Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/3lHzgLxgdF5CfgQaId1tguPIDBU.roa
File: 3lHzgLxgdF5CfgQaId1tguPIDBU.roa (raw, json)
Hash identifier: OlVyAzSqWmIiRQGYs3xmiVC2dk4TlSgrG+HmDdRoldY=
Subject key identifier: DE:51:F3:80:BC:60:74:5E:42:7E:04:1A:21:DD:6D:82:E3:C8:0C:15
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 018246CEA2C4842BBA2F41B647C13393676C
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/3lHzgLxgdF5CfgQaId1tguPIDBU.roa
Signing time: Thu 28 Jul 2022 21:55:23 +0000
ROA not before: Thu 28 Jul 2022 21:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 78.136.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:46:ce:a2:c4:84:2b:ba:2f:41:b6:47:c1:33:93:67:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Jul 28 21:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de51f380bc60745e427e041a21dd6d82e3c80c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:24:47:f4:83:1d:71:26:32:6f:40:07:8e:de:
9f:ea:52:b2:06:44:38:57:cf:d9:12:0a:b4:0d:92:
30:b5:da:f8:b9:ba:de:75:5d:2e:ff:fe:b3:69:83:
79:27:35:ce:d0:18:8a:83:61:cd:7b:0f:3d:64:78:
89:2b:89:6c:b6:ec:d2:5f:dd:05:01:dd:de:2d:66:
7b:5a:44:4c:d5:10:48:6d:68:76:3c:0a:ce:0b:90:
bb:75:86:8c:cf:f6:41:cf:98:af:85:55:5c:e3:19:
04:80:1c:a4:1c:f8:d4:1b:08:fd:dd:ce:76:4c:34:
0e:3f:d3:f2:b9:21:3e:c9:f1:1a:68:2a:f3:5e:5e:
38:1a:d7:71:62:73:40:71:6c:9e:8c:98:84:43:9e:
3b:3f:2d:7e:88:f1:f6:e7:11:84:58:44:b9:36:45:
c7:75:74:67:f5:15:aa:e4:20:1e:d8:28:f6:ef:83:
95:f4:1b:e7:a4:cf:8d:02:83:19:4a:71:e5:17:f9:
57:ec:98:ed:c5:12:86:ad:a1:39:07:85:73:50:55:
b7:32:4e:07:2e:0f:0f:df:9d:44:dc:2a:3d:27:72:
ba:6b:a9:25:28:f9:c0:50:94:77:9b:cf:cb:90:d6:
c7:dd:18:f4:95:31:13:e0:38:ae:2f:40:b0:82:11:
a9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:51:F3:80:BC:60:74:5E:42:7E:04:1A:21:DD:6D:82:E3:C8:0C:15
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/3lHzgLxgdF5CfgQaId1tguPIDBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.255.0/24
Signature Algorithm: sha256WithRSAEncryption
23:72:1b:f2:e0:76:fa:07:ab:db:01:4e:29:5b:7e:93:8d:05:
22:12:d1:ce:17:b8:66:25:6e:5e:5e:4c:76:33:5a:7f:f5:e4:
af:9a:81:a1:fb:3f:b1:02:3f:8e:a5:97:9d:b5:6c:d5:37:f5:
be:9e:72:e7:4f:16:7c:d0:68:47:ce:ee:5c:ca:4e:95:e7:be:
8f:43:ed:71:b5:92:25:53:aa:c7:21:72:a8:59:d2:af:19:ad:
e9:d3:c2:ae:89:e7:45:75:be:9a:02:88:96:59:3b:c6:de:56:
9e:d5:a0:1a:a6:76:93:96:1a:38:5b:90:1d:c4:fa:c5:65:ad:
c1:44:d4:96:9c:54:bf:79:58:9d:62:16:dc:5c:49:92:48:12:
8e:18:b5:76:38:21:58:96:6b:9d:9b:a3:26:eb:f0:d0:a0:6b:
99:6b:06:59:c5:0b:10:60:84:31:9f:cc:bf:c0:5a:b6:64:52:
83:5b:06:43:c6:e9:9e:74:b1:5f:8d:4d:23:69:2a:1e:f6:d7:
b9:b2:45:74:9e:62:38:b7:8f:b2:f7:9b:60:ec:83:ec:20:f5:
b7:fb:8d:d5:cb:2a:ee:7f:79:f8:bb:bb:8f:3b:c8:cd:5b:b3:
ca:2c:0d:bb:85:a5:19:66:53:8e:5e:25:85:90:9e:1f:12:17:
18:df:66:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:03:36 2025 by rpki-client