Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/1imbQ8-0szrpW5h4nB0njPW2-UE.roa
File: 1imbQ8-0szrpW5h4nB0njPW2-UE.roa (raw, json)
Hash identifier: 0/XXRAUu96lZC5fdAordWqwEIJCRFuQpfYSunuymLDU=
Subject key identifier: D6:29:9B:43:CF:B4:B3:3A:E9:5B:98:78:9C:1D:27:8C:F5:B6:F9:41
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 01821AD0BAEE016C4AAA68224A1126ACC089
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/1imbQ8-0szrpW5h4nB0njPW2-UE.roa
Signing time: Wed 20 Jul 2022 08:54:23 +0000
ROA not before: Wed 20 Jul 2022 08:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 81.31.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:d0:ba:ee:01:6c:4a:aa:68:22:4a:11:26:ac:c0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Jul 20 08:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6299b43cfb4b33ae95b98789c1d278cf5b6f941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f2:fb:af:93:24:a7:0a:97:cf:cd:3c:e3:59:
16:56:29:3c:23:f7:9d:a7:6a:b1:36:7b:11:17:6f:
63:5e:86:42:d2:7f:45:6b:de:83:30:19:f6:15:12:
62:f4:29:6c:8b:a0:96:f5:01:d4:69:49:60:3a:27:
ba:51:9f:13:53:8f:63:1d:83:a4:c7:f5:6e:ad:37:
df:78:57:b5:29:e2:fc:39:8d:bf:fc:3e:09:26:0e:
06:29:42:a2:a6:51:ba:0e:f0:8d:eb:bc:e3:57:d5:
2e:cb:a9:12:8f:1a:c4:29:0b:bf:50:5d:c6:a5:45:
45:35:6e:ef:28:cd:64:e3:4f:c6:60:05:3e:c8:17:
a5:7f:8c:e4:3b:61:c3:9a:00:03:19:c0:0c:32:22:
c5:66:12:e4:d9:3f:fd:89:40:35:1c:d5:e2:9b:7b:
3c:cb:c2:29:1e:b3:35:ec:af:37:cc:16:3f:8e:72:
7d:05:63:21:31:ff:d5:84:64:64:af:07:57:70:e0:
da:69:df:16:1c:9f:71:92:b0:30:45:a1:d4:6a:84:
e3:0c:e8:67:58:3f:59:3c:a8:61:10:47:3c:a1:af:
e8:3a:9e:17:d4:53:93:4d:49:cb:68:96:f4:76:7f:
b1:2e:c8:50:c0:e2:1b:aa:0c:ac:b3:c9:89:4f:2f:
06:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:29:9B:43:CF:B4:B3:3A:E9:5B:98:78:9C:1D:27:8C:F5:B6:F9:41
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/1imbQ8-0szrpW5h4nB0njPW2-UE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.244.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:3b:cc:31:22:f0:a3:ce:9b:7c:92:9b:b2:81:80:80:50:f4:
65:a1:d9:b6:9e:9b:79:a9:3c:ab:c4:c0:32:5b:90:de:31:f8:
bb:37:97:be:9b:00:d4:41:23:73:9b:2a:a0:09:c9:c1:56:61:
fc:72:3e:3f:44:74:ee:cd:b4:0c:5b:57:b3:9c:da:db:83:15:
41:9d:04:9f:d0:7f:01:2c:ce:43:c4:07:a0:ee:42:7e:86:48:
86:0c:ca:40:0d:46:8c:7e:87:b4:42:3d:bf:72:ac:80:2e:c9:
9a:bb:06:36:d0:7e:a5:2d:34:5e:a0:a3:93:d1:67:d2:75:a0:
ea:e0:8c:83:44:25:36:32:9e:d7:b3:18:1a:08:bd:55:04:75:
57:15:d4:38:f3:7c:7c:ab:98:1f:66:61:32:83:da:dc:23:f8:
57:5f:49:6c:c9:23:b6:78:ba:21:c5:89:8a:19:a4:0f:74:22:
d8:5a:87:46:e6:4b:28:df:a3:4c:9c:e2:4b:8e:27:bf:15:37:
4e:1b:b4:28:2a:44:a5:51:4c:88:de:9a:21:9a:37:a4:5f:fa:
24:32:00:fd:b9:97:ad:05:84:72:54:40:ef:11:c9:5a:2b:74:
ab:9c:b1:4e:fd:48:61:6e:76:33:ed:04:a0:66:8e:ea:8c:b7:
42:a6:62:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:09 2023 by rpki-client on console-fra.rpki-client.org