Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/8JegVHzG6Dow6bwAo-nOkzvK8ks.roa
File: 8JegVHzG6Dow6bwAo-nOkzvK8ks.roa (raw, json)
Hash identifier: hUAzlrd0C7v9RRDYMENydpeqEtshJbeV0OclYPzXWAI=
Subject key identifier: F0:97:A0:54:7C:C6:E8:3A:30:E9:BC:00:A3:E9:CE:93:3B:CA:F2:4B
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 455B0923
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/8JegVHzG6Dow6bwAo-nOkzvK8ks.roa
Signing time: Wed 09 Mar 2022 14:54:58 +0000
ROA not before: Wed 09 Mar 2022 14:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2300
IP address blocks: 81.52.185.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1163594019 (0x455b0923)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Mar 9 14:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f097a0547cc6e83a30e9bc00a3e9ce933bcaf24b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:84:dd:51:7c:d6:9d:a7:95:55:20:5f:c0:
bc:98:a5:db:e9:21:28:e1:cf:16:a9:60:35:ca:5a:
f3:f2:4f:cc:45:28:c7:1e:6f:87:6c:5c:87:e7:7f:
ba:1c:42:96:c5:c4:be:d9:cb:2d:49:da:97:0f:f9:
28:b0:de:35:15:51:c8:ed:e1:b2:10:0f:51:96:ec:
3c:3b:2c:28:80:3d:91:9f:38:80:e7:28:27:be:85:
27:77:3d:de:f7:9e:6f:6d:54:bc:ad:70:ea:ae:48:
c1:31:5b:9a:96:c9:06:cc:ee:57:ef:9d:67:09:c2:
2c:28:31:5a:73:42:6f:cc:d9:65:36:6f:1e:b6:d7:
42:43:0f:6b:2c:a0:82:ab:91:78:45:b3:12:3d:80:
5a:08:44:95:71:bd:19:59:8c:b4:4d:c8:47:54:82:
0c:da:90:db:53:f2:98:de:e5:aa:49:ff:50:19:74:
98:1c:1b:b2:31:6c:c3:3a:83:65:5d:8f:78:b3:93:
79:0f:7b:fd:41:a9:f5:5c:03:5c:cb:a3:4b:cf:bd:
11:e8:5c:f2:0e:68:73:ed:3a:8d:fe:77:a9:fe:60:
a3:cc:e1:22:d1:53:af:d0:89:41:86:16:53:9e:44:
e6:6f:14:df:eb:73:6a:9c:c2:bb:f0:d1:07:06:8e:
cc:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:97:A0:54:7C:C6:E8:3A:30:E9:BC:00:A3:E9:CE:93:3B:CA:F2:4B
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/8JegVHzG6Dow6bwAo-nOkzvK8ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.52.185.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:f1:37:77:90:5d:a2:7b:12:82:c6:e1:98:07:81:a8:83:60:
f5:a0:d2:e4:b9:6f:74:ab:67:76:b8:32:72:1d:77:15:b6:f8:
5a:39:7e:ff:29:ae:da:96:98:1b:09:71:6f:68:f0:9a:69:19:
50:c6:3c:43:90:6d:f4:5e:01:c2:9f:c2:d9:e7:58:4c:0b:73:
ec:c4:71:8e:26:d1:bc:66:0b:4a:60:21:de:b9:1a:5a:02:97:
f4:73:89:68:6b:55:a8:7c:d2:d4:eb:cb:15:ce:59:06:f6:e1:
72:51:5c:95:37:99:7d:6d:ef:27:07:d5:95:f6:5f:1f:df:d1:
32:ec:7b:5a:22:89:6a:f7:4b:78:72:22:91:0a:d8:a9:6b:e2:
b5:01:35:f2:8c:c7:7a:62:8b:6e:7c:2d:7b:44:cc:d9:12:85:
0c:5b:1a:67:02:c9:bb:30:6f:a7:84:25:62:2f:b1:d4:e1:07:
57:f3:0b:f7:dc:72:3b:48:3a:a8:a6:58:4f:74:f9:c3:d9:0d:
ac:cc:0e:87:25:36:e8:6a:a2:58:6c:cb:39:f4:89:90:d1:61:
22:ac:bc:b0:73:cd:05:e6:93:8f:5c:2c:31:cc:c2:ba:d9:5b:
cb:a8:0a:6e:ed:09:1b:ef:70:bb:46:f4:6a:9e:d5:fb:04:3e:
10:2c:58:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org