Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/2OuLd9sd5u0rc_yl6TEERHIwyoM.roa
File: 2OuLd9sd5u0rc_yl6TEERHIwyoM.roa (raw, json)
Hash identifier: Wk/Q+n9D5MAdlX+JzKsIYqT8JDxujC1SaT1l8o3xX/w=
Subject key identifier: D8:EB:8B:77:DB:1D:E6:ED:2B:73:FC:A5:E9:31:04:44:72:30:CA:83
Certificate issuer: /CN=68383ffa9f20bf021c090262994212d71667ed02
Certificate serial: 10576F09
Authority key identifier: 68:38:3F:FA:9F:20:BF:02:1C:09:02:62:99:42:12:D7:16:67:ED:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDg_-p8gvwIcCQJimUIS1xZn7QI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/2OuLd9sd5u0rc_yl6TEERHIwyoM.roa
Signing time: Sat 01 Jan 2022 09:54:27 +0000
ROA not before: Sat 01 Jan 2022 09:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25048
IP address blocks: 81.90.128.0/20 maxlen: 24
2a00:e20::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274165513 (0x10576f09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68383ffa9f20bf021c090262994212d71667ed02
Validity
Not Before: Jan 1 09:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8eb8b77db1de6ed2b73fca5e93104447230ca83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a6:d9:cd:86:1f:67:19:35:cb:34:6c:71:8a:
62:fe:8e:fc:4f:6a:6a:9e:4f:d6:9c:ce:cf:94:9d:
cb:49:ad:1f:a3:29:50:f6:31:ef:d5:bb:76:2a:47:
82:b7:cd:d3:5a:92:37:92:1d:ee:28:5b:d5:3b:75:
d1:79:fd:d8:67:6a:a8:68:41:e1:f1:ad:bd:0f:28:
64:da:a8:4e:50:2c:38:9c:d4:83:71:50:00:a9:eb:
94:80:71:0c:ed:b7:bc:8b:a9:05:60:bc:e4:91:80:
44:67:42:2e:b8:69:e3:d3:1b:ba:ba:af:51:fd:c3:
66:ff:af:cc:70:b0:fe:1f:dd:52:9d:88:e8:d1:65:
b4:64:9f:4a:e4:95:ee:fa:9d:f7:3b:13:51:ab:84:
3c:56:28:d2:c9:84:42:ff:55:f5:8b:1a:2f:8c:1e:
c4:c9:2b:9a:2e:54:a0:b2:fe:99:3b:7c:bf:1b:be:
6c:c7:da:7a:88:17:cc:95:f4:ff:de:08:a7:51:fd:
13:1d:df:3b:a4:04:2a:46:67:57:22:6e:35:c2:c7:
d3:83:b7:27:4b:62:58:93:0d:19:10:7d:07:59:18:
ce:58:14:bf:c7:43:6a:ad:cd:e7:26:a8:b6:77:7c:
07:cc:e3:71:fa:35:c1:a5:13:59:9a:83:f0:cc:a5:
32:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:EB:8B:77:DB:1D:E6:ED:2B:73:FC:A5:E9:31:04:44:72:30:CA:83
X509v3 Authority Key Identifier:
keyid:68:38:3F:FA:9F:20:BF:02:1C:09:02:62:99:42:12:D7:16:67:ED:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDg_-p8gvwIcCQJimUIS1xZn7QI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/2OuLd9sd5u0rc_yl6TEERHIwyoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/aDg_-p8gvwIcCQJimUIS1xZn7QI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.128.0/20
IPv6:
2a00:e20::/29
Signature Algorithm: sha256WithRSAEncryption
39:ae:20:7d:ae:2a:9a:a2:bc:fe:ce:67:37:3a:cd:05:67:7b:
f5:7d:d8:81:52:ce:db:04:cf:5f:88:b6:7d:03:0d:79:7f:14:
93:ab:88:ce:d4:51:e9:1a:9e:c1:85:66:c9:0a:05:be:d3:f3:
cc:e4:cf:5f:0f:cd:fe:fe:62:46:66:b5:2e:1e:de:ed:60:ee:
2e:fc:d4:ca:8c:7c:00:13:f9:10:2e:f9:c4:50:7b:72:24:a7:
c8:aa:24:49:0f:a2:2b:9e:39:3c:ce:d0:8c:68:e4:b8:ce:10:
98:f7:a5:bd:38:30:cb:35:bb:b4:78:9f:e8:3e:f8:d4:8a:f2:
2e:31:41:56:6a:a7:40:e1:12:f9:2f:60:22:3d:82:a9:1c:01:
2a:85:69:5f:90:c4:63:64:1c:e0:29:14:77:8c:9d:8d:c7:73:
d2:75:fe:46:47:9d:6f:a3:5d:95:3a:94:24:8f:b6:3b:e2:ac:
35:a5:f0:aa:1a:e1:57:aa:69:60:0c:f9:dc:45:7f:98:9a:4c:
c8:0b:e1:ca:7b:93:43:f4:22:04:cf:6b:09:ad:7d:b6:b9:5c:
aa:f9:bf:ad:91:dd:37:f6:25:31:15:c4:ef:1b:4d:dd:05:1f:
ee:e9:e1:c7:21:9a:0b:67:7c:d6:5b:9f:f2:67:66:76:95:ef:
3a:a0:e1:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:28 2024 by rpki-client on console-ams.rpki-client.org