Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/5VyHo5PcerN4mlAB1RkPpy5DxnA.roa
File: 5VyHo5PcerN4mlAB1RkPpy5DxnA.roa (raw, json)
Hash identifier: x4Bu6ZoXP0Ry0E2khQsUtnm+di267QwjwKAc7iVxOFA=
Subject key identifier: E5:5C:87:A3:93:DC:7A:B3:78:9A:50:01:D5:19:0F:A7:2E:43:C6:70
Certificate issuer: /CN=8a26f476d608625ad1fe06e52b974a9f66f0141a
Certificate serial: 10F58D08
Authority key identifier: 8A:26:F4:76:D6:08:62:5A:D1:FE:06:E5:2B:97:4A:9F:66:F0:14:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iib0dtYIYlrR_gblK5dKn2bwFBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/5VyHo5PcerN4mlAB1RkPpy5DxnA.roa
Signing time: Sat 01 Jan 2022 10:54:46 +0000
ROA not before: Sat 01 Jan 2022 10:54:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31651
IP address blocks: 81.88.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284527880 (0x10f58d08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a26f476d608625ad1fe06e52b974a9f66f0141a
Validity
Not Before: Jan 1 10:54:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e55c87a393dc7ab3789a5001d5190fa72e43c670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:60:6d:00:6b:fd:12:fe:d5:4f:b1:b3:82:7f:
b1:da:a0:06:ca:1f:81:54:c1:15:c2:07:20:4f:9b:
04:b1:fd:b3:a9:aa:c8:57:b5:fe:1a:e8:63:5b:09:
2d:f3:cd:c9:87:cc:54:a9:cd:40:f3:ff:53:f1:f6:
bd:c3:f2:b3:75:8c:04:f4:ac:68:01:4e:67:39:91:
9f:ed:9a:35:de:d7:d2:87:b1:fc:e8:0f:56:34:2a:
31:21:14:10:b3:7c:a9:ae:e0:c8:74:10:5f:2c:7d:
9c:02:14:14:74:d4:d1:da:41:4f:5d:1c:b6:82:7a:
15:1d:a9:47:14:be:1a:e7:0b:da:a5:13:af:4d:cd:
ab:0e:1f:5f:02:78:fe:81:3f:13:3b:b3:51:70:33:
12:1f:f2:7c:33:46:50:35:e8:ba:45:c8:6d:ca:e2:
eb:21:80:ef:b3:33:e3:30:37:b7:ba:f3:62:2a:3a:
38:a7:83:88:8e:48:3e:75:64:b8:20:7f:ef:23:80:
0e:e7:5c:63:00:9b:b5:9c:66:8d:b0:82:44:0b:10:
2e:5b:db:86:e3:78:77:fe:bf:e4:b4:64:39:b1:68:
b8:47:0b:fd:0c:37:f8:8e:82:d9:a0:8e:dd:d0:a5:
ae:ab:68:10:cf:c2:fd:5d:85:1f:91:01:96:50:40:
bf:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5C:87:A3:93:DC:7A:B3:78:9A:50:01:D5:19:0F:A7:2E:43:C6:70
X509v3 Authority Key Identifier:
keyid:8A:26:F4:76:D6:08:62:5A:D1:FE:06:E5:2B:97:4A:9F:66:F0:14:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iib0dtYIYlrR_gblK5dKn2bwFBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/5VyHo5PcerN4mlAB1RkPpy5DxnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/iib0dtYIYlrR_gblK5dKn2bwFBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.88.108.0/22
Signature Algorithm: sha256WithRSAEncryption
08:e8:f8:c7:0d:cc:28:6a:a5:ea:41:ad:bc:5a:7b:4c:4a:94:
19:07:e8:18:48:23:c3:c7:9e:30:e7:5c:75:c8:b7:0a:3d:9c:
f6:68:1c:7b:80:e0:9e:52:8c:7c:5d:96:38:91:e4:f2:64:a0:
16:6c:5c:8d:f6:01:f6:0c:17:83:f2:34:9f:27:75:c4:d1:6a:
2f:6e:88:9d:a4:28:91:38:75:6b:11:b3:0c:51:4f:83:6a:75:
1e:2e:e7:91:28:46:a6:42:7b:15:f1:6f:64:d7:06:a3:38:8e:
4f:36:cc:c3:79:cd:03:47:b1:5b:57:1c:d7:26:7c:10:49:28:
e0:65:b4:21:20:4f:7d:d0:85:c8:65:30:74:50:0f:96:e1:cd:
58:16:02:80:59:3a:fe:32:52:1b:d3:4d:97:15:5e:05:ba:0d:
cc:9f:03:fb:45:68:52:4d:8f:53:2e:86:d1:6e:2c:eb:47:3e:
a8:4b:5c:0d:0c:ac:1a:27:ba:4e:09:bc:47:85:b5:d7:99:0d:
89:ec:e3:f9:e7:94:a4:fd:0b:51:d0:88:0b:e7:85:36:3a:90:
45:3f:4f:72:d1:4b:f5:7a:93:83:6b:18:16:a6:68:d9:64:ec:
40:79:fc:9f:25:c9:d4:48:fe:3c:58:36:56:b0:ba:a7:71:b7:
c6:f6:de:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:34 2024 by rpki-client on console-ams.rpki-client.org