Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3c35ea-7c9a-48e2-b3b2-e228aab45014/1/n2tSoatzX4R6u7FCEeMBWk7wOo4.roa
File: n2tSoatzX4R6u7FCEeMBWk7wOo4.roa (raw, json)
Hash identifier: gnuEsn1YHyS5zpMRMBZmyUhOp1Es2HE2c2jzelrckgI=
Subject key identifier: 9F:6B:52:A1:AB:73:5F:84:7A:BB:B1:42:11:E3:01:5A:4E:F0:3A:8E
Certificate issuer: /CN=5ee004befa553ddb35564fb7762b05eb222ecf93
Certificate serial: 228D9E
Authority key identifier: 5E:E0:04:BE:FA:55:3D:DB:35:56:4F:B7:76:2B:05:EB:22:2E:CF:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuAEvvpVPds1Vk-3disF6yIuz5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3c35ea-7c9a-48e2-b3b2-e228aab45014/1/n2tSoatzX4R6u7FCEeMBWk7wOo4.roa
Signing time: Sat 01 Jan 2022 00:54:09 +0000
ROA not before: Sat 01 Jan 2022 00:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29014
IP address blocks: 81.28.224.0/20 maxlen: 24
2a00:1c39::/32 maxlen: 48
2a00:1c38::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2264478 (0x228d9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee004befa553ddb35564fb7762b05eb222ecf93
Validity
Not Before: Jan 1 00:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f6b52a1ab735f847abbb14211e3015a4ef03a8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:93:17:64:7f:f4:35:84:3a:11:19:01:13:48:
3f:29:b0:59:f3:8b:1a:60:5b:4c:1c:57:9d:5a:f2:
88:02:cc:88:ff:7a:9a:e2:65:a0:80:16:b9:2a:7b:
2a:56:89:26:b8:07:a2:e1:b6:82:bb:42:b4:91:4c:
0a:fd:fe:f3:2a:dc:bc:38:70:8d:ab:7c:9e:d1:c3:
13:af:a9:14:5b:88:2a:35:cd:31:aa:04:a1:a3:38:
12:b6:55:76:c5:ad:57:ea:df:d5:c2:10:b2:90:1a:
6a:06:f3:e6:2c:8b:82:1c:bb:6b:0c:50:87:c8:2d:
74:51:7b:b2:71:12:8d:99:7b:ce:8b:72:e0:5f:d7:
bf:77:57:38:b9:a0:df:5f:24:73:31:c7:af:f7:ca:
15:9d:75:06:48:7f:c3:78:c9:98:a8:0c:89:f7:55:
c8:b9:e2:1b:a1:15:20:8a:72:60:67:2f:aa:1d:83:
b3:83:fa:80:ed:3c:fc:27:5c:6f:ee:81:76:0c:fe:
92:88:20:8e:7c:31:42:0a:4b:69:75:f5:59:98:fa:
45:f0:99:74:c4:96:94:df:14:f6:ff:5d:8c:e7:38:
b8:87:bb:30:58:db:c6:3a:af:91:67:a0:cc:53:5e:
e2:ee:17:d8:11:93:9f:c0:4d:be:c7:df:5e:d5:1f:
c7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:6B:52:A1:AB:73:5F:84:7A:BB:B1:42:11:E3:01:5A:4E:F0:3A:8E
X509v3 Authority Key Identifier:
keyid:5E:E0:04:BE:FA:55:3D:DB:35:56:4F:B7:76:2B:05:EB:22:2E:CF:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuAEvvpVPds1Vk-3disF6yIuz5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3c35ea-7c9a-48e2-b3b2-e228aab45014/1/n2tSoatzX4R6u7FCEeMBWk7wOo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3c35ea-7c9a-48e2-b3b2-e228aab45014/1/XuAEvvpVPds1Vk-3disF6yIuz5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.224.0/20
IPv6:
2a00:1c38::/31
Signature Algorithm: sha256WithRSAEncryption
35:bf:10:17:cd:cc:de:9b:f0:fd:d2:b9:cb:22:22:50:e3:a5:
ba:f5:52:17:ad:91:11:c6:96:90:82:d6:d2:3a:78:58:8d:8b:
1d:a4:9e:ee:39:77:f5:14:9e:8c:fd:e8:62:48:81:ee:75:fd:
44:e6:78:07:f1:6b:53:b3:cc:d9:03:37:e4:f7:0e:73:e7:37:
c5:e1:cf:7b:a5:f6:b3:4e:33:c6:07:98:b0:52:38:52:cb:c5:
3b:50:01:85:66:c7:52:4c:f6:f9:7d:57:26:57:ef:2f:d6:57:
81:50:e1:e7:d3:76:b4:91:22:79:60:85:c7:2a:62:92:77:df:
f0:d1:43:44:f0:97:aa:3e:e7:88:6f:98:43:13:64:86:7d:64:
83:13:ba:60:ae:f7:ad:73:ec:4a:a5:c9:39:da:ca:e0:67:ad:
9a:03:da:93:f0:38:c3:c1:f8:4c:e4:bc:f6:d6:a9:b5:6c:89:
a6:65:73:a6:a2:8c:2a:39:d9:f8:de:67:85:ec:77:7c:13:b1:
b0:7a:42:ad:ee:9d:6e:af:9d:09:e7:52:f8:28:fa:01:ca:6c:
a7:b3:4a:53:5b:08:88:b8:ca:9b:0a:e5:20:2e:00:78:10:8d:
56:62:08:dd:08:c9:63:4a:4a:db:bc:25:20:bf:bc:59:dd:57:
36:f0:04:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:14 2024 by rpki-client on console-ams.rpki-client.org