Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/i_XCBoCei9onldgKyc94RNdB__8.roa
File: i_XCBoCei9onldgKyc94RNdB__8.roa (raw, json)
Hash identifier: ceGQlLsTLE4xIT9FK7wS4FfhiVE69j5ugvtRuyq6S9k=
Subject key identifier: 8B:F5:C2:06:80:9E:8B:DA:27:95:D8:0A:C9:CF:78:44:D7:41:FF:FF
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 193291F8
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/i_XCBoCei9onldgKyc94RNdB__8.roa
Signing time: Sat 01 Jan 2022 11:57:10 +0000
ROA not before: Sat 01 Jan 2022 11:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48571
IP address blocks: 81.181.168.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422744568 (0x193291f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 11:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bf5c206809e8bda2795d80ac9cf7844d741ffff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6c:a8:60:c9:c5:e6:d0:45:78:79:73:c5:14:
37:d8:89:53:db:a9:b4:bc:d4:35:e8:f2:8d:6a:f1:
eb:fd:60:9b:5e:fa:a9:79:53:4a:ee:25:df:6d:2f:
19:ce:d9:66:d5:89:92:0b:b1:fb:cc:f4:b9:94:15:
27:c1:fd:42:bf:a3:e9:8f:ec:86:9b:df:6b:53:92:
0c:b5:bd:a7:a5:81:0f:c7:a0:b0:cb:29:22:34:f8:
c6:8e:9c:b5:4c:7e:b4:27:0c:88:da:fa:85:f0:ef:
b6:1c:91:5a:3f:12:9a:f0:7d:e7:e2:91:d9:58:cf:
00:f1:61:39:31:65:4a:6d:a2:2b:01:ab:1c:65:6c:
98:17:8c:76:5c:c0:47:ad:47:0c:17:50:b5:ba:94:
55:b4:a9:fa:90:2a:e9:42:76:4b:56:1f:af:5b:9f:
f8:a4:12:5a:dd:64:15:95:7c:44:c3:e2:96:6f:7f:
44:de:fd:6c:fe:47:d5:35:35:84:ac:e9:98:96:50:
71:7c:54:fe:4f:1a:ac:cc:b7:0a:43:e8:b0:15:da:
23:71:3a:4c:30:7a:ec:e1:ab:ca:91:80:2f:8c:6e:
6d:fb:ab:a8:b1:19:d9:40:0d:8d:e0:a9:43:62:e2:
6e:53:ba:12:6d:17:0d:46:d4:b2:2e:c8:13:86:e4:
81:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:F5:C2:06:80:9E:8B:DA:27:95:D8:0A:C9:CF:78:44:D7:41:FF:FF
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/i_XCBoCei9onldgKyc94RNdB__8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.168.0/23
Signature Algorithm: sha256WithRSAEncryption
12:74:bf:2e:da:fe:c9:cb:5a:b5:e2:08:e6:b6:61:a5:77:04:
3c:78:b9:ca:d4:c4:58:53:e9:ea:3a:88:cc:d8:6c:a8:75:86:
17:45:2d:bc:6c:bc:02:d0:5c:c4:b1:7f:63:b1:f7:63:fe:0d:
ac:1f:8f:e4:e9:92:1f:66:d3:6a:2d:66:63:42:01:70:8b:99:
bf:74:4a:0c:b5:73:2a:72:21:a1:1e:0e:82:64:d6:f6:19:82:
8f:40:f6:12:cc:3e:10:a9:28:38:79:0d:b3:68:9a:aa:eb:cd:
50:3f:dc:d8:29:35:95:0c:ff:33:37:84:00:fe:0d:e8:55:7c:
ee:56:91:f6:6c:74:9c:16:bd:56:da:35:a3:8b:64:28:a7:e8:
00:1b:cd:58:b3:9c:8b:c2:16:b5:45:34:aa:df:64:f3:20:16:
af:9c:bd:20:c5:22:c2:3a:bc:b1:b3:8f:44:ab:a9:42:a9:da:
9e:02:1a:01:83:b3:86:96:55:94:12:2b:59:a2:a3:e2:28:77:
cf:17:d0:f9:bd:0c:ec:7f:2e:48:00:40:3e:36:56:2b:d1:9f:
76:e2:f9:aa:11:f9:74:20:79:8d:2d:fe:c6:07:fc:a3:61:9f:
19:b8:29:d4:39:e5:c6:68:60:89:ce:45:ca:ce:96:31:37:3d:
ea:4d:1a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:05 2024 by rpki-client on console-ams.rpki-client.org