Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/17ac67-2d5f-439a-8ff9-cacfb67bff9d/1/3JWBqMew5F4RlTbW_ZhuIpA1U0Q.roa
File: 3JWBqMew5F4RlTbW_ZhuIpA1U0Q.roa (raw, json)
Hash identifier: qs/ukvi1jJq21WF7XK720utsK39ExtlralJ2VFB+cCc=
Subject key identifier: DC:95:81:A8:C7:B0:E4:5E:11:95:36:D6:FD:98:6E:22:90:35:53:44
Certificate issuer: /CN=521d2c07c28ac7b726a825d3693afe2397209de6
Certificate serial: 152C0FBC
Authority key identifier: 52:1D:2C:07:C2:8A:C7:B7:26:A8:25:D3:69:3A:FE:23:97:20:9D:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uh0sB8KKx7cmqCXTaTr-I5cgneY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/17ac67-2d5f-439a-8ff9-cacfb67bff9d/1/3JWBqMew5F4RlTbW_ZhuIpA1U0Q.roa
Signing time: Sat 01 Jan 2022 12:59:46 +0000
ROA not before: Sat 01 Jan 2022 12:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25100
IP address blocks: 81.5.64.0/18 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355209148 (0x152c0fbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521d2c07c28ac7b726a825d3693afe2397209de6
Validity
Not Before: Jan 1 12:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc9581a8c7b0e45e119536d6fd986e2290355344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:25:01:bf:a7:40:d1:a0:c5:a3:8f:2d:9d:f0:
e5:8b:77:5a:e4:d7:f8:65:28:51:e0:42:91:ca:fe:
ef:12:89:42:48:8a:48:57:09:16:ac:8d:87:ff:d0:
9f:53:e8:af:c7:ba:a4:7c:48:e8:ad:ff:e1:b0:7f:
37:d3:89:b1:24:be:d9:d1:6d:8d:76:c4:ad:43:4b:
2c:f5:5c:07:48:a3:3d:30:b9:5f:0b:88:84:15:55:
59:7f:91:d0:a1:a8:00:35:1d:e8:e2:62:f4:ba:54:
14:5f:bb:c5:26:49:18:7b:12:52:8f:cc:bd:1d:9d:
eb:30:f3:a7:a6:2b:76:72:0f:7a:c1:d3:70:56:ca:
66:54:27:fe:ba:dd:14:ee:76:c6:ef:41:2d:30:aa:
51:ab:f4:1f:ed:e8:9a:c0:80:a2:bf:10:1d:44:b2:
9d:d1:cf:8a:82:b7:94:0c:a6:dd:e5:c4:b4:70:16:
f7:d7:dc:e0:08:22:c7:75:97:54:10:91:9b:91:20:
b0:f9:e5:68:60:cd:a8:7a:82:1b:b3:d2:17:e1:bc:
fb:14:ad:6e:27:53:23:d3:be:9b:d7:82:cc:4d:ac:
e1:99:91:c0:0c:ef:08:4c:7a:71:59:5d:4a:54:29:
61:73:ab:e2:96:02:79:05:f7:b2:95:69:a8:3b:5f:
55:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:95:81:A8:C7:B0:E4:5E:11:95:36:D6:FD:98:6E:22:90:35:53:44
X509v3 Authority Key Identifier:
keyid:52:1D:2C:07:C2:8A:C7:B7:26:A8:25:D3:69:3A:FE:23:97:20:9D:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uh0sB8KKx7cmqCXTaTr-I5cgneY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/17ac67-2d5f-439a-8ff9-cacfb67bff9d/1/3JWBqMew5F4RlTbW_ZhuIpA1U0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/17ac67-2d5f-439a-8ff9-cacfb67bff9d/1/Uh0sB8KKx7cmqCXTaTr-I5cgneY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.5.64.0/18
Signature Algorithm: sha256WithRSAEncryption
61:c5:07:93:df:13:e4:5f:ba:4a:4c:20:cf:53:94:9a:dc:a9:
8f:1a:ce:c9:6f:f8:41:8f:0e:14:24:3c:fa:1b:22:e5:aa:c3:
2e:37:2c:a9:9c:4c:96:fd:da:be:e7:a2:a3:4d:97:3c:a1:8a:
03:3b:82:06:45:40:b0:58:7b:08:01:20:63:34:a4:71:68:b3:
5c:7c:3a:b2:18:b3:f1:8a:cd:06:48:53:5c:8a:3c:95:43:63:
34:e7:8c:24:f5:46:4a:ee:9a:0e:9d:63:9a:f7:c4:d3:da:d1:
e8:58:55:dc:47:c4:6a:25:df:10:36:3c:26:f2:bf:33:dc:ab:
b6:0a:fb:ba:e3:11:63:80:fc:0a:80:09:02:30:08:c1:8f:bf:
3a:8a:90:20:c3:c1:5c:89:87:f3:ef:ce:c7:38:af:6b:4e:bf:
9a:6b:68:65:08:cd:99:0c:d5:b9:be:5e:ce:3f:b8:70:d9:c2:
1c:06:56:71:65:7a:a2:55:09:cd:74:ed:ca:61:3e:0e:89:f7:
ce:5d:61:fa:7b:db:25:6c:1e:0b:b7:a7:6f:18:df:7e:a2:b9:
36:08:38:97:97:c4:eb:fc:51:1d:b5:42:2e:4d:9a:d1:52:a2:
2b:24:a9:10:58:cd:77:34:e3:b8:86:25:21:aa:4a:ed:2b:7e:
3c:82:0b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:59 2024 by rpki-client on console-fra.rpki-client.org