4e:94:90:
c0:ff:64:13:e3:cb:ab:a0:5a:54:27:72:57:41:7c:fd:69:5f:
d0:0a:b8:76:ce:34:b2:7e:b0:83:8e:93:65:a9:6e:b2:52:2c:
a7:b0:8f:04:2e:18:c5:cc:92:02:5f:df:65:ff:15:e9:eb:66:
d7:f2:d4:da:02:68:6e:41:78:2f:5b:31:5d:01:5b:5e:12:44:
46:62:df:3c:ce:6e:c8:c5:f4:54:67:8f:a8:8c:cf:87:b3:56:
5b:be:3a:fa:16:75:46:9a:25:38:9b:90:4a:db:87:89:43:c0:
96:96:5f:8b:69:af:cc:0a:44:9e:2f:b5:f7:15:bc:d3:66:45:
67:96:4f:04:50:2e:70:8c:69:37:96:58:af:2c:21:a3:4f:32:
57:7c:11:da:3c:fc:d3:7a:11:d7:e4:ae:c2:15:76:90:49:a5:
19:43:94:4e:03:cf:75:4f:f1:70:06:1f:f8:6e:df:70:3b:06:
c7:2d:af:2d:cc:c8:c2:e8:2f:5a:63:85:9d:c0:8d:bb:25:b8:
19:5a:a6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:37 2025 by rpki-client