Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Zj4DD8x-EDm3VQa-mlip6G6QqLY.roa
File: Zj4DD8x-EDm3VQa-mlip6G6QqLY.roa (raw, json)
Hash identifier: tHCwMalGRL35FV65sYauTXasGMx4BmFXE2bdbue2rNw=
Subject key identifier: 66:3E:03:0F:CC:7E:10:39:B7:55:06:BE:9A:58:A9:E8:6E:90:A8:B6
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 35C3A472
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Zj4DD8x-EDm3VQa-mlip6G6QqLY.roa
Signing time: Tue 05 Jul 2022 01:09:25 +0000
ROA not before: Tue 05 Jul 2022 01:09:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 78.136.204.0/22 maxlen: 24
78.136.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902014066 (0x35c3a472)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Jul 5 01:09:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=663e030fcc7e1039b75506be9a58a9e86e90a8b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:84:64:54:7d:a2:45:5d:28:1f:ee:4a:4e:fb:
db:ce:91:42:ac:19:cd:62:34:43:53:6d:e6:12:72:
24:9b:fd:78:72:13:24:a8:b9:06:66:cc:d3:78:bf:
52:68:2e:e9:ea:59:4a:37:b3:1a:3f:68:45:7c:b7:
99:94:0b:2f:a1:85:92:b0:20:87:ad:69:9a:05:de:
ca:86:dc:7c:fe:e5:a2:16:69:da:21:d7:f0:7c:df:
f9:92:f4:da:50:90:2d:d0:57:29:a9:4d:d1:1e:14:
92:4e:f0:19:a1:13:d6:2c:71:60:2c:7e:f6:8a:ae:
e4:85:5f:c9:73:0f:7a:4c:57:2f:01:d3:b0:3c:53:
52:85:c1:fe:b7:27:7a:0a:6d:b3:e0:18:de:4e:6d:
4c:9f:42:66:93:99:d4:79:33:a9:2b:62:3b:18:55:
91:a4:0b:7a:b0:2a:f5:9d:cc:63:64:40:fe:e7:11:
36:e0:61:1c:e6:02:14:7a:fc:d8:77:3d:df:f2:fc:
1a:92:c1:bc:f9:50:01:c7:74:e9:f2:c7:0e:9d:f5:
64:12:5a:ae:94:cf:e8:22:c3:c4:88:99:9d:81:e2:
1e:7b:95:7b:1f:17:b4:57:85:51:a8:74:91:1c:39:
25:85:28:f5:a2:42:87:49:cb:3f:9d:de:fa:ed:f5:
79:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:3E:03:0F:CC:7E:10:39:B7:55:06:BE:9A:58:A9:E8:6E:90:A8:B6
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/Zj4DD8x-EDm3VQa-mlip6G6QqLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.204.0/22
78.136.254.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:d3:1d:b2:f4:86:31:0a:a2:74:f7:46:d0:9a:56:27:ff:c6:
2f:38:10:eb:15:f6:e5:93:10:b9:20:6e:1b:dc:e2:bf:3b:df:
ef:b6:6c:b2:a8:b3:56:8f:bb:d2:b7:7a:11:a0:d8:b6:c7:25:
91:8f:af:7b:94:ee:9b:fa:93:15:36:01:a4:4d:ac:59:fd:3d:
86:c8:de:61:6d:cb:f8:52:eb:c2:1f:f8:19:77:77:21:14:40:
b4:a1:b7:0b:64:1f:6a:7c:07:bb:18:2d:12:45:29:6a:9f:33:
aa:fb:cb:5d:d1:df:3d:10:0d:b7:70:a7:36:2a:f5:73:e7:14:
ac:37:9b:3f:65:0b:cd:b7:6f:ef:97:44:92:c3:b1:a3:92:11:
b2:10:9f:9b:27:9f:ad:2c:28:05:ac:1c:88:2d:a8:80:61:d8:
50:04:f1:c3:b8:73:80:56:65:49:fe:d4:d0:fb:94:6c:ce:d2:
ac:e2:2b:a0:76:62:4b:4f:71:a7:30:c4:73:8a:fb:c1:66:7f:
bb:1c:80:9c:d4:b9:61:4f:c4:60:9b:5d:ce:f9:27:47:88:23:
34:4b:3f:15:55:fd:19:c4:29:66:44:b4:f7:01:db:98:7c:e7:
e6:41:ef:34:b1:e1:29:ed:e3:76:e3:ff:3e:df:69:eb:ce:e8:
7f:11:b1:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:07 2023 by rpki-client on console-ams.rpki-client.org