Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Jv_20gXONy25h_NxD82WDLIVdlQ.roa
File: Jv_20gXONy25h_NxD82WDLIVdlQ.roa (raw, json)
Hash identifier: LTLa+MgE6qiLoGqShMHzYeSsONKWz70ODQMma7+Wtug=
Subject key identifier: 26:FF:F6:D2:05:CE:37:2D:B9:87:F3:71:0F:CD:96:0C:B2:15:76:54
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 34274BA0
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Jv_20gXONy25h_NxD82WDLIVdlQ.roa
Signing time: Sat 01 Jan 2022 05:54:08 +0000
ROA not before: Sat 01 Jan 2022 05:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 78.136.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 874990496 (0x34274ba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Jan 1 05:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26fff6d205ce372db987f3710fcd960cb2157654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f6:b2:1d:18:55:f1:dd:f8:95:a8:c2:6b:98:
56:95:b3:3d:16:b4:99:29:52:1a:75:a6:24:a8:18:
bd:06:33:42:cc:bb:55:55:f1:54:df:10:89:ef:09:
af:b0:da:15:ab:04:17:12:2f:1f:5b:6a:ac:43:bc:
f7:58:d3:03:7c:dd:f3:45:4b:09:2c:df:b8:ae:07:
9b:8b:7b:5a:5b:ca:7d:36:96:25:0a:e7:46:f7:a0:
b0:ad:7c:92:96:08:bc:c2:03:1e:72:e7:47:9b:47:
43:5a:7e:a5:31:38:4d:65:a0:d8:6c:3c:d0:d6:95:
d8:69:5a:70:9e:f3:a1:b3:49:82:32:e0:d3:98:c7:
8a:a3:2d:bd:73:ac:5e:5c:f1:25:5c:77:48:ad:4c:
e5:cc:64:29:2e:eb:35:01:9c:42:56:f2:71:8f:be:
67:17:e3:c5:c3:dd:d6:12:8e:5c:7b:e5:a3:be:46:
5e:80:0a:e2:7a:7f:03:ec:f2:a6:78:80:18:8b:17:
50:ea:f4:d9:c6:c0:f2:11:87:0a:9d:6f:5e:6e:2d:
71:8b:48:df:ae:d7:7b:be:9e:a5:56:82:0c:c9:3e:
37:d8:7a:a2:56:79:4b:94:b1:bf:79:90:12:53:8f:
7d:a0:cd:bd:b1:e2:79:93:94:a5:b5:fa:d8:99:6a:
75:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:FF:F6:D2:05:CE:37:2D:B9:87:F3:71:0F:CD:96:0C:B2:15:76:54
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Jv_20gXONy25h_NxD82WDLIVdlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.204.0/22
Signature Algorithm: sha256WithRSAEncryption
77:3e:b0:57:0b:12:8e:56:fc:bf:a0:73:40:16:cd:3e:3d:f7:
f3:fe:40:e6:08:1a:de:59:87:76:03:a0:1e:c3:56:f4:fe:fd:
47:51:1d:6c:c3:21:0a:e5:da:f9:77:2a:7e:b1:9a:16:2c:8f:
2e:22:06:92:56:5a:de:d3:7d:8a:6b:27:61:94:01:08:0f:33:
67:bd:1a:2e:3f:1d:66:07:4d:88:87:32:6c:7d:a9:8c:24:86:
80:4d:fc:0c:a3:d5:7b:cd:5d:2c:dd:50:95:19:b9:e8:c9:fe:
a1:91:42:14:b8:ad:fb:79:7f:99:98:73:42:3a:aa:39:3e:8d:
20:15:27:2c:de:5e:a1:5e:24:a1:0d:eb:fd:c4:4f:38:42:05:
09:83:10:f2:cd:72:40:3d:2a:c6:c0:f5:46:5c:74:4e:1c:d3:
5e:5a:f3:e3:08:81:d0:64:ce:9d:49:ee:06:78:7a:50:86:fa:
4a:24:ec:8e:a6:f0:59:63:df:04:b7:1d:9f:a3:66:39:7a:cc:
17:a1:e9:74:3f:6d:f0:6f:6b:76:e6:9d:fe:86:7b:d0:e1:b0:
1d:9a:49:ec:29:1b:e0:13:20:93:a9:d3:dd:49:e9:af:1d:42:
76:81:f5:c3:6f:da:33:38:10:f7:a5:09:98:61:5e:6c:82:e7:
ef:46:e5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:18 2023 by rpki-client on console-fra.rpki-client.org