Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/efxWXBmAPHTLfg9Xb6aD0KTTdOc.roa
File: efxWXBmAPHTLfg9Xb6aD0KTTdOc.roa (raw, json)
Hash identifier: y7XEbBHqCL1rXXOxSazrsuoSR44IC2sBNGc7Cnx0Srg=
Subject key identifier: 79:FC:56:5C:19:80:3C:74:CB:7E:0F:57:6F:A6:83:D0:A4:D3:74:E7
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018282D34E43A9A0954EAE70FC4F8D8A736F
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/efxWXBmAPHTLfg9Xb6aD0KTTdOc.roa
Signing time: Tue 09 Aug 2022 13:37:42 +0000
ROA not before: Tue 09 Aug 2022 13:37:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 81.22.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:82:d3:4e:43:a9:a0:95:4e:ae:70:fc:4f:8d:8a:73:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 9 13:37:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79fc565c19803c74cb7e0f576fa683d0a4d374e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d2:22:06:f0:87:84:92:ac:23:77:68:5d:43:
98:b0:03:22:e2:6c:7b:f9:29:99:c4:d2:08:96:fc:
bd:32:18:45:3c:67:7b:c4:99:53:36:38:81:d2:85:
a9:13:3b:dc:b6:b0:84:a7:bb:e7:08:38:94:30:bd:
f8:d1:89:ce:12:d8:84:bb:87:c8:d6:fd:c3:ad:9e:
c4:ff:8e:6c:ae:77:9d:88:44:fe:8d:2d:c4:4a:6a:
2b:45:58:f6:8b:ec:48:f5:94:46:0c:63:e9:9f:94:
a9:a6:c9:3f:6c:3f:f7:40:fd:37:02:c5:e9:a1:48:
b9:52:96:90:49:c8:37:2c:04:e3:30:26:3d:51:84:
77:c1:b5:e3:44:95:59:2a:d8:1b:1b:07:02:ce:f0:
f4:2e:33:57:f3:54:40:70:fd:2d:98:12:70:37:04:
95:70:09:86:af:d3:ef:6e:9d:d2:73:f2:6a:23:f6:
6a:fb:86:31:7f:fb:fc:d0:d6:c9:57:51:f1:9d:dd:
ad:10:f1:2b:53:c0:dc:d4:ce:e7:4b:7b:5a:8b:82:
8f:60:b4:ab:c3:7c:df:17:d1:52:7e:fa:5d:46:c8:
26:40:5b:82:e6:a0:ea:61:c4:01:ff:7b:34:cb:b7:
3c:85:fe:1a:97:7c:8a:c2:6d:0a:d1:c0:25:51:0c:
28:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FC:56:5C:19:80:3C:74:CB:7E:0F:57:6F:A6:83:D0:A4:D3:74:E7
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/efxWXBmAPHTLfg9Xb6aD0KTTdOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.140.0/22
Signature Algorithm: sha256WithRSAEncryption
25:c3:55:05:37:50:cf:d1:68:4b:a8:f4:5b:1d:e4:55:94:5c:
e3:44:7a:6d:37:47:3a:a2:6a:26:9a:90:cb:6b:eb:c5:7b:5e:
96:1f:c7:96:36:ef:f4:f0:de:b3:7f:18:b3:7f:37:ae:47:bf:
b9:65:21:d5:17:24:29:62:fb:86:d1:ea:0e:18:51:d2:f8:dd:
79:11:d9:d9:bf:93:d9:52:f5:dc:2c:51:c6:10:b7:2e:47:88:
7e:00:6b:83:d0:10:22:a3:6c:c4:ec:7b:82:2d:cc:6d:71:ee:
3f:3d:a3:01:82:c2:a2:a2:bb:31:e0:9d:e3:8c:c3:97:a0:49:
1d:14:d7:77:c7:54:22:f5:dd:cc:a5:06:8f:98:1a:45:c9:f7:
a6:bc:32:94:b8:82:e4:d1:30:78:87:b3:48:80:7a:74:c4:94:
03:6f:f7:11:85:75:40:a5:c6:08:9a:ca:d5:d3:bf:87:0e:0d:
81:96:73:60:50:93:50:96:7e:64:4b:82:f7:9e:17:38:0b:b8:
6a:8f:e2:7c:d9:fb:b0:33:11:ac:e2:82:d1:0d:8f:82:3a:24:
f9:d8:e2:aa:9e:7b:cf:3a:b1:df:82:e9:e9:04:8f:a1:46:fa:
e0:b4:9d:fc:04:fd:57:8b:0a:f5:34:8b:8d:85:ee:78:dc:f9:
c8:a9:74:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org