Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/CcxfaIPEznVjaLhaptUO62842FY.roa
File: CcxfaIPEznVjaLhaptUO62842FY.roa (raw, json)
Hash identifier: RzQmceFUZTj8E9gRKlYuaj83TdjMqUBpzln32/BJ6zY=
Subject key identifier: 09:CC:5F:68:83:C4:CE:75:63:68:B8:5A:A6:D5:0E:EB:6F:38:D8:56
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 01827EAC6109288C6316629BA5880C77ADD8
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/CcxfaIPEznVjaLhaptUO62842FY.roa
Signing time: Mon 08 Aug 2022 18:16:42 +0000
ROA not before: Mon 08 Aug 2022 18:16:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 81.199.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7e:ac:61:09:28:8c:63:16:62:9b:a5:88:0c:77:ad:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Aug 8 18:16:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09cc5f6883c4ce756368b85aa6d50eeb6f38d856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e3:5c:98:e7:1b:da:7a:3d:91:35:e9:63:65:
36:68:21:04:b4:cf:ab:e5:c8:f1:0f:03:bb:86:49:
f8:55:ee:b1:7a:9e:e1:a0:4a:0d:6c:05:1f:cb:16:
e3:e9:05:8c:9e:3b:b0:1e:2a:ea:66:a9:12:83:9f:
af:42:21:27:69:c3:85:37:2e:a4:28:87:b5:f0:e9:
c5:ba:75:83:ca:c9:36:3d:dc:19:76:7d:75:93:58:
bc:cb:ae:8b:fb:28:55:c9:31:07:c2:e3:e4:9f:3a:
e9:c9:a3:d8:8b:40:bf:1c:20:55:29:2d:7e:89:b6:
a4:4e:34:a0:dd:4d:7f:99:e3:f4:b7:6c:a5:9b:da:
eb:e8:a8:36:8e:58:17:08:8d:23:81:91:12:63:f6:
7a:35:f0:9f:f0:56:41:4c:1f:04:14:b3:f5:54:c7:
ec:a1:f4:90:b2:7a:99:55:4c:0e:c3:65:42:a9:56:
74:ff:1d:1d:40:73:e5:41:2d:56:7f:4d:42:79:01:
3d:3a:90:c6:53:54:ac:7b:b6:31:03:03:35:bd:cb:
aa:c9:d5:37:6c:3a:5d:4d:4e:21:0f:54:32:30:b3:
c8:57:c6:dd:20:dd:d1:a0:25:c2:87:d0:d0:7c:be:
60:5e:e2:5a:4a:06:2b:52:21:c9:1b:5f:59:f9:c8:
48:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:CC:5F:68:83:C4:CE:75:63:68:B8:5A:A6:D5:0E:EB:6F:38:D8:56
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/CcxfaIPEznVjaLhaptUO62842FY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.28.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:85:fd:80:c3:91:fd:ce:be:0f:5c:4c:d5:63:0a:4e:27:88:
91:8c:70:00:18:ce:2b:28:36:53:78:e8:45:70:e2:10:e1:b5:
b3:ac:ee:69:6a:10:6f:be:e8:8c:d4:ff:ef:7c:19:4f:44:2b:
32:5c:ac:65:c0:35:73:95:00:09:d4:b4:ee:7e:18:e9:4e:cb:
de:1e:96:b4:54:bc:8e:58:ef:fa:6c:2d:fc:ed:04:ac:02:0e:
4a:26:80:c9:b3:69:0e:48:ce:7b:29:e7:ad:7f:74:e1:d3:9e:
67:a5:5d:a7:3c:ea:3f:6b:55:fc:ca:97:9d:df:da:8f:52:19:
2c:64:16:73:37:03:b9:7d:65:75:17:f2:1a:59:bb:ca:23:ed:
b7:df:2d:1a:d8:de:cf:93:a0:cb:7f:14:62:a4:de:31:72:8e:
cf:14:70:18:56:9f:a0:65:9a:4f:fa:3d:f9:ce:29:b9:28:2a:
d6:5f:9d:68:1a:58:a6:e2:0a:a6:1b:35:43:cb:b4:4e:16:28:
d0:b1:96:12:fc:8f:85:dc:60:50:85:26:ad:20:12:f0:01:4a:
3d:70:9a:7e:ce:be:a1:6c:3e:89:90:cc:3d:7d:c6:a9:48:59:
17:62:44:a9:5e:52:93:75:d2:a7:b0:a4:69:7c:5b:3c:76:36:
8d:d4:f0:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org