Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/jPH2B3840fs3eUaTzs7d-2VC-Tk.roa
File: jPH2B3840fs3eUaTzs7d-2VC-Tk.roa (raw, json)
Hash identifier: EPIogZwzG/GxMKa3NJDluaq7JyDT6cEY5VM/X4rpZCY=
Subject key identifier: 8C:F1:F6:07:7F:38:D1:FB:37:79:46:93:CE:CE:DD:FB:65:42:F9:39
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 166380C5
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/jPH2B3840fs3eUaTzs7d-2VC-Tk.roa
Signing time: Tue 10 May 2022 04:55:42 +0000
ROA not before: Tue 10 May 2022 04:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61102
IP address blocks: 81.218.219.0/24 maxlen: 24
81.218.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375619781 (0x166380c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: May 10 04:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cf1f6077f38d1fb37794693ceceddfb6542f939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b2:9d:04:4c:e8:7f:51:ad:a7:a5:76:0d:ae:
dd:8d:78:38:ed:a8:80:12:57:56:ce:89:35:a6:87:
51:0b:08:f9:fb:1a:50:c0:7e:83:b9:28:c4:d9:7d:
ba:96:99:d5:06:a4:1f:37:fa:25:6e:f1:6e:38:55:
70:07:fc:c4:e2:19:db:c2:11:30:60:be:ef:8a:2e:
d7:58:a4:cb:55:7b:e1:e0:6e:03:e2:db:9d:a8:35:
2e:f9:b4:0e:f5:54:fa:ca:6a:af:47:7e:60:65:7b:
34:67:42:2e:69:27:73:67:c8:f4:73:f5:9e:60:73:
f3:73:d9:6f:04:46:2f:92:da:f7:81:2c:c5:80:4e:
f6:5f:da:50:d4:cc:7c:ad:62:6e:a8:75:ec:12:73:
97:91:1a:ff:44:f8:ea:f3:56:9d:56:13:2e:aa:1f:
77:94:d7:8f:33:fb:bc:50:b5:26:27:b4:3f:03:44:
12:02:e9:42:cb:d9:06:e2:f0:3d:a9:e9:ba:22:50:
fb:e4:8c:6a:3a:32:65:49:12:e1:1c:1d:c4:44:0a:
80:52:9d:9b:ac:b2:99:4b:eb:5e:ab:98:c3:31:6b:
38:04:89:98:00:b5:8d:ee:57:16:5c:7f:d4:05:ef:
16:cf:a4:30:c1:36:be:b8:8b:07:0a:e1:20:9d:08:
c2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F1:F6:07:7F:38:D1:FB:37:79:46:93:CE:CE:DD:FB:65:42:F9:39
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/jPH2B3840fs3eUaTzs7d-2VC-Tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.218.109.0/24
81.218.219.0/24
Signature Algorithm: sha256WithRSAEncryption
88:9c:af:0b:54:7d:35:f8:33:42:55:7c:d2:30:d0:b7:2b:45:
95:91:e7:d8:98:84:c3:34:cd:2a:84:0c:47:cb:6c:2a:5e:2f:
06:49:68:6f:17:7a:78:84:1d:1b:ff:6a:bd:1a:95:68:18:4f:
3a:d5:e5:46:82:10:49:b0:e0:0b:0c:f8:34:f0:52:b6:39:19:
0d:21:cb:25:64:14:2e:0d:7b:0d:a2:71:ac:15:24:57:78:0b:
a7:12:df:b0:97:a1:4e:87:94:8b:fa:6c:f0:bf:25:ea:e6:9d:
a2:d6:89:f2:5c:89:4d:75:62:78:57:dc:64:86:4a:88:6d:0b:
aa:58:4b:87:19:54:41:39:95:10:79:ee:fe:28:e0:b8:00:5b:
17:dc:f3:0c:f9:fc:36:63:35:ce:37:b0:47:be:4f:0d:0a:df:
ef:08:0a:f5:64:d9:26:a7:84:50:e5:45:bc:49:12:f2:f6:a0:
02:58:8f:d0:58:ae:d3:22:8f:54:6b:c8:d6:63:dd:2c:a8:94:
0a:1c:ef:63:d5:1c:60:00:be:6a:c2:76:32:33:9d:9a:07:35:
0f:51:93:c9:bf:41:ba:b8:9b:f9:f4:56:08:e0:a3:c2:23:b5:
f4:2a:a8:19:ec:59:58:c8:f7:82:57:d2:61:0e:e3:31:49:fc:
23:1f:f1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:57 2024 by rpki-client on console-fra.rpki-client.org