Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/6uNdxVL6XtUydtgDf_BYcaptu60.roa
File: 6uNdxVL6XtUydtgDf_BYcaptu60.roa (raw, json)
Hash identifier: tfYPLUIzwhHbJJbutO9Q4dIUTgHR26odNP2obaQhPMo=
Subject key identifier: EA:E3:5D:C5:52:FA:5E:D5:32:76:D8:03:7F:F0:58:71:AA:6D:BB:AD
Certificate issuer: /CN=d7c148761b67005329aa89135d35ad235173bc48
Certificate serial: 06E784F3
Authority key identifier: D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/6uNdxVL6XtUydtgDf_BYcaptu60.roa
Signing time: Sat 01 Jan 2022 13:56:16 +0000
ROA not before: Sat 01 Jan 2022 13:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200276
IP address blocks: 81.28.248.0/24 maxlen: 24
81.28.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115836147 (0x6e784f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c148761b67005329aa89135d35ad235173bc48
Validity
Not Before: Jan 1 13:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eae35dc552fa5ed53276d8037ff05871aa6dbbad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e0:6d:77:c7:86:8f:4f:a8:68:38:1f:dd:67:
2e:c8:7f:ed:1c:5f:3e:9d:c9:64:42:93:29:fe:91:
da:e3:5b:2d:d3:45:fa:75:c4:57:b6:05:f1:c9:d7:
33:43:d3:82:9b:6f:59:e1:f6:26:44:e9:9e:d9:dd:
9e:3d:7d:d9:e5:d3:fb:6b:39:5f:1d:17:75:d8:0f:
c0:1e:22:a2:7b:61:8b:c1:d9:d8:a2:d9:7d:66:3b:
06:c7:18:fe:8c:85:19:90:22:90:63:c2:6a:07:f9:
c9:0e:84:1e:ca:e2:a7:a3:5b:6e:d5:65:ec:8c:fd:
f3:b9:28:c5:93:42:64:15:6e:84:11:60:65:23:ce:
98:8c:8b:90:6f:e8:99:7a:dc:cb:17:fe:83:fd:f6:
61:bc:82:0f:65:4e:b5:92:48:d1:fa:20:34:f1:d2:
4f:7b:c2:a1:e5:3b:27:31:9c:c6:a0:16:62:63:e5:
7d:33:2e:b7:02:1c:71:94:c4:54:b1:81:2f:f3:36:
44:07:df:19:bf:bf:f2:e8:fb:a5:20:7f:7d:80:ea:
bd:d5:2a:aa:bf:af:fa:17:d4:68:33:2f:56:e0:b8:
e6:ef:4f:e5:4a:75:a0:24:62:91:7c:f6:48:ae:b5:
27:04:61:b8:7e:e8:90:6d:aa:7e:fc:30:54:eb:6e:
89:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E3:5D:C5:52:FA:5E:D5:32:76:D8:03:7F:F0:58:71:AA:6D:BB:AD
X509v3 Authority Key Identifier:
keyid:D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/6uNdxVL6XtUydtgDf_BYcaptu60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.248.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:06:9c:63:cc:11:48:04:95:ce:ea:14:07:a9:1d:aa:eb:e1:
2b:46:5a:56:78:04:18:32:ca:9f:dd:0d:95:c4:95:27:45:40:
4a:bb:a5:bc:57:6e:9f:d2:c8:49:3f:e9:91:ab:6d:de:4c:7b:
d1:3c:e9:90:34:30:e4:02:2c:92:a1:9c:e0:df:9e:33:90:97:
a8:33:6a:f0:48:06:ec:03:ec:ff:d3:5c:53:3b:2f:d5:df:9d:
b6:dc:d8:ca:47:1e:1f:19:64:d2:e6:b4:5b:fc:e7:79:fe:0a:
10:3c:f2:56:ce:00:4a:bd:0b:63:4c:53:cd:73:7d:9e:2c:5c:
31:60:b8:f5:dd:6d:2e:71:b9:1f:0d:26:23:1d:66:43:ca:95:
99:f0:33:83:95:46:af:86:00:e4:00:d6:be:ba:b6:36:33:60:
87:2c:38:89:72:97:41:a9:8f:78:06:45:73:ce:d0:aa:84:e0:
fc:78:82:34:2a:90:b9:43:17:9a:5f:28:13:23:e3:e6:a4:77:
2b:9f:69:81:53:d1:6f:97:9f:1e:e9:1a:1f:86:a5:76:bc:1e:
3c:26:1c:e4:92:1f:16:de:42:ae:e2:70:92:a8:17:2d:a2:94:
4a:3b:be:8b:79:29:08:29:60:4c:86:47:68:46:1c:c9:01:19:
e5:b0:41:94
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBueE8zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
N2MxNDg3NjFiNjcwMDUzMjlhYTg5MTM1ZDM1YWQyMzUxNzNiYzQ4MB4XDTIyMDEw
MTEzNTYxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWFlMzVkYzU1MmZh
NWVkNTMyNzZkODAzN2ZmMDU4NzFhYTZkYmJhZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN7gbXfHho9PqGg4H91nLsh/7RxfPp3JZEKTKf6R2uNbLdNF
+nXEV7YF8cnXM0PTgptvWeH2JkTpntndnj192eXT+2s5Xx0XddgPwB4ionthi8HZ
2KLZfWY7BscY/oyFGZAikGPCagf5yQ6EHsrip6NbbtVl7Iz987koxZNCZBVuhBFg
ZSPOmIyLkG/omXrcyxf+g/32YbyCD2VOtZJI0fogNPHST3vCoeU7JzGcxqAWYmPl
fTMutwIccZTEVLGBL/M2RAffGb+/8uj7pSB/fYDqvdUqqr+v+hfUaDMvVuC45u9P
5Up1oCRikXz2SK61JwRhuH7okG2qfvwwVOtuiTUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTq413FUvpe1TJ22AN/8Fhxqm27rTAfBgNVHSMEGDAWgBTXwUh2G2cAUymq
iRNdNa0jUXO8SDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzE4RklkaHRuQUZNcHFva1RYVFd0STFGenZFZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvZThmNjlhLTE3M2EtNDQ3NS1hNmZiLTAxMTY1MGZiZDRjNC8x
LzZ1TmR4Vkw2WHRVeWR0Z0RmX0JZY2FwdHU2MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
ZThmNjlhLTE3M2EtNDQ3NS1hNmZiLTAxMTY1MGZiZDRjNC8xLzE4RklkaHRuQUZN
cHFva1RYVFd0STFGenZFZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVEc+DANBgkqhkiG9w0BAQsFAAOC
AQEArAacY8wRSASVzuoUB6kdquvhK0ZaVngEGDLKn90NlcSVJ0VASrulvFdun9LI
ST/pkatt3kx70TzpkDQw5AIskqGc4N+eM5CXqDNq8EgG7APs/9NcUzsv1d+dttzY
ykceHxlk0ua0W/znef4KEDzyVs4ASr0LY0xTzXN9nixcMWC49d1tLnG5Hw0mIx1m
Q8qVmfAzg5VGr4YA5ADWvrq2NjNghyw4iXKXQamPeAZFc87QqoTg/HiCNCqQuUMX
ml8oEyPj5qR3K59pgVPRb5efHukaH4aldrwePCYc5JIfFt5CruJwkqgXLaKUSju+
i3kpCClgTIZHaEYcyQEZ5bBBlA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:12 2023 by rpki-client on console-fra.rpki-client.org