Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/rSHYuEYU87XiGkdyI-j00MYKZq4.roa
File: rSHYuEYU87XiGkdyI-j00MYKZq4.roa (raw, json)
Hash identifier: ic2aImoWaYK6kF4GyMvijpCnU+0qDnpXfBbG6aneS0c=
Subject key identifier: AD:21:D8:B8:46:14:F3:B5:E2:1A:47:72:23:E8:F4:D0:C6:0A:66:AE
Certificate issuer: /CN=f9856d674f0e9dbf6012d5b5d3d96b43afd76473
Certificate serial: 0182D59728DA99E7A53FBEC61ADFB6CF7FAE
Authority key identifier: F9:85:6D:67:4F:0E:9D:BF:60:12:D5:B5:D3:D9:6B:43:AF:D7:64:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YVtZ08Onb9gEtW109lrQ6_XZHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/rSHYuEYU87XiGkdyI-j00MYKZq4.roa
Signing time: Thu 25 Aug 2022 15:20:29 +0000
ROA not before: Thu 25 Aug 2022 15:20:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39159
IP address blocks: 81.5.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d5:97:28:da:99:e7:a5:3f:be:c6:1a:df:b6:cf:7f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9856d674f0e9dbf6012d5b5d3d96b43afd76473
Validity
Not Before: Aug 25 15:20:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad21d8b84614f3b5e21a477223e8f4d0c60a66ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:84:78:ff:db:7e:d7:7d:9c:d3:1b:ef:df:0a:
e8:e6:4d:72:fb:38:68:22:ab:21:f1:6b:a1:1d:9d:
88:b4:37:cf:77:87:f2:65:01:b2:20:36:b9:75:df:
fd:af:b7:cb:15:ad:5d:99:f1:49:2e:61:cb:60:44:
de:67:b9:73:61:66:e1:54:f3:fa:74:7d:69:34:c3:
9b:51:d2:de:7f:9b:22:f1:5f:f5:ed:d8:34:c0:7a:
61:52:53:2d:ba:c3:f3:54:98:46:df:d9:e3:4c:ed:
6c:c7:a7:9a:dc:95:46:24:a8:23:6e:d5:f0:fe:b2:
44:bf:83:b5:cd:ca:cb:ad:bc:f8:71:fd:bf:47:58:
9d:8d:3c:ea:e3:48:48:39:e9:f3:03:5e:6f:d0:b4:
fc:80:c3:99:7c:a7:21:e1:4a:fa:d9:11:9a:9b:c1:
11:6f:62:b0:75:ed:76:75:96:a1:6f:a0:62:8c:54:
00:86:07:e9:20:35:8b:6d:ef:93:b6:5f:51:c7:dc:
de:32:34:b5:74:7f:be:67:02:d4:b8:0b:de:17:1f:
3d:c5:d0:a6:76:cd:40:62:41:ea:f7:a9:29:8e:8a:
fc:17:70:1d:3f:a3:d8:aa:72:18:ad:f5:d6:ed:49:
68:15:35:10:83:12:3b:b2:f2:a3:33:e2:89:13:b9:
d1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:21:D8:B8:46:14:F3:B5:E2:1A:47:72:23:E8:F4:D0:C6:0A:66:AE
X509v3 Authority Key Identifier:
keyid:F9:85:6D:67:4F:0E:9D:BF:60:12:D5:B5:D3:D9:6B:43:AF:D7:64:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YVtZ08Onb9gEtW109lrQ6_XZHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/rSHYuEYU87XiGkdyI-j00MYKZq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/9f9590-7f0a-41b3-ac4f-efd14db957fb/1/1-YVtZ08Onb9gEtW109lrQ6_XZHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.5.20.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:68:1d:44:6b:3e:8d:12:12:99:5b:53:e7:34:a9:73:bd:1b:
fc:62:47:6f:6f:fa:75:e8:79:0e:d3:38:39:ca:9b:08:85:6c:
49:73:2b:94:47:ac:5b:1c:db:b2:f4:94:d6:10:97:32:24:a9:
28:78:1b:87:10:27:1e:4c:05:93:aa:6b:85:94:4a:eb:b6:3e:
cd:73:5e:c8:c5:68:0b:db:d1:1d:58:51:d1:d5:93:ac:e6:9d:
82:7e:2f:fb:c9:92:6d:fe:c3:6d:72:1a:df:d2:f4:2f:f5:41:
10:4f:df:a9:07:49:ca:78:2e:e4:55:4c:df:9b:76:ae:43:71:
ef:8c:4b:a6:43:3a:dd:21:cb:3f:08:d8:0c:f1:13:4c:12:2b:
36:be:11:71:d7:e6:b6:09:9d:af:0c:13:4f:33:63:df:b1:96:
4f:79:d9:5b:94:26:7d:6d:66:9a:35:02:32:f0:18:77:cc:28:
09:4f:f0:2e:1b:24:5d:d0:e7:40:c6:0b:35:3f:b4:cb:4e:72:
6c:c3:22:04:6d:0b:a9:0f:f6:0e:7d:18:93:4a:29:b6:3d:e4:
88:e4:87:b2:89:a6:ea:2a:a4:51:16:fd:eb:3a:6e:2c:78:4e:
4d:5e:07:46:11:4e:33:bb:85:25:55:d5:23:ad:b7:e3:54:05:
53:56:70:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:22 2024 by rpki-client on console-fra.rpki-client.org