Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/KI8yGvGhF5daRugthQAtpGYdXs8.roa
File: KI8yGvGhF5daRugthQAtpGYdXs8.roa (raw, json)
Hash identifier: lA8kSoO77bOh/5aMXntPYp4eTiDtjd/XKGxbNUfODAc=
Subject key identifier: 28:8F:32:1A:F1:A1:17:97:5A:46:E8:2D:85:00:2D:A4:66:1D:5E:CF
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 01853B142886D250E6681063DFD3295CB4D2
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/KI8yGvGhF5daRugthQAtpGYdXs8.roa
Signing time: Thu 22 Dec 2022 18:24:14 +0000
ROA not before: Thu 22 Dec 2022 18:24:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212219
IP address blocks: 81.199.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3b:14:28:86:d2:50:e6:68:10:63:df:d3:29:5c:b4:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Dec 22 18:24:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=288f321af1a117975a46e82d85002da4661d5ecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fa:fa:3b:18:16:7d:d0:4a:10:9b:e7:3a:a2:
94:6d:f8:06:af:e4:e8:b4:6f:bd:40:e8:dd:57:51:
f7:d6:c9:83:17:ae:d9:33:3c:19:85:0c:c2:59:46:
2b:7b:c5:50:92:4e:d4:5b:2a:00:26:0c:c8:21:c6:
3a:64:75:e1:0d:c5:ed:f6:81:de:2d:e9:be:39:7e:
5a:cc:15:70:d9:79:d2:c2:21:df:e3:dd:5f:4b:33:
d6:24:c1:ac:e5:94:70:5f:d3:9a:2e:3c:19:ce:d1:
cf:2e:7c:8c:68:ed:5b:8b:a5:3f:00:fc:c0:28:63:
ff:36:d8:bf:e3:46:bb:99:40:8e:f1:6f:da:ae:f5:
3d:48:a0:3c:e1:41:60:df:cf:d1:3e:78:2b:b0:a9:
2f:f0:1b:52:01:93:22:8c:41:c4:4d:ec:21:0c:30:
2e:80:7f:96:1d:60:f2:d2:c1:7f:2c:58:c8:7a:e9:
9d:12:35:b1:cc:32:42:5a:17:1d:7e:e7:52:46:47:
0d:1c:2b:a7:f3:a2:8c:c5:c3:bd:23:93:fc:9b:13:
5e:3c:c3:d6:fb:cc:64:0a:68:53:fe:08:2f:e4:d9:
70:f0:e1:6e:69:8e:98:30:12:30:ed:00:f8:e6:13:
09:a1:aa:76:e8:26:f8:2f:a9:3d:44:c9:e6:57:a8:
be:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8F:32:1A:F1:A1:17:97:5A:46:E8:2D:85:00:2D:A4:66:1D:5E:CF
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/KI8yGvGhF5daRugthQAtpGYdXs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.26.0/24
Signature Algorithm: sha256WithRSAEncryption
93:f5:34:60:d5:8f:27:7f:09:23:53:d2:ab:c0:d0:bb:5d:c2:
2c:b1:5f:86:93:63:af:04:a8:5b:17:90:19:7a:4e:fa:8b:57:
ef:20:74:01:01:69:c6:63:9f:9e:bb:7d:d7:ac:b7:31:f6:3b:
6e:28:aa:df:72:35:aa:1b:31:0c:92:60:19:f7:33:54:3b:5d:
18:8c:0b:25:86:75:c7:6f:93:19:bc:df:0b:31:af:0e:39:3f:
4e:b9:b9:3b:6e:dd:d8:0a:ed:da:86:5d:cc:c5:36:9b:97:f0:
ec:14:94:a1:9e:47:ca:b1:98:98:3d:59:4e:4c:a4:a3:13:a9:
9d:4f:58:87:2c:5d:a7:4b:0e:4c:df:04:0a:ca:a7:ab:cc:4e:
da:be:07:3f:1b:73:58:bd:28:2e:0a:7e:6e:cc:87:12:cf:1e:
af:b0:28:58:88:75:70:bc:a0:9a:b7:e3:c5:1c:32:0a:80:7e:
3e:82:38:65:ce:b4:73:d4:9b:8f:f7:36:3d:05:e9:15:2a:13:
01:35:f3:e5:85:16:7b:ab:56:81:b0:ba:e9:4b:03:29:97:cc:
22:3a:be:31:15:9a:44:e7:54:ec:04:10:07:ac:80:7a:f2:c0:
bc:1c:36:bb:de:38:3a:57:63:e1:e2:19:a2:86:b7:ae:d9:ea:
92:cc:fa:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:57 2024 by rpki-client on console-ams.rpki-client.org