Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/3dn6Cph6ztw2MqtqMVRuuXNqqzA.roa
File: 3dn6Cph6ztw2MqtqMVRuuXNqqzA.roa (raw, json)
Hash identifier: oDs4yW9251h+wXEoOvwaF7H5ghf7pkXSCH0hn+0jG1c=
Subject key identifier: DD:D9:FA:0A:98:7A:CE:DC:36:32:AB:6A:31:54:6E:B9:73:6A:AB:30
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17E09657
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/3dn6Cph6ztw2MqtqMVRuuXNqqzA.roa
Signing time: Sat 01 Jan 2022 00:54:39 +0000
ROA not before: Sat 01 Jan 2022 00:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59615
IP address blocks: 78.28.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400594519 (0x17e09657)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddd9fa0a987acedc3632ab6a31546eb9736aab30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8f:dd:59:6b:85:35:df:b2:0f:da:db:77:32:
79:93:c5:d8:00:24:82:81:6f:42:59:2f:e7:17:f3:
7c:7e:82:b9:65:fb:5d:99:19:d6:8f:f7:a5:d7:84:
0d:8c:eb:92:e9:b3:16:4d:b2:54:6e:43:47:6e:6b:
38:84:c9:2e:f1:7e:55:46:b0:af:4b:69:63:38:09:
57:68:ec:c4:ac:6f:71:39:dc:bb:90:48:e7:71:bc:
60:b6:75:ee:35:e2:b5:a5:c6:1f:8a:7c:40:c2:bd:
41:cb:be:87:0a:6d:b3:71:da:ea:8c:98:cc:91:86:
a3:48:77:4a:cf:f3:57:b4:af:af:1f:8c:09:d5:5a:
13:4c:cd:f0:b5:7c:a8:6a:04:d1:53:00:d7:3e:5c:
2c:e3:38:a2:09:d5:e6:dd:f5:43:2e:ba:c5:cb:25:
fe:fc:f0:0c:e0:ee:b4:ad:15:28:a9:cc:36:b3:49:
b2:d5:f4:3f:7a:f6:6e:5c:8d:4f:fe:86:5b:01:36:
d8:b8:45:5a:a4:4c:a5:8d:60:17:23:02:f5:ae:26:
e0:cd:43:02:28:9f:90:80:7f:3b:8f:f4:03:8a:05:
c0:57:11:e4:83:1b:3c:72:80:cf:7d:b0:b9:c3:7e:
4f:0e:00:de:a7:23:08:02:53:80:f8:4d:7a:d1:ef:
da:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D9:FA:0A:98:7A:CE:DC:36:32:AB:6A:31:54:6E:B9:73:6A:AB:30
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/3dn6Cph6ztw2MqtqMVRuuXNqqzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.28.234.0/24
Signature Algorithm: sha256WithRSAEncryption
01:81:05:6b:f4:77:7c:8c:8e:cf:ee:32:cf:d8:a4:9d:d3:b3:
26:bb:b9:c9:b3:cf:86:75:7c:6c:25:e1:ec:75:20:7a:50:1e:
29:fa:a5:a1:b1:b9:b6:83:a4:9b:1e:03:54:c0:01:03:15:25:
41:3b:e8:21:ba:a2:56:12:f5:68:f8:99:37:73:1c:b0:87:4a:
a9:9f:16:59:1d:18:a0:1f:56:ac:98:0f:32:19:9c:7a:b1:d7:
60:7b:3d:43:72:4e:9e:ce:37:b4:c5:a5:97:0a:00:50:b1:93:
8d:b9:57:80:f3:48:d1:0c:53:a4:58:ba:34:14:5e:c3:10:88:
e6:da:18:d1:3b:6b:b6:2b:6d:e4:0a:73:db:83:d1:6c:f4:29:
9d:e2:0e:c1:06:c0:a8:9e:03:2e:f0:ff:ae:0c:a1:8f:99:07:
c4:15:8e:62:da:27:c4:6f:69:7a:e1:d7:ae:e0:fa:3f:b0:89:
22:47:2c:f1:b6:14:39:1e:5d:2e:dc:04:c8:5b:cb:1b:24:a0:
b9:3c:49:26:7c:5e:2c:4d:77:e3:ed:af:25:e0:01:14:a2:2b:
81:e8:39:2e:98:32:72:34:b9:fc:68:0c:d9:ff:b4:9b:5d:6b:
7d:3d:bc:54:2a:08:10:54:bf:e6:be:8a:05:a3:3b:30:bd:5e:
06:d6:f7:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org