Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/olEW5un-0qV91rlGEaH-KsIbVVk.roa
File: olEW5un-0qV91rlGEaH-KsIbVVk.roa (raw, json)
Hash identifier: zf8TbSGi+mhARuhheNPNF//Quwr9XPG3mLmMRhkI5qg=
Subject key identifier: A2:51:16:E6:E9:FE:D2:A5:7D:D6:B9:46:11:A1:FE:2A:C2:1B:55:59
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 35C7661D
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/olEW5un-0qV91rlGEaH-KsIbVVk.roa
Signing time: Tue 05 Jul 2022 06:24:25 +0000
ROA not before: Tue 05 Jul 2022 06:24:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209372
IP address blocks: 78.136.204.0/24 maxlen: 24
78.136.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902260253 (0x35c7661d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Jul 5 06:24:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a25116e6e9fed2a57dd6b94611a1fe2ac21b5559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0c:19:7a:42:02:72:ea:e7:9c:a5:12:3d:44:
57:64:c8:6c:d7:dd:04:ce:f1:e6:d7:c1:2f:5d:53:
94:59:ba:5e:d4:c8:9a:ba:b5:8c:48:1c:98:1b:f6:
ec:77:24:1a:6d:9c:d9:8e:20:45:3e:a0:48:d3:d1:
09:2d:9c:92:26:34:8f:fa:b3:57:c0:d8:a4:bb:6f:
46:e6:21:8c:2c:e5:73:ef:f8:b9:17:d2:95:35:99:
33:e1:b6:38:53:15:cc:fd:00:1f:0e:4b:9e:29:d6:
cf:60:ed:61:f1:2a:e1:dc:e4:d4:04:5a:e8:c9:72:
a8:dd:3a:92:c6:c1:9e:9c:b4:e8:a7:58:50:79:cd:
1b:dd:95:cd:c9:86:33:4e:dd:ee:0f:39:df:13:69:
50:c8:f6:cb:ba:ab:e5:2a:bf:20:40:22:dd:27:ce:
9d:53:5a:cb:ba:4d:f0:b3:10:e0:94:b9:1c:7c:96:
b9:da:89:b1:e7:71:c4:50:94:03:ea:58:a6:cb:98:
e0:ae:84:db:ac:52:93:0f:c3:0f:3b:35:c6:a8:ae:
ca:38:61:53:ef:d0:3f:a7:34:68:22:be:c8:48:5c:
7d:52:47:a5:9d:ad:76:9b:d7:4b:2c:ca:04:59:90:
55:56:c5:38:a9:34:15:87:37:6c:a7:47:58:e0:61:
8b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:51:16:E6:E9:FE:D2:A5:7D:D6:B9:46:11:A1:FE:2A:C2:1B:55:59
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/olEW5un-0qV91rlGEaH-KsIbVVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.204.0/24
78.136.254.0/24
Signature Algorithm: sha256WithRSAEncryption
19:dc:b3:c5:d0:29:e9:67:eb:2d:19:a1:d7:13:db:f6:9a:3b:
23:df:f7:38:d0:cc:46:8d:ac:dc:cd:32:ec:16:8c:37:58:bb:
be:a9:ee:88:db:e6:b2:81:7f:28:95:9f:4b:d0:2a:13:8a:ed:
aa:c4:27:ee:59:cd:a5:b7:b5:e1:61:4c:e6:4a:97:a7:4d:9c:
30:68:45:a7:7c:b3:49:94:39:6f:f5:dc:17:13:ec:4c:58:aa:
fa:14:8b:36:a8:d3:54:1b:be:d6:ba:cb:99:68:74:ef:43:bb:
24:50:4a:3a:63:35:1d:6e:b0:89:62:f4:2f:eb:48:5f:20:34:
6b:94:ed:ff:ee:89:bd:1a:48:0b:76:7e:b8:42:64:59:68:6a:
cf:7d:45:dc:9f:70:3e:1e:78:73:31:01:b5:ad:52:5f:23:b4:
3d:f6:3f:ac:88:ef:37:05:a3:77:63:93:a8:cd:3b:95:c2:53:
86:2f:d8:3c:a7:26:a3:c1:24:d9:75:db:87:4c:25:3c:ac:7a:
21:2a:68:a6:ed:01:66:e6:da:5c:89:77:37:da:da:0b:a4:ca:
b3:bf:94:71:7b:c0:b7:e7:16:b1:20:28:4a:d5:5b:f2:a2:c8:
7b:39:a9:5e:f9:5e:c8:fa:08:1e:f6:3e:4a:93:67:36:80:66:
8b:d7:7e:69
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIENcdmHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MjljMjczMDk4YjUyNzY4Y2EwZTQ0YTNhMmMxNmVmZWQ0YTY1Y2EwMB4XDTIyMDcw
NTA2MjQyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTI1MTE2ZTZlOWZl
ZDJhNTdkZDZiOTQ2MTFhMWZlMmFjMjFiNTU1OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIcMGXpCAnLq55ylEj1EV2TIbNfdBM7x5tfBL11TlFm6XtTI
mrq1jEgcmBv27HckGm2c2Y4gRT6gSNPRCS2ckiY0j/qzV8DYpLtvRuYhjCzlc+/4
uRfSlTWZM+G2OFMVzP0AHw5LninWz2DtYfEq4dzk1ARa6MlyqN06ksbBnpy06KdY
UHnNG92VzcmGM07d7g853xNpUMj2y7qr5Sq/IEAi3SfOnVNay7pN8LMQ4JS5HHyW
udqJsedxxFCUA+pYpsuY4K6E26xSkw/DDzs1xqiuyjhhU+/QP6c0aCK+yEhcfVJH
pZ2tdpvXSyzKBFmQVVbFOKk0FYc3bKdHWOBhi5cCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSiURbm6f7SpX3WuUYRof4qwhtVWTAfBgNVHSMEGDAWgBRSnCcwmLUnaMoO
RKOiwW7+1KZcoDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Vwd25NSmkxSjJqS0RrU2pvc0Z1X3RTbVhLQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGUvNmQ5MzU5LWFmZWYtNDUzNS05YzkzLWYzM2QzYmIzNjQ4NC8x
L29sRVc1dW4tMHFWOTFybEdFYUgtS3NJYlZWay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGUv
NmQ5MzU5LWFmZWYtNDUzNS05YzkzLWYzM2QzYmIzNjQ4NC8xL1Vwd25NSmkxSjJq
S0RrU2pvc0Z1X3RTbVhLQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAE6IzAMEAE6I/jANBgkqhkiG9w0B
AQsFAAOCAQEAGdyzxdAp6WfrLRmh1xPb9po7I9/3ONDMRo2s3M0y7BaMN1i7vqnu
iNvmsoF/KJWfS9AqE4rtqsQn7lnNpbe14WFM5kqXp02cMGhFp3yzSZQ5b/XcFxPs
TFiq+hSLNqjTVBu+1rrLmWh070O7JFBKOmM1HW6wiWL0L+tIXyA0a5Tt/+6JvRpI
C3Z+uEJkWWhqz31F3J9wPh54czEBta1SXyO0PfY/rIjvNwWjd2OTqM07lcJThi/Y
PKcmo8Ek2XXbh0wlPKx6ISpopu0BZubaXIl3N9raC6TKs7+UcXvAt+cWsSAoStVb
8qLIezmpXvleyPoIHvY+SpNnNoBmi9d+aQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:07 2023 by rpki-client on console-ams.rpki-client.org