Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/7GYB70jSWyydPfyacbfNLAt2rgA.roa
File: 7GYB70jSWyydPfyacbfNLAt2rgA.roa (raw, json)
Hash identifier: l+FeJKAJWrlkhl8dOf/chVSM6g4L9DU3AXmcEo7y9jA=
Subject key identifier: EC:66:01:EF:48:D2:5B:2C:9D:3D:FC:9A:71:B7:CD:2C:0B:76:AE:00
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 018359D899DA6AFC83A63983EDC011CFBA7B
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/7GYB70jSWyydPfyacbfNLAt2rgA.roa
Signing time: Tue 20 Sep 2022 07:41:50 +0000
ROA not before: Tue 20 Sep 2022 07:41:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31629
IP address blocks: 81.255.154.0/23 maxlen: 24
81.255.154.0/24 maxlen: 24
81.255.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:59:d8:99:da:6a:fc:83:a6:39:83:ed:c0:11:cf:ba:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Sep 20 07:41:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec6601ef48d25b2c9d3dfc9a71b7cd2c0b76ae00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ff:61:8f:37:a8:19:00:73:1d:86:4e:ce:ba:
0b:18:71:63:68:af:06:f4:b0:ec:7f:c6:66:4e:3f:
47:b9:dd:09:52:d6:e9:5e:5e:31:c0:fb:3b:1e:91:
c3:d5:32:fe:0d:3b:97:85:28:85:87:2c:ca:cb:62:
2f:bf:97:c6:62:67:a5:09:a3:9a:0a:8f:d3:d9:94:
11:ce:13:70:61:e6:98:5d:24:a9:a8:85:d5:2f:80:
50:93:4a:71:e9:a5:33:4a:7b:6b:84:f2:cf:8c:72:
91:ca:8e:22:65:6b:5a:35:bc:79:71:c7:e3:02:d1:
65:53:d2:08:c6:30:3c:53:8a:3b:9f:da:0b:db:d8:
2f:21:f5:31:96:03:c3:00:03:20:f7:71:6c:06:9d:
6a:62:c0:71:b0:20:8b:9b:38:14:6a:06:62:58:3a:
04:bf:cb:87:fd:6e:6f:c2:4b:08:7c:a3:b6:35:b4:
8e:70:7b:0d:f1:e1:6c:2b:11:9d:be:05:b5:d6:59:
e0:6c:4f:ed:b4:c3:09:0e:4b:c7:32:73:cf:70:d0:
70:fb:1f:4d:25:35:5f:04:27:ec:61:82:85:8a:49:
90:45:d8:75:8d:67:95:e7:a7:02:9c:d4:40:b1:37:
cb:91:1a:31:9e:b0:78:17:0d:f9:a3:a3:ee:60:5c:
ed:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:66:01:EF:48:D2:5B:2C:9D:3D:FC:9A:71:B7:CD:2C:0B:76:AE:00
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/7GYB70jSWyydPfyacbfNLAt2rgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.255.154.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:3d:09:80:37:b1:96:0d:c2:df:a6:60:db:a5:ca:bd:d6:e3:
8e:31:a3:c7:35:e0:03:c5:41:ce:07:9c:c6:b8:f9:57:e5:32:
b2:f3:03:ea:d1:c5:48:30:72:57:f4:c0:f9:04:4b:85:6c:dc:
84:9a:9b:21:77:d7:3b:5d:e0:21:d0:8e:43:1d:78:b0:3e:ce:
34:4d:e1:48:3b:cc:23:e6:b4:8e:4b:c7:51:60:d1:64:48:f1:
ff:09:eb:ab:80:b9:47:40:27:81:d1:77:4e:de:79:44:55:2a:
2e:11:5c:c7:b1:83:09:b4:4f:21:cb:7f:43:ac:69:d3:d0:af:
9b:90:a0:55:56:6e:9b:4b:22:a6:5f:f1:42:f4:91:7f:0e:94:
b1:3c:63:ca:8c:d1:33:5d:26:6d:de:a4:15:c9:a4:f1:af:9c:
4c:27:4c:f7:f8:68:f3:5e:bb:7a:d6:c3:36:98:91:ee:32:38:
71:10:98:38:c3:68:e8:d8:48:be:14:64:35:c3:2c:7f:ab:50:
d1:a3:21:fc:a1:04:3b:48:ba:bc:e8:f7:53:c8:cf:51:47:45:
26:01:d1:1f:29:2a:8e:4f:dc:4c:68:04:6a:59:22:22:30:d6:
68:0d:c3:b8:33:39:fb:0c:c1:73:79:0b:6b:8d:43:f5:de:9c:
35:47:15:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org