Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/1-Sk2KzVuIYfRhlc2Nx2SdJn7ufA.roa
File: 1-Sk2KzVuIYfRhlc2Nx2SdJn7ufA.roa (raw, json)
Hash identifier: zBVV1fJQlheW1Xnc4/SY4E+RX76sOyhAnkueHXLsxNY=
Subject key identifier: F9:29:36:2B:35:6E:21:87:D1:86:57:36:37:1D:92:74:99:FB:B9:F0
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 16725C3D
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/1-Sk2KzVuIYfRhlc2Nx2SdJn7ufA.roa
Signing time: Tue 17 May 2022 03:57:29 +0000
ROA not before: Tue 17 May 2022 03:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61102
IP address blocks: 81.218.219.0/24 maxlen: 24
81.218.109.0/24 maxlen: 24
81.218.235.0/24 maxlen: 24
81.218.238.0/24 maxlen: 24
82.80.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 376593469 (0x16725c3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: May 17 03:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f929362b356e2187d1865736371d927499fbb9f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:00:6b:30:87:66:e4:2f:18:6b:0a:38:4d:a4:
9d:68:09:65:42:93:36:23:d7:d1:ae:9c:e1:b1:d3:
13:e1:ca:fe:9e:bd:aa:b5:4e:8c:23:5e:ca:87:1a:
4d:f0:9a:e4:af:fa:52:b0:80:71:ba:3f:84:94:a6:
d2:77:ec:7b:28:7d:bb:4a:db:d2:ad:73:39:c1:91:
de:3a:3a:02:8d:69:8b:27:f7:72:73:34:fb:93:13:
e1:4b:bb:96:d1:59:ad:96:9a:bd:3d:d3:c2:a8:e0:
4d:32:4a:e1:77:ea:9c:df:20:c4:a8:56:0e:ed:10:
90:5e:d8:c5:7c:6b:59:07:67:47:ca:3c:f3:14:21:
ca:4b:1c:60:28:6a:73:cd:7d:13:cb:a8:00:b2:58:
a8:e9:7d:ab:1a:60:20:93:b4:17:9f:12:39:ca:82:
81:02:5a:66:f5:85:36:67:48:18:95:9b:ab:64:31:
c5:1f:75:8d:a3:f3:58:b0:a8:26:d7:1e:e6:a2:bf:
90:ab:1e:43:2d:d4:ca:6a:64:2e:48:93:4a:45:e3:
52:29:65:ba:fb:cb:3c:00:74:5c:70:20:0c:32:4a:
18:b8:24:15:ba:18:c4:82:fb:b4:b1:71:c4:ac:84:
fe:6d:c8:e8:92:62:a4:88:75:63:20:6f:16:4b:00:
81:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:29:36:2B:35:6E:21:87:D1:86:57:36:37:1D:92:74:99:FB:B9:F0
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/1-Sk2KzVuIYfRhlc2Nx2SdJn7ufA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.218.109.0/24
81.218.219.0/24
81.218.235.0/24
81.218.238.0/24
82.80.245.0/24
Signature Algorithm: sha256WithRSAEncryption
08:12:8d:c9:b7:f2:a1:5c:61:ab:e6:f6:8c:b0:63:88:3e:aa:
5d:fd:d8:e5:48:2c:a7:2a:dd:df:54:65:28:f3:51:25:6d:71:
d1:37:71:f8:35:03:09:5a:56:a9:ab:e9:22:e3:e2:d6:8e:20:
91:5c:1a:48:7e:56:6a:f5:a6:90:97:6e:11:87:8a:fb:0c:4d:
70:f0:db:7a:cf:b9:f1:18:0b:ac:75:cf:d7:74:fa:b0:1e:1d:
8f:54:a7:f5:19:87:8e:1e:01:04:88:e4:eb:28:4a:6a:30:75:
ad:e9:2c:54:9d:ca:87:2b:22:81:2e:d9:9c:76:82:b4:e6:c8:
e5:16:44:31:1e:12:93:8a:dc:08:10:09:0d:6e:7e:a5:6f:db:
7e:6b:3e:78:69:6e:f4:44:a9:61:33:cd:c7:69:c9:e8:8f:f9:
22:b5:fe:77:c2:eb:6d:92:fb:ec:aa:03:e9:1c:9c:22:15:9f:
07:5c:bc:65:f5:f1:40:5c:5f:e4:dc:81:9f:ea:c3:79:6b:e8:
a9:0d:ee:a2:e8:f8:a3:1b:c5:4d:f8:76:3f:5c:9a:c5:e8:50:
f8:49:07:89:81:a4:b7:e6:cf:73:4f:b2:23:15:81:14:d8:9b:
c1:ac:9b:24:d9:9c:4b:0f:ce:a4:0f:54:fb:72:0d:f7:b9:14:
bd:1e:9d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:57 2024 by rpki-client on console-fra.rpki-client.org