Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/1-bO150MUc1lq7nSmt-d_66YCDZE.roa
File: 1-bO150MUc1lq7nSmt-d_66YCDZE.roa (raw, json)
Hash identifier: XpeVG3OJMfoawNcAyvUeGnU0GTYs9dPv01VUAZGaF6Y=
Subject key identifier: F9:B3:B5:E7:43:14:73:59:6A:EE:74:A6:B7:E7:7F:EB:A6:02:0D:91
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0181D750CAA0F4FA7BDE60FC8ED971325171
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/1-bO150MUc1lq7nSmt-d_66YCDZE.roa
Signing time: Thu 07 Jul 2022 06:20:05 +0000
ROA not before: Thu 07 Jul 2022 06:20:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 81.22.136.0/22 maxlen: 22
81.22.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:50:ca:a0:f4:fa:7b:de:60:fc:8e:d9:71:32:51:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jul 7 06:20:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9b3b5e7431473596aee74a6b7e77feba6020d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c2:fb:6c:d2:03:a3:ec:0b:6b:23:c9:07:b1:
e4:62:19:2e:39:f7:56:59:2d:b9:d5:ec:68:49:9a:
9e:2e:3e:fe:d9:20:1e:9b:e3:d3:b3:21:49:f9:bc:
40:65:73:9b:4c:44:27:af:14:12:b0:87:ed:6d:6b:
f0:ef:8c:0d:57:0b:96:8d:80:b0:c3:2c:49:41:9d:
11:f4:cd:10:eb:6f:1b:0d:3b:4f:03:73:c1:6e:36:
65:33:19:ae:83:57:47:c8:98:3f:ed:2a:27:c3:f3:
4e:7a:16:8b:dc:2c:7d:4f:f7:16:4a:82:54:be:04:
0d:cb:82:29:fe:4c:2a:ff:76:f6:48:57:46:12:d9:
3c:a2:d9:d4:ab:39:5a:07:27:08:67:9c:ba:79:f2:
11:2e:72:c9:a8:45:d9:6a:a0:94:23:41:57:3b:e4:
63:0a:9b:71:d1:0c:a3:5e:4f:63:fc:97:0c:eb:ee:
df:0a:dc:42:a0:46:68:dd:3c:12:54:cc:e9:76:fe:
d7:54:33:30:de:25:8b:e0:27:0e:14:bb:18:ea:57:
8f:c5:82:06:dd:b2:4d:34:b4:40:70:5a:27:c6:52:
a4:62:a1:f3:6f:1f:f2:57:94:90:81:b8:50:2f:b1:
9c:31:05:5e:19:ee:c4:1d:e3:47:c8:6d:96:14:5a:
be:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:B3:B5:E7:43:14:73:59:6A:EE:74:A6:B7:E7:7F:EB:A6:02:0D:91
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/1-bO150MUc1lq7nSmt-d_66YCDZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.136.0/21
Signature Algorithm: sha256WithRSAEncryption
5e:35:e3:a4:33:25:42:26:bb:20:80:3b:17:a6:31:99:a0:03:
92:1a:16:d6:d6:0e:d3:1a:ea:90:65:c8:40:51:eb:02:61:e7:
69:de:08:e1:50:19:b4:c5:f6:a7:95:bc:69:79:22:41:7e:c8:
fc:6e:12:b8:2c:54:25:46:6c:95:57:1e:75:39:51:cb:06:8e:
05:1f:5d:82:fe:9f:a6:21:32:e9:3c:23:0d:d8:43:f7:67:3e:
21:ae:1c:ad:91:e9:95:3b:a8:de:3b:91:23:38:de:eb:60:d2:
3e:c9:3c:d2:bf:1a:bd:ab:8e:01:47:d5:e4:a2:8e:ba:c8:d6:
87:13:51:47:56:c0:bc:d2:d9:88:a7:05:6d:96:67:7e:0a:e9:
79:49:d1:6a:37:1d:c3:3d:97:bc:22:71:83:ef:18:33:ae:f2:
01:49:71:22:b7:64:d6:14:74:e2:5e:28:c5:ef:2b:99:f8:b6:
36:6b:2b:ee:ad:ac:20:02:ee:e0:87:ef:40:dd:f5:e6:fe:2d:
6b:77:84:db:70:00:04:9d:52:a8:83:75:c3:73:48:c4:7e:1e:
68:c8:40:87:32:87:af:64:9f:ca:3f:92:32:08:4f:ae:4a:ec:
92:9a:b0:f2:72:d0:27:6f:66:85:a3:ff:90:94:24:71:fd:46:
bc:63:bd:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org