Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/xuYo5_RujLopZMqePbqE7AxyodA.roa
File: xuYo5_RujLopZMqePbqE7AxyodA.roa (raw, json)
Hash identifier: emZOzfWGnxy3a1ZToUEUSdG+E1H7a9oz107mbY+4SqI=
Subject key identifier: C6:E6:28:E7:F4:6E:8C:BA:29:64:CA:9E:3D:BA:84:EC:0C:72:A1:D0
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0182910E30E0B70E0B71A7F68E32DB47EC44
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/xuYo5_RujLopZMqePbqE7AxyodA.roa
Signing time: Fri 12 Aug 2022 07:56:42 +0000
ROA not before: Fri 12 Aug 2022 07:56:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204968
IP address blocks: 81.22.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:91:0e:30:e0:b7:0e:0b:71:a7:f6:8e:32:db:47:ec:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 12 07:56:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6e628e7f46e8cba2964ca9e3dba84ec0c72a1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fe:15:4e:87:82:cf:75:4b:77:2a:66:69:9e:
9c:cc:b6:0c:e9:fb:c4:a7:85:a9:d5:29:1e:24:e4:
8e:a5:09:7f:96:53:64:95:d4:27:31:97:43:3c:c6:
78:a2:90:69:ac:f1:e6:52:38:1c:21:d6:0c:9b:aa:
ec:fc:46:b1:5f:eb:ad:06:b4:cb:54:2e:c7:a1:25:
5f:de:ff:73:2f:f7:0d:82:b7:3f:f5:46:6a:54:bf:
80:aa:b4:be:f0:34:65:1b:09:d4:29:a8:c0:20:1b:
cf:b6:42:26:29:a6:e2:16:83:0b:11:ab:b5:ad:03:
16:a2:ea:e4:c0:40:b6:46:c3:c6:ed:73:cd:27:3d:
29:0a:e4:64:49:e8:2b:fe:4b:a0:41:4b:58:88:49:
d6:db:77:0f:82:47:d1:96:e2:fd:7a:ca:9c:64:72:
e4:af:1f:66:88:37:58:7e:67:b3:4d:65:10:cc:45:
bb:96:ca:cf:b7:b8:09:d1:53:68:72:e5:03:76:a5:
5d:5f:c1:b1:ca:8f:a1:a9:11:cc:76:05:ba:f5:df:
12:74:1c:96:29:58:5e:5b:cd:2c:5f:50:b0:d6:20:
e7:da:03:0c:a7:1e:d4:bf:59:d3:dc:9d:cf:89:1d:
e0:eb:4b:bd:bd:44:13:bf:35:6e:27:0d:57:59:5d:
60:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E6:28:E7:F4:6E:8C:BA:29:64:CA:9E:3D:BA:84:EC:0C:72:A1:D0
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/xuYo5_RujLopZMqePbqE7AxyodA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.128.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:5c:c3:df:d5:0a:14:63:46:6c:b2:9e:d7:f0:88:99:70:5c:
9a:57:1f:16:d8:02:1b:86:c8:7f:80:45:75:5a:49:4b:4b:e6:
7d:35:92:14:5c:68:12:d1:76:d7:0d:c3:98:3d:b7:e4:42:32:
83:9d:49:44:42:33:3b:cb:51:8e:4c:a6:8f:3f:e4:a7:05:9e:
93:50:ef:fd:9a:ec:34:06:bb:7f:a0:da:31:2f:75:79:9a:71:
cb:a2:74:e5:65:2a:80:ab:5e:a8:70:41:f1:3f:df:74:f4:78:
ad:15:30:32:a6:55:72:3e:31:43:fb:59:1c:c2:f4:fb:b6:37:
ad:28:dc:03:f4:01:e1:94:89:10:f0:40:7e:7b:e1:c6:2f:f5:
47:a6:a1:cb:07:ec:9d:ee:fe:7a:c4:e2:33:31:fd:36:6a:b7:
a8:07:33:1a:b5:b0:58:67:90:40:29:f2:93:72:2e:8c:ba:cb:
f2:c0:2d:f3:5f:3e:65:80:91:eb:7e:94:21:83:17:6e:b8:00:
bf:bd:b0:4d:9a:ed:45:b8:68:b9:03:2d:12:6c:43:74:68:65:
5e:4a:81:4e:03:7e:13:9f:0f:7d:6b:89:e3:8b:7c:36:5f:de:
70:c3:37:fd:54:47:56:3d:d0:60:aa:b1:0c:19:79:71:c8:40:
91:91:ae:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org