Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/PlVcE999-WZoLjsHc6OU6fDcP7Y.roa
File: PlVcE999-WZoLjsHc6OU6fDcP7Y.roa (raw, json)
Hash identifier: 5kykRcfcLTIAZcF44uz0AMT9dP8pbcAe8cSbIKwRzYg=
Subject key identifier: 3E:55:5C:13:DF:7D:F9:66:68:2E:3B:07:73:A3:94:E9:F0:DC:3F:B6
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01895B386EECF030BDF4AA4667A4A70D77D0
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/PlVcE999-WZoLjsHc6OU6fDcP7Y.roa
Signing time: Sat 15 Jul 2023 20:22:52 +0000
ROA not before: Sat 15 Jul 2023 20:22:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 81.22.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:5b:38:6e:ec:f0:30:bd:f4:aa:46:67:a4:a7:0d:77:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jul 15 20:22:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e555c13df7df966682e3b0773a394e9f0dc3fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:79:56:63:82:51:88:5a:e7:f3:67:c5:c2:fa:
43:66:e8:32:d7:a6:73:75:c7:5a:50:3e:95:70:a9:
22:fe:4a:13:f4:bb:ca:cd:77:41:0b:84:f8:d9:9d:
a7:13:10:63:7c:28:f8:54:0d:10:fd:21:05:ed:14:
17:61:56:45:e2:16:37:5b:2b:4e:2b:9d:be:4a:4e:
07:ba:87:51:cd:23:82:7d:4e:7b:77:97:32:ae:8b:
a5:ef:51:5f:42:70:92:8a:a8:f3:22:34:05:41:57:
1f:39:8f:73:e7:32:82:3c:18:59:5d:db:51:8b:bd:
ba:34:af:5a:2b:d4:d8:98:0f:9c:7a:0e:29:4b:90:
84:54:52:d0:d5:a2:4c:b0:3d:bc:ca:d8:3a:c8:64:
2a:e5:a2:3b:69:d0:39:b2:da:fb:58:92:d0:b2:b3:
b4:a1:e1:1d:58:2e:1f:f5:4d:1c:8b:ec:05:ea:55:
5f:f1:32:a6:ec:45:81:1f:3b:df:3d:28:9e:eb:28:
10:78:9b:c2:4f:dd:2f:5d:ef:82:62:25:66:81:bd:
d0:01:3c:90:f5:d7:01:da:fa:e5:da:e7:5a:9f:91:
85:ac:f1:e3:4b:e7:14:82:14:bc:c8:6b:6c:af:dc:
a1:3c:25:74:1b:c7:d9:97:bf:c9:58:be:f8:12:2d:
c8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:55:5C:13:DF:7D:F9:66:68:2E:3B:07:73:A3:94:E9:F0:DC:3F:B6
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/PlVcE999-WZoLjsHc6OU6fDcP7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.130.0/24
Signature Algorithm: sha256WithRSAEncryption
26:76:00:fe:3d:98:b5:65:a0:b7:17:2a:02:24:fd:0c:55:92:
aa:41:4d:48:c3:5e:3b:4f:3c:89:0c:a2:b3:5a:52:d1:aa:97:
bf:11:f4:55:33:5a:20:2a:54:a0:e5:4b:3d:8a:71:ce:35:56:
36:64:c5:2a:07:05:41:3e:8f:e2:a1:01:57:b4:a9:2d:c0:e9:
bf:d0:62:54:0e:52:e3:50:9c:5d:04:c2:0d:e1:61:a4:70:a7:
d8:3b:08:c3:9d:d2:37:27:84:47:5b:0b:1e:34:60:a2:53:81:
7d:59:4f:00:4a:62:a3:ae:cf:a6:0a:a4:a5:0c:32:42:c7:d5:
db:8d:e2:8c:53:f8:f9:ab:c9:1c:57:61:39:62:6b:1d:0c:7e:
e5:90:13:2e:2b:d2:ed:b9:5d:7c:71:01:cc:8b:14:f9:6a:54:
2f:45:32:75:ad:08:2e:d4:aa:aa:6a:4c:41:bb:22:d9:e9:66:
1e:28:a2:ab:54:3b:8f:2a:8e:6b:99:ea:07:4c:bc:86:1d:3e:
c2:0f:c0:8b:b7:55:68:b1:3c:88:88:6d:d2:94:6e:8e:46:fe:
31:7b:13:f6:d2:e2:1a:3b:c1:d4:e8:bb:b7:0a:ab:90:b4:e5:
9f:cf:6f:37:8e:89:d0:1e:98:b9:81:b5:f5:7b:4b:9d:8d:5e:
73:e1:aa:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:22:13 2025 by rpki-client