Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Yg5oEHREP8c4cZBH-vNwlFw7lw0.roa
File: Yg5oEHREP8c4cZBH-vNwlFw7lw0.roa (raw, json)
Hash identifier: 36KAwLR1z3RiaoNI1DuBpcG685UmsSFe06wT+TiVNMI=
Subject key identifier: 62:0E:68:10:74:44:3F:C7:38:71:90:47:FA:F3:70:94:5C:3B:97:0D
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01852B660C9CB93EBAFCEDCD5AC5B02D2C31
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Yg5oEHREP8c4cZBH-vNwlFw7lw0.roa
Signing time: Mon 19 Dec 2022 17:19:46 +0000
ROA not before: Mon 19 Dec 2022 17:19:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 81.22.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:66:0c:9c:b9:3e:ba:fc:ed:cd:5a:c5:b0:2d:2c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Dec 19 17:19:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=620e681074443fc738719047faf370945c3b970d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e4:dd:94:0e:d7:f7:80:87:fd:f6:39:ca:e2:
68:a4:9c:c4:7e:59:39:78:56:09:77:85:a1:1b:01:
e9:a5:ed:57:e0:ab:31:e2:b6:ac:a0:69:aa:ca:36:
44:d6:7c:78:f8:04:8b:cf:9b:67:bc:e5:10:4b:bc:
6f:03:3e:5b:7d:0d:3b:cb:09:73:eb:82:66:7f:f4:
82:e5:d2:c9:1e:69:d3:08:df:66:3d:ec:ca:91:f2:
3b:00:36:cc:f6:d1:c6:d0:34:6e:4e:ac:40:ee:65:
f0:68:2f:02:2e:e5:3a:89:54:7f:b0:88:7e:5c:37:
fe:d8:7e:75:6d:5c:fb:72:f3:f8:d8:85:b4:a5:0d:
b4:9d:3a:ed:2f:bf:95:4d:12:e2:b5:45:80:d1:e3:
7d:c0:12:e3:d6:82:90:8e:02:13:51:e0:a8:5e:94:
60:5a:1c:5b:6e:ba:bf:a0:a4:8c:27:f2:2c:af:07:
7c:7c:b6:3f:36:f3:ca:31:99:b5:95:a8:85:fb:3d:
96:71:f0:51:ab:c6:56:28:b2:c1:a8:27:c4:77:99:
50:73:3b:09:53:35:20:6e:a4:30:6e:3a:9d:80:0b:
ad:26:8c:e8:d6:91:fd:1b:71:d2:ed:6b:f8:46:66:
34:b9:a8:9e:21:6d:5c:44:80:0f:e2:2f:92:29:25:
d4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0E:68:10:74:44:3F:C7:38:71:90:47:FA:F3:70:94:5C:3B:97:0D
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/Yg5oEHREP8c4cZBH-vNwlFw7lw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.132.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:03:9d:43:58:c9:04:b2:e2:c0:8a:c2:50:8a:d8:6d:0b:9e:
f9:61:d3:01:ad:ef:e2:f3:bc:56:35:ab:4e:42:e5:b6:db:58:
6f:f9:7a:81:43:7a:dc:29:d6:44:76:51:86:18:bf:b3:99:19:
1d:13:3f:b5:03:0e:b6:f9:8d:f8:a4:97:56:3c:74:39:cc:1d:
84:72:36:55:84:e3:40:6d:37:e1:dd:cc:69:70:93:a0:6f:b5:
3e:f3:10:8c:b2:48:a3:c9:b0:34:78:a7:e6:20:b8:f7:b1:8b:
5f:71:38:d2:0c:59:9e:94:af:09:c8:e7:d0:b2:98:3e:ef:f5:
9f:3e:1d:a7:e4:c4:ec:c7:15:96:85:54:5b:cc:bc:3e:5d:22:
8c:0b:90:3f:d1:cc:7c:68:b6:2c:21:cc:67:43:26:0a:1a:fc:
8a:b3:ee:4a:fe:19:d7:2b:45:0c:06:1f:fd:27:f1:3f:19:17:
c0:9c:24:d0:00:5d:7b:e8:22:ba:cd:93:e2:10:dd:95:5f:e8:
be:fa:e6:75:22:e4:cf:ed:68:8d:d1:f0:b9:fe:a6:68:7c:f4:
51:7e:0e:29:e8:0e:54:f7:e3:e1:52:d6:df:71:a9:d2:97:7d:
8c:54:f4:87:79:c3:45:51:d8:c7:59:0a:08:8e:0e:15:63:33:
ae:a4:dd:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org