Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/2t0L0bcRXDd_nOco3FHsTgawwtg.roa
File: 2t0L0bcRXDd_nOco3FHsTgawwtg.roa (raw, json)
Hash identifier: 4F/SvBdb4Fo/kbgFc/qD87gF0RNty4etIO1qRW7Qwu0=
Subject key identifier: DA:DD:0B:D1:B7:11:5C:37:7F:9C:E7:28:DC:51:EC:4E:06:B0:C2:D8
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 153FDB14
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/2t0L0bcRXDd_nOco3FHsTgawwtg.roa
Signing time: Sat 01 Jan 2022 07:52:49 +0000
ROA not before: Sat 01 Jan 2022 07:52:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22363
IP address blocks: 82.81.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 356506388 (0x153fdb14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: Jan 1 07:52:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dadd0bd1b7115c377f9ce728dc51ec4e06b0c2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3e:eb:1b:17:70:d4:2c:da:52:6e:c6:36:5b:
a5:93:b1:fe:a7:b8:4e:9d:d7:dd:ee:15:8f:4f:f6:
96:45:cd:61:8b:5a:a4:fb:30:a7:37:40:0c:f7:88:
2f:8e:a2:60:9d:0b:20:2d:6a:21:04:d9:de:d0:4d:
f2:3d:74:4e:cf:ad:e6:b2:31:41:0e:34:d8:c9:da:
64:ed:a3:c3:0f:e0:7e:06:25:64:93:be:f2:a9:88:
85:ae:d1:37:78:e0:87:ad:d8:b2:3b:e5:10:e4:cc:
6a:52:90:65:c5:66:93:19:5c:fa:3e:11:1d:22:5d:
27:19:0c:63:9e:74:3c:b4:c6:10:ed:91:4b:ca:a0:
a3:38:6d:29:d4:57:10:fb:2f:cd:25:8c:f3:8e:0c:
7a:4e:18:f7:8a:b1:2d:5e:b0:04:d4:11:fb:60:64:
0a:d4:9c:16:28:eb:f8:db:ec:8c:0f:21:49:00:28:
0a:60:07:97:6c:65:df:5f:71:0c:51:d3:eb:85:41:
47:f3:ee:f3:ff:5c:f7:dc:da:f5:50:09:8d:f9:89:
1c:39:f0:c2:36:f9:1c:9a:c2:46:b3:4d:5e:3c:9a:
6d:27:94:53:6d:28:88:dd:f4:ab:33:21:a2:66:ce:
ac:a0:45:ea:a0:c8:09:60:e4:21:8b:82:7e:66:c7:
34:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:DD:0B:D1:B7:11:5C:37:7F:9C:E7:28:DC:51:EC:4E:06:B0:C2:D8
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/2t0L0bcRXDd_nOco3FHsTgawwtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.81.93.0/24
Signature Algorithm: sha256WithRSAEncryption
50:98:33:14:4e:ba:88:49:ab:5b:b0:f4:b5:34:7a:a0:f2:ec:
d3:8b:22:0c:4e:08:ac:ea:73:5f:c3:b3:ca:1a:98:6f:a4:58:
b1:e5:b6:4b:6d:42:09:63:a0:28:1a:28:3a:80:a7:b6:1c:38:
92:fe:04:45:ee:08:83:de:d7:17:ef:fe:0a:9c:cd:4e:41:f9:
92:ab:cb:3c:5a:c0:0f:4e:5c:f9:cf:c3:c6:13:4d:54:70:4f:
66:52:ff:62:40:ec:f0:19:ef:19:9d:5c:85:89:b4:23:f1:18:
1f:98:e6:fd:c7:7c:bc:bd:73:ed:24:5e:57:13:0c:4a:f2:a5:
e2:43:32:57:33:7f:76:3f:6e:8d:4a:72:2f:4c:b9:96:11:7f:
77:e2:1b:0d:79:5a:c4:23:f6:6b:ce:2b:79:db:7f:d7:3f:00:
c6:38:59:11:ad:3a:97:01:77:5b:5d:9f:61:f5:05:2d:21:30:
a6:91:ef:bf:41:74:60:21:21:b6:da:6b:31:c9:ac:dc:38:4a:
53:a6:f5:94:bf:cd:d2:0a:5f:a7:9e:ae:14:ed:2c:0b:6a:9b:
2a:20:65:6b:44:8e:79:97:d7:b5:3f:d5:bb:b0:e9:f6:81:f5:
8a:72:57:87:1d:1b:4b:fb:d9:60:e9:d4:75:d2:53:f1:c9:a0:
5d:e4:20:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:16 2024 by rpki-client on console-ams.rpki-client.org