Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/yxH6QTsChmSA8BfsUIugTedwwc0.roa
File: yxH6QTsChmSA8BfsUIugTedwwc0.roa (raw, json)
Hash identifier: pWGQ4h+FBApT0O+HGvjAWk+KA2OYnf11KdE9kDO4EKY=
Subject key identifier: CB:11:FA:41:3B:02:86:64:80:F0:17:EC:50:8B:A0:4D:E7:70:C1:CD
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 3422CF9D
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/yxH6QTsChmSA8BfsUIugTedwwc0.roa
Signing time: Sat 01 Jan 2022 09:02:49 +0000
ROA not before: Sat 01 Jan 2022 09:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44400
IP address blocks: 81.31.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 874696605 (0x3422cf9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Jan 1 09:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb11fa413b02866480f017ec508ba04de770c1cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ad:01:c3:a2:07:3e:6e:6f:69:65:58:c9:44:
fa:28:a2:7b:39:36:84:be:c3:8b:75:44:fd:ca:f3:
59:a4:1a:4d:6a:7a:b4:82:21:f9:4f:6d:4a:ba:e1:
ed:3d:a6:3f:0f:ec:19:e7:97:c9:db:09:04:7d:d4:
64:34:a3:aa:37:66:81:dd:41:e8:ce:d3:f1:5b:78:
fa:bc:9f:de:c8:f0:1b:ce:37:9c:50:71:85:09:42:
de:26:45:0e:6d:f2:5f:38:4d:4f:90:57:c7:eb:00:
d8:ff:d4:d9:84:6a:4b:ab:30:c3:57:42:21:81:57:
ca:57:b0:f3:1f:09:6b:63:1d:b7:a7:87:af:31:b7:
b5:50:94:8b:b0:0e:da:b1:64:3d:de:30:59:5e:6c:
2d:61:76:e4:a4:79:e1:aa:30:e5:dd:bf:80:97:c2:
40:1a:91:81:18:27:48:be:c8:2b:69:11:2a:4e:d5:
18:72:84:c3:37:13:d4:11:5c:da:55:27:48:b0:88:
05:9d:66:3a:25:ac:db:3b:0a:a5:7a:a1:c5:22:c0:
da:4f:15:c4:02:26:0d:75:60:c7:70:7f:9c:b7:33:
96:b7:66:c8:3a:df:30:6a:81:1c:ff:ee:97:75:8e:
cf:1f:ad:61:ff:42:29:c7:95:10:a5:55:f3:ea:3e:
ec:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:11:FA:41:3B:02:86:64:80:F0:17:EC:50:8B:A0:4D:E7:70:C1:CD
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/yxH6QTsChmSA8BfsUIugTedwwc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.252.0/22
Signature Algorithm: sha256WithRSAEncryption
76:51:24:7b:2c:69:a9:8f:58:dd:a1:88:ce:96:67:24:4d:5f:
4b:39:d0:dd:77:f4:c8:3a:95:6b:81:12:b1:67:e7:c7:f1:4a:
38:78:45:cc:40:9c:b6:01:ff:b8:3c:77:92:00:00:2f:36:47:
bc:3b:75:36:e0:66:c2:0c:58:80:6f:39:a6:4e:be:a1:91:47:
05:c4:f2:c3:8d:3c:d5:ed:eb:33:51:ed:66:d1:29:66:8f:34:
dc:f2:9c:22:0a:4d:1b:a6:53:6d:ef:0d:15:d8:d3:31:3c:d1:
c6:b8:5f:96:f0:e8:1b:6b:14:02:df:57:4f:19:5f:eb:05:5d:
26:67:af:37:1c:10:c0:97:e9:ef:49:c8:16:0d:65:a5:c0:f9:
61:e1:f7:ef:e1:f0:8c:cb:8a:d4:79:9c:7c:83:64:39:b8:0e:
9b:e0:05:47:0f:32:4c:35:c9:f5:c1:75:07:57:39:9b:b2:c2:
31:f1:b8:94:28:d4:d0:6e:4a:df:2d:49:19:35:e0:52:02:13:
61:8a:d8:04:26:00:f1:fd:ce:bb:c0:a8:3f:2d:53:31:fd:7a:
f8:f6:11:1d:90:a2:2d:0e:fb:50:f9:47:1c:26:81:55:f4:99:
04:92:7c:e4:36:9d:cc:0c:d2:9f:13:a2:19:05:07:93:d9:72:
b3:07:97:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:01 2023 by rpki-client on console-ams.rpki-client.org