Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/mbESjbc3V1JyVzrMsb99UFQFwQ8.roa
File: mbESjbc3V1JyVzrMsb99UFQFwQ8.roa (raw, json)
Hash identifier: s9Qm7iwy9h3R0J9qRm0PDSi/1sCriJO9pdAu0MImMtQ=
Subject key identifier: 99:B1:12:8D:B7:37:57:52:72:57:3A:CC:B1:BF:7D:50:54:05:C1:0F
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 35C468ED
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/mbESjbc3V1JyVzrMsb99UFQFwQ8.roa
Signing time: Tue 05 Jul 2022 01:09:25 +0000
ROA not before: Tue 05 Jul 2022 01:09:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209372
IP address blocks: 78.136.204.0/22 maxlen: 24
78.136.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902064365 (0x35c468ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Jul 5 01:09:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99b1128db737575272573accb1bf7d505405c10f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4d:6a:29:47:79:d6:4f:d7:f3:b8:98:f8:b4:
53:47:2d:30:6c:5a:7f:3f:0e:4f:dd:fa:f3:07:32:
11:82:29:d0:bf:d7:9a:b7:44:8c:7d:c1:2e:c4:fe:
27:b4:cb:ef:74:b8:27:fb:2f:9d:43:14:25:3f:96:
1c:8f:02:a9:63:ef:e3:58:2e:e1:fd:51:b4:3c:e1:
ec:af:34:f4:16:ed:3a:1a:04:9a:50:68:5f:43:b4:
83:77:08:50:07:15:fb:f7:6d:8d:44:13:08:fe:90:
d0:75:2c:ab:8e:87:57:94:a3:f4:81:ab:63:ba:a2:
68:ef:26:2c:13:56:8f:fd:e2:45:c8:9a:ba:5c:d5:
cc:9c:d1:56:7d:66:6b:80:5a:25:bf:12:fb:0e:b8:
3b:33:eb:60:b3:86:8f:a1:c8:53:a4:50:30:bb:fa:
45:25:76:da:68:db:2d:eb:6f:78:76:0a:7c:65:5f:
a0:7d:53:35:95:eb:ad:4b:c0:1a:f3:2d:ab:eb:25:
cc:32:e0:35:16:d7:3e:16:e3:e5:b6:24:c2:a4:c6:
0f:cd:0a:7b:a5:1d:76:3b:71:73:8b:33:4d:49:9b:
6d:35:6e:02:e3:41:2a:20:14:cf:b0:d4:f4:df:7c:
e5:f9:fb:0e:01:5d:ee:28:e7:46:38:31:11:21:da:
e4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B1:12:8D:B7:37:57:52:72:57:3A:CC:B1:BF:7D:50:54:05:C1:0F
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/mbESjbc3V1JyVzrMsb99UFQFwQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.204.0/22
78.136.254.0/24
Signature Algorithm: sha256WithRSAEncryption
40:6b:70:92:2f:1a:df:85:ed:3d:a4:c5:49:6e:6b:ba:f5:a0:
19:17:f6:68:5c:ff:f8:22:c6:2d:a0:15:e3:79:ba:14:c7:30:
e4:7a:e7:03:33:c1:b6:26:94:64:69:1f:01:40:7b:87:12:3e:
c4:b6:2d:6f:f6:b4:c6:3b:bb:5e:84:a9:39:6f:32:3f:2f:60:
90:69:20:51:ec:c8:fd:41:fb:35:1b:58:44:b1:c1:e3:ea:c1:
15:d7:ff:13:fb:23:4f:54:c9:26:55:9b:04:3c:80:d8:99:3d:
46:15:ee:2e:c5:ad:c2:a9:7b:98:9b:c2:8b:ce:64:5a:b4:44:
a8:89:b6:b8:04:46:ce:37:dc:7e:b8:6e:67:36:05:54:14:a8:
96:ac:d4:3b:e1:44:e3:17:6b:9a:a7:7a:6e:11:2b:17:de:81:
cf:d2:fb:47:0e:1d:30:54:43:db:31:e7:29:64:8a:af:29:38:
0f:c4:53:86:34:f5:fe:e9:38:1a:70:f7:a3:3e:0d:5e:c9:1e:
63:e3:50:b9:1b:87:49:e5:a9:80:66:d9:3d:84:89:47:7d:a3:
94:2c:d8:d6:63:a6:09:a7:e4:9c:ab:6d:74:f4:b4:9d:35:21:
17:15:d4:77:ba:f1:71:c4:e0:45:00:e3:7d:4d:01:0e:98:80:
c0:a4:27:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:18 2023 by rpki-client on console-fra.rpki-client.org