Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/P-rpc82TYEEqpOsgVahOOroPImc.roa
File: P-rpc82TYEEqpOsgVahOOroPImc.roa (raw, json)
Hash identifier: QhEtC9BmWxZo07tJ+ltqaFKPJcm/XSlL4kp4x4Y7U2M=
Subject key identifier: 3F:EA:E9:73:CD:93:60:41:2A:A4:EB:20:55:A8:4E:3A:BA:0F:22:67
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 0272402A
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/P-rpc82TYEEqpOsgVahOOroPImc.roa
Signing time: Tue 08 Feb 2022 14:54:48 +0000
ROA not before: Tue 08 Feb 2022 14:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 81.199.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41041962 (0x272402a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Feb 8 14:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3feae973cd9360412aa4eb2055a84e3aba0f2267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d5:a5:ed:a1:2c:c5:d9:49:75:98:10:96:6c:
b0:b2:63:1c:f8:ee:16:d1:2e:a3:6d:de:77:ee:e7:
6e:de:0f:a4:4d:e8:4e:b3:48:06:d2:15:42:99:6c:
3f:0f:c2:c8:ed:81:c1:c9:0d:b2:50:cb:cf:bd:5d:
04:5d:00:90:2a:df:40:c4:a9:e5:a2:3d:6c:22:59:
4b:38:47:0f:f3:1d:03:19:4f:fb:09:ef:f0:1d:93:
63:91:dd:e2:36:c5:18:0a:b1:77:36:f9:d2:48:d1:
33:6f:4d:10:49:17:68:4b:6a:20:c0:4f:13:f9:fe:
60:fb:48:00:4c:7b:00:01:4d:a1:76:71:c5:67:af:
8d:b5:e3:1b:05:c7:60:c3:d1:11:3d:ba:5b:88:18:
f8:05:3e:d9:1a:30:f0:1e:22:e0:90:25:f4:6f:cd:
15:22:b7:0c:ba:27:a5:c9:57:73:d9:84:71:5b:f1:
d3:1f:5b:22:84:e3:99:e1:d4:3c:18:05:87:d7:85:
66:e0:b6:d7:16:23:df:47:41:48:88:c5:37:6b:e3:
e8:b4:4f:33:f5:57:62:11:ab:d6:bb:aa:60:bb:c0:
13:23:d7:7b:f8:14:fc:fd:5a:7f:97:e6:3d:9d:12:
43:85:ea:38:2c:4b:48:7f:af:9d:b9:8b:ac:7c:88:
ac:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:EA:E9:73:CD:93:60:41:2A:A4:EB:20:55:A8:4E:3A:BA:0F:22:67
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/P-rpc82TYEEqpOsgVahOOroPImc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.26.0/24
Signature Algorithm: sha256WithRSAEncryption
06:40:a6:bc:49:69:94:45:4f:06:d6:3d:c8:b4:75:fa:72:6c:
ac:98:02:15:be:57:84:1a:52:ee:b8:f9:cf:63:0a:37:2e:e4:
37:bd:74:d3:99:20:40:5a:3c:99:af:dd:f7:9a:47:a3:e4:03:
e2:21:10:71:90:21:95:59:f9:e0:3d:6f:e0:02:7f:72:49:3d:
54:6b:2e:d3:7d:fd:02:86:c2:77:d5:0e:e6:b4:5a:1e:78:99:
b2:0a:14:d0:9f:37:4f:51:5c:f2:f7:50:ab:e1:e1:68:4c:c9:
b5:5b:49:f6:a5:c5:e3:cb:f6:3c:d9:ae:60:4a:27:44:bd:5c:
50:eb:c8:e6:33:ef:10:3a:8a:33:97:2f:53:fb:9c:72:ae:3b:
da:52:28:fd:5e:6b:4d:4b:bb:8d:03:2e:f3:5c:fa:b3:d4:65:
04:72:df:ee:e9:33:b1:ae:aa:56:33:86:98:d0:a7:12:8b:ca:
84:ec:5f:dd:64:c0:42:c1:76:52:4b:ca:d3:f8:57:5e:f6:83:
44:fb:85:c6:f8:53:8c:2b:cb:fc:4f:64:61:66:cb:06:5b:a5:
1a:59:6a:4c:0e:66:e1:18:9b:6c:19:84:f8:c7:3b:03:d0:40:
25:28:20:de:58:b1:4b:cc:be:7b:67:7d:6a:1a:d7:a5:70:d7:
57:df:b3:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org