Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/jj9a7XkdU3j_eCRyZ8dSln4H8RI.roa
File: jj9a7XkdU3j_eCRyZ8dSln4H8RI.roa (raw, json)
Hash identifier: PjvkKE4vgwial73nMxbWZrWsmpOSfO0p0Rw1IILdw3U=
Subject key identifier: 8E:3F:5A:ED:79:1D:53:78:FF:78:24:72:67:C7:52:96:7E:07:F1:12
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 35CA388D
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/jj9a7XkdU3j_eCRyZ8dSln4H8RI.roa
Signing time: Tue 05 Jul 2022 08:38:25 +0000
ROA not before: Tue 05 Jul 2022 08:38:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 78.136.204.0/22 maxlen: 24
78.136.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902445197 (0x35ca388d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Jul 5 08:38:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e3f5aed791d5378ff78247267c752967e07f112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1a:46:94:9b:69:cf:ee:56:36:7c:c0:16:e5:
dc:d7:d5:cd:e6:1d:a5:f7:16:a9:e0:a4:59:a2:0b:
c6:a7:a0:51:59:84:d7:48:75:37:72:15:64:a1:95:
6e:8c:b7:e1:e4:da:4e:57:b0:ba:5e:6d:23:77:a7:
0f:83:84:d1:56:c0:29:7e:60:15:80:4c:b3:f6:b3:
06:4a:4c:c3:21:cc:14:cd:e3:ff:a1:ec:6a:90:a5:
9e:da:98:a6:a0:0d:17:5e:dd:74:49:5f:12:6b:d9:
1d:1b:91:30:25:3d:8e:93:fe:ed:98:52:90:e6:f7:
c7:93:77:d8:0a:cd:90:62:92:2e:c0:5c:ac:c0:ef:
1f:32:c1:7f:3f:2f:b3:78:ed:f9:7c:16:53:7b:46:
de:46:bd:47:fa:3f:42:7b:65:8e:20:5d:18:f4:b5:
7d:f7:b8:5c:77:82:32:73:1e:a1:ed:ac:08:41:d6:
9f:90:3d:0e:cc:ee:ab:45:db:bc:9d:9e:35:82:b7:
16:89:78:63:40:1a:ea:01:5f:05:b3:8d:17:35:fe:
06:78:12:ce:c7:b6:e8:67:e7:54:6c:cb:f2:9a:4d:
e9:37:82:c2:42:ec:c5:cd:ae:a4:53:62:a7:f8:bc:
f6:6d:3f:3c:02:06:8c:8d:c2:24:aa:e6:94:b0:f2:
bf:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:3F:5A:ED:79:1D:53:78:FF:78:24:72:67:C7:52:96:7E:07:F1:12
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/jj9a7XkdU3j_eCRyZ8dSln4H8RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.204.0/22
78.136.254.0/24
Signature Algorithm: sha256WithRSAEncryption
87:5e:48:c1:da:2a:6f:08:74:98:40:97:d8:32:11:f7:7f:40:
ca:13:90:52:d5:67:d8:3b:02:a7:fc:d9:3b:3f:ef:d0:bf:af:
4d:7f:67:81:21:01:27:09:cd:fd:b1:f8:52:3f:80:a6:59:4b:
f0:b9:98:11:30:da:76:4c:3c:36:80:6d:02:3b:3f:2b:87:9f:
99:21:4a:f1:1b:64:aa:7c:00:97:b3:04:a4:0c:77:03:34:4f:
5d:12:e7:d7:73:83:54:6e:da:0b:54:29:92:17:b5:e9:b7:c2:
ce:24:81:e3:eb:7c:66:60:78:11:b8:29:43:5d:2b:0c:c7:14:
39:78:78:81:89:14:7e:0b:d4:5b:96:2e:28:fa:b1:6a:95:65:
37:c9:6e:bf:b4:b7:35:67:47:e6:19:67:34:89:20:ab:c6:0b:
be:7c:7a:75:a5:cc:52:6a:b5:2b:c9:f4:e0:f8:3c:60:a4:df:
42:bc:28:af:4a:14:72:20:1d:36:d1:98:79:9c:06:aa:e1:ad:
e6:65:cb:c9:f6:22:d2:0c:98:c9:8e:c6:d8:c4:40:2c:66:67:
80:9d:22:0c:40:f4:a9:d4:d1:17:84:72:74:f3:d2:a8:cf:b7:
d6:b9:60:c5:37:d4:37:fc:b6:3d:17:c7:0b:91:7b:b0:39:e1:
99:a7:bf:04
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIENco4jTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MjljMjczMDk4YjUyNzY4Y2EwZTQ0YTNhMmMxNmVmZWQ0YTY1Y2EwMB4XDTIyMDcw
NTA4MzgyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGUzZjVhZWQ3OTFk
NTM3OGZmNzgyNDcyNjdjNzUyOTY3ZTA3ZjExMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMEaRpSbac/uVjZ8wBbl3NfVzeYdpfcWqeCkWaILxqegUVmE
10h1N3IVZKGVboy34eTaTlewul5tI3enD4OE0VbAKX5gFYBMs/azBkpMwyHMFM3j
/6HsapClntqYpqANF17ddElfEmvZHRuRMCU9jpP+7ZhSkOb3x5N32ArNkGKSLsBc
rMDvHzLBfz8vs3jt+XwWU3tG3ka9R/o/QntljiBdGPS1ffe4XHeCMnMeoe2sCEHW
n5A9Dszuq0XbvJ2eNYK3Fol4Y0Aa6gFfBbONFzX+BngSzse26GfnVGzL8ppN6TeC
wkLsxc2upFNip/i89m0/PAIGjI3CJKrmlLDyv9UCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSOP1rteR1TeP94JHJnx1KWfgfxEjAfBgNVHSMEGDAWgBRSnCcwmLUnaMoO
RKOiwW7+1KZcoDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Vwd25NSmkxSjJqS0RrU2pvc0Z1X3RTbVhLQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvNmQ5MzU5LWFmZWYtNDUzNS05YzkzLWYzM2QzYmIzNjQ4NC8x
L2pqOWE3WGtkVTNqX2VDUnlaOGRTbG40SDhSSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
NmQ5MzU5LWFmZWYtNDUzNS05YzkzLWYzM2QzYmIzNjQ4NC8xL1Vwd25NSmkxSjJq
S0RrU2pvc0Z1X3RTbVhLQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAk6IzAMEAE6I/jANBgkqhkiG9w0B
AQsFAAOCAQEAh15Iwdoqbwh0mECX2DIR939AyhOQUtVn2DsCp/zZOz/v0L+vTX9n
gSEBJwnN/bH4Uj+ApllL8LmYETDadkw8NoBtAjs/K4efmSFK8RtkqnwAl7MEpAx3
AzRPXRLn13ODVG7aC1Qpkhe16bfCziSB4+t8ZmB4EbgpQ10rDMcUOXh4gYkUfgvU
W5YuKPqxapVlN8luv7S3NWdH5hlnNIkgq8YLvnx6daXMUmq1K8n04Pg8YKTfQrwo
r0oUciAdNtGYeZwGquGt5mXLyfYi0gyYyY7G2MRALGZngJ0iDED0qdTRF4RydPPS
qM+31rlgxTfUN/y2PRfHC5F7sDnhmae/BA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:07 2023 by rpki-client on console-ams.rpki-client.org