Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ieWyxPlMO87vaVtnP5lO96cJkqM.roa
File: ieWyxPlMO87vaVtnP5lO96cJkqM.roa (raw, json)
Hash identifier: ivsSm6F4hh8zdhGFyjRh8P9vWI6NYWJ5ZBAoVyPQNeo=
Subject key identifier: 89:E5:B2:C4:F9:4C:3B:CE:EF:69:5B:67:3F:99:4E:F7:A7:09:92:A3
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01826AAC74F7305467791429DC8C7D0DBA6A
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ieWyxPlMO87vaVtnP5lO96cJkqM.roa
Signing time: Thu 04 Aug 2022 21:04:23 +0000
ROA not before: Thu 04 Aug 2022 21:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 81.22.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6a:ac:74:f7:30:54:67:79:14:29:dc:8c:7d:0d:ba:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 4 21:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89e5b2c4f94c3bceef695b673f994ef7a70992a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:00:1f:e9:30:11:b0:94:f1:f4:bd:da:63:b4:
22:a3:a2:0f:e9:80:e7:1b:21:0f:4d:fe:c5:e2:3d:
8e:6b:28:e5:cc:70:8c:e8:19:d9:f6:06:d8:66:b3:
f6:53:ff:6d:4b:ea:f0:6f:6f:0a:01:9e:69:68:be:
62:ea:a0:bc:21:ac:a0:92:42:43:fe:58:dc:a1:e4:
62:1b:67:e8:39:55:6d:11:15:4f:72:7b:95:72:68:
b6:22:5c:ad:ed:02:66:62:23:ea:7e:cc:2a:e5:f0:
e3:77:b7:77:bb:83:fe:20:e1:e0:08:5b:f3:71:17:
d0:96:93:f8:2a:2b:97:90:51:19:f2:9f:93:8f:60:
44:f3:ef:c8:55:0c:ed:c0:52:d0:11:36:71:76:fc:
0a:e3:6e:bf:7d:91:07:71:f9:14:59:57:23:d6:35:
92:dc:54:9a:cf:4f:fb:21:fc:4c:50:bf:c0:9a:c8:
56:26:05:98:9e:96:8f:40:81:7c:fb:27:e8:e1:7d:
2c:a9:8e:5e:4a:ca:56:56:1f:94:30:bb:43:2a:3f:
9a:96:d0:31:78:98:4d:99:94:0e:d2:a1:2c:0e:3b:
1b:d5:c8:2e:a9:97:57:f3:c2:f4:d8:39:65:9e:9f:
b5:4c:77:28:cb:3c:a6:d4:d9:ab:22:7f:44:f4:6e:
26:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E5:B2:C4:F9:4C:3B:CE:EF:69:5B:67:3F:99:4E:F7:A7:09:92:A3
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ieWyxPlMO87vaVtnP5lO96cJkqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.128.0/21
Signature Algorithm: sha256WithRSAEncryption
95:73:41:14:ee:63:0b:2b:9f:03:27:66:11:aa:13:ba:ce:4c:
93:4c:03:e2:b7:b0:87:73:90:23:0f:54:20:12:69:3c:58:ff:
de:2a:b3:d1:64:de:4f:e1:6f:30:b1:da:3c:00:03:50:ca:28:
a4:55:2e:cb:09:f9:a2:26:6d:3c:b3:a8:17:fe:8a:10:01:34:
17:32:63:82:b5:49:ab:76:ed:13:3f:5a:a9:29:b8:97:91:28:
37:ca:69:63:5d:f2:11:6e:53:bf:5b:00:6c:48:f3:47:2c:8e:
a9:5e:4e:f8:74:29:fb:ff:98:1e:20:4d:7e:bd:76:f0:4a:39:
67:51:ab:ae:54:ca:e7:0e:e7:5d:e5:c4:58:20:26:ca:46:07:
d4:f1:75:58:98:ad:ef:da:17:6b:88:eb:76:93:55:28:0b:71:
05:8e:70:13:1a:ac:f7:37:38:45:85:1e:20:70:1d:eb:63:ac:
bf:19:a0:cc:9e:b0:c4:18:3c:00:64:cd:37:66:bd:e8:ce:73:
4a:44:85:e6:d5:17:1a:f0:c4:70:9f:db:cb:3d:01:37:e6:8e:
3a:4c:14:95:3f:48:2e:db:f3:69:9f:72:4d:7d:ab:f0:03:56:
67:2e:70:8c:11:e0:cf:bf:25:ee:78:6f:ad:73:d7:c3:09:79:
00:0e:0a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org