Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/28XhjfFeLnjYosqARwl13PTdNqI.roa
File: 28XhjfFeLnjYosqARwl13PTdNqI.roa (raw, json)
Hash identifier: c/EeNsphaQoEKQXpqSAEzDh7CTqzalq9UxZMY1dG3vo=
Subject key identifier: DB:C5:E1:8D:F1:5E:2E:78:D8:A2:CA:80:47:09:75:DC:F4:DD:36:A2
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 0183F23DFB29DD241997F59404BDAD0BEFD0
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/28XhjfFeLnjYosqARwl13PTdNqI.roa
Signing time: Wed 19 Oct 2022 21:54:51 +0000
ROA not before: Wed 19 Oct 2022 21:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60602
IP address blocks: 81.31.242.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f2:3d:fb:29:dd:24:19:97:f5:94:04:bd:ad:0b:ef:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Oct 19 21:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbc5e18df15e2e78d8a2ca80470975dcf4dd36a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f5:1e:17:87:3b:05:51:3b:31:22:81:00:29:
ca:3f:a8:45:af:a0:d3:aa:ce:2d:5d:cd:51:bd:16:
17:c4:ad:2c:61:5b:6e:f1:86:d8:53:15:9b:c7:b4:
8b:88:77:86:c4:f7:7c:fd:8b:66:45:cb:f7:15:c8:
3e:bd:5a:a0:26:63:d6:7c:ce:c3:4a:b7:0e:a8:e1:
b7:7f:23:6c:43:71:55:bc:78:fc:b5:6b:a6:26:5b:
12:7b:05:42:a9:fe:0d:dd:b0:07:17:1a:38:35:d9:
ae:64:66:ec:17:32:ec:d2:cd:00:63:51:43:be:86:
2b:4c:e9:fd:fc:de:c7:97:7d:cb:1e:3e:85:15:05:
81:27:17:9f:c4:31:1d:a3:42:51:90:8e:00:d6:28:
d5:dd:84:0e:59:e8:ec:18:53:a4:09:72:e9:23:3e:
20:6b:54:b6:06:d7:8a:aa:87:4f:26:1e:eb:66:25:
cf:4b:ff:b9:6d:38:20:e5:ff:56:ba:18:3a:aa:97:
1f:fe:ae:f3:1e:e1:19:e7:e7:ff:81:91:e4:2f:38:
ea:0c:64:8d:bb:72:f2:c6:08:eb:ff:80:f5:27:e6:
c5:12:a3:c6:58:11:7b:69:e1:b2:69:26:bb:ce:e2:
42:75:19:52:50:47:ae:55:4b:c4:1f:3e:72:3d:7f:
ac:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C5:E1:8D:F1:5E:2E:78:D8:A2:CA:80:47:09:75:DC:F4:DD:36:A2
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/28XhjfFeLnjYosqARwl13PTdNqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.242.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:3b:d2:e6:5c:e7:4b:c4:07:6a:20:04:dc:d9:41:cb:b8:b1:
c8:52:50:88:d0:bd:b6:f9:63:c9:58:eb:20:e0:48:c5:c3:06:
1b:9d:43:33:c0:77:4e:ac:4a:35:8d:2b:5d:be:62:a3:ac:b3:
8c:01:1c:14:46:08:7b:dc:9f:25:dd:d6:9b:3c:98:15:f2:48:
ed:10:40:58:62:2c:c5:57:eb:a4:e7:9a:34:b9:be:52:c0:4e:
62:d9:c4:31:60:0f:78:e6:de:54:a6:93:e1:2b:ea:9e:8a:bf:
87:68:d0:eb:4a:d0:9b:9e:2d:91:65:ad:a0:52:a7:43:72:7d:
bc:a8:e6:53:e7:d1:0d:7a:ee:17:89:f5:fa:71:d5:0a:22:d6:
1f:05:bc:34:e4:41:85:58:8a:46:fb:ac:93:58:e8:8b:f7:d8:
49:ac:00:bb:01:9f:1e:70:fa:89:61:51:ee:66:40:46:3a:0e:
09:e7:85:8d:11:8b:3e:e9:1a:22:4f:d4:06:7a:6a:cc:a7:62:
ba:b9:29:0c:e4:62:50:1c:e1:98:b2:fa:71:0e:08:ae:71:11:
58:fc:6a:e8:a6:66:e7:49:c7:c7:e7:11:43:9e:90:48:18:87:
92:5f:16:45:20:aa:7e:e6:fd:a1:b0:60:e7:c8:92:7f:c7:7b:
46:56:fe:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:09 2023 by rpki-client on console-fra.rpki-client.org