Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/3rwClK6oOaQO74Qh6sGb7gErltY.roa
File: 3rwClK6oOaQO74Qh6sGb7gErltY.roa (raw, json)
Hash identifier: y9L7orXVustsY40x5LH1y2E7ku5FTa1p0kKrbbFnj+k=
Subject key identifier: DE:BC:02:94:AE:A8:39:A4:0E:EF:84:21:EA:C1:9B:EE:01:2B:96:D6
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 4468976E
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/3rwClK6oOaQO74Qh6sGb7gErltY.roa
Signing time: Sat 01 Jan 2022 03:58:14 +0000
ROA not before: Sat 01 Jan 2022 03:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2300
IP address blocks: 81.52.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1147705198 (0x4468976e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=debc0294aea839a40eef8421eac19bee012b96d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2f:71:40:bb:b6:c2:f3:2f:d6:54:e7:de:cb:
a8:7c:c1:7c:c1:f6:49:11:1a:86:0f:81:56:48:83:
16:f9:71:30:ac:ae:98:35:36:8d:0f:29:b5:24:80:
1e:dd:7b:38:89:97:94:7f:fc:05:66:d0:bc:b3:0b:
9f:58:9b:a9:58:7c:c4:59:bc:c3:85:f4:34:01:0b:
4f:a8:e8:86:03:9c:b6:d3:39:0f:34:06:92:e6:57:
92:ba:ec:2a:7b:ab:03:db:bb:ad:d8:b0:73:dc:84:
20:39:cb:30:58:9b:9e:c2:12:94:24:ee:48:5d:2a:
3d:be:84:5c:8c:5e:50:89:aa:c8:29:b5:e2:0f:0c:
d2:2e:d0:c0:15:13:c3:ba:84:76:c7:94:b6:a8:ed:
8e:4d:a3:61:4b:a6:33:ad:11:b2:a8:e4:2f:3c:55:
5a:ec:0d:22:3f:7e:e3:4a:da:de:71:d1:1f:6c:35:
2c:67:6e:04:8d:bf:15:61:9f:88:e4:df:8e:79:c4:
a6:63:80:88:a7:a9:d9:f3:bf:95:57:4d:d0:bc:c2:
89:49:32:2b:7c:36:e5:2b:1c:69:84:28:f1:2a:85:
70:da:9a:80:ee:82:4b:4c:8c:b7:3a:7e:75:c2:89:
26:c4:7e:fc:05:e5:6f:73:85:0d:28:e6:99:3a:85:
2e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BC:02:94:AE:A8:39:A4:0E:EF:84:21:EA:C1:9B:EE:01:2B:96:D6
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/3rwClK6oOaQO74Qh6sGb7gErltY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.52.185.0/24
Signature Algorithm: sha256WithRSAEncryption
36:39:84:7e:3c:d1:d5:7d:92:b3:3f:0f:eb:f7:5e:99:03:33:
28:72:cd:ee:e9:c4:15:e5:f8:ea:db:67:e0:44:cc:39:7f:42:
9a:8f:61:8f:d9:ad:9d:87:b8:8f:4c:7b:d8:fc:9c:2b:e7:c6:
e1:2c:1b:97:d4:29:0d:df:a8:cd:0b:24:e5:b2:ff:45:87:a5:
f0:d1:fe:dc:c6:2d:10:cc:58:b3:5c:2f:44:b9:37:00:88:5b:
ec:4d:85:b8:7b:7f:22:4f:64:d1:a4:33:f8:51:f1:08:c3:b1:
49:ba:49:91:a0:97:40:ae:8e:12:e0:c4:f4:0f:6d:e2:6b:b7:
13:76:84:ed:04:60:82:f4:3e:b6:b0:65:85:c5:8b:cd:c8:4f:
05:a6:e6:cf:dd:ef:57:2b:0f:91:d9:78:27:7d:11:48:42:96:
27:bf:9a:96:b8:65:ce:95:5d:cc:70:b9:80:fc:b5:d6:f0:9a:
e4:2b:17:d2:05:79:bf:b2:69:c1:60:00:3e:82:5c:44:68:57:
c0:22:c2:03:8f:30:3e:db:f0:3a:1b:01:d8:21:ad:80:08:57:
78:2f:fe:0a:73:d6:80:cf:31:cf:db:70:32:fc:ee:3b:71:76:
57:d7:b6:6f:3c:89:5d:fa:78:d0:86:f6:de:17:96:5c:7a:49:
1a:3c:9e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org