Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/P2KQSLR-XmUwrT2aJO6J55oOgXo.roa
File: P2KQSLR-XmUwrT2aJO6J55oOgXo.roa (raw, json)
Hash identifier: Niq/Tjm/I+Zi17rRSGSiLpD9WNP53+qZDKEiAzIkbvQ=
Subject key identifier: 3F:62:90:48:B4:7E:5E:65:30:AD:3D:9A:24:EE:89:E7:9A:0E:81:7A
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 031095DE
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/P2KQSLR-XmUwrT2aJO6J55oOgXo.roa
Signing time: Wed 13 Apr 2022 14:47:23 +0000
ROA not before: Wed 13 Apr 2022 14:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 81.199.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51418590 (0x31095de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Apr 13 14:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f629048b47e5e6530ad3d9a24ee89e79a0e817a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d5:40:41:74:76:b9:b8:c7:89:25:51:51:12:
df:b3:82:e5:78:1f:4d:ec:31:62:fe:ee:e8:86:d8:
09:9e:15:29:cf:f0:27:9c:be:05:34:0a:96:cd:45:
02:39:c4:2e:45:ca:be:ae:ef:92:0b:5e:e3:cf:8e:
95:8b:ab:55:c7:5c:e9:5f:cf:7a:4a:21:9f:dc:4e:
7e:a0:0b:fd:72:3f:bd:9e:87:9a:17:0f:50:05:73:
6f:37:b0:b1:76:41:f1:ff:5d:d3:d6:4a:f6:59:1e:
74:dd:8f:73:24:bb:c0:7a:3e:c2:1a:61:f8:58:6b:
20:ee:f3:67:63:64:6d:ec:31:39:c8:e3:8d:1e:80:
2f:65:3e:94:20:04:72:61:46:47:9a:73:56:be:da:
0b:ec:ee:71:67:e7:52:24:44:67:d1:4d:f1:10:67:
3f:35:2a:92:de:0c:a4:8f:6e:19:00:91:65:9b:06:
2c:32:af:d6:a4:67:cf:9e:e7:59:aa:10:c8:df:fb:
e6:86:d1:a9:71:48:97:ce:7d:f6:44:af:35:ca:3c:
72:81:9e:5a:19:72:63:d7:1f:bf:4d:23:23:8d:76:
b8:30:a7:6a:a1:ac:04:25:1a:db:68:18:0d:9e:78:
71:a1:e5:63:59:fd:6e:f1:42:e6:93:35:a9:f7:bf:
d1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:62:90:48:B4:7E:5E:65:30:AD:3D:9A:24:EE:89:E7:9A:0E:81:7A
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/P2KQSLR-XmUwrT2aJO6J55oOgXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.26.0/24
Signature Algorithm: sha256WithRSAEncryption
43:2e:5a:98:5e:45:2d:01:cd:a9:60:50:fe:b3:a2:bc:fd:b6:
16:36:6c:4a:84:65:17:84:d1:d6:c9:b9:4b:4b:e3:af:7c:12:
73:07:97:7f:a8:af:4c:86:97:bf:56:c6:82:86:e9:94:2b:0e:
93:91:9a:ad:66:45:9e:33:02:01:d2:b1:9a:0a:d1:bf:9c:79:
92:35:90:cf:59:1e:1f:a8:90:19:e6:6d:61:d3:69:33:26:f2:
81:8a:c6:71:30:cf:20:f5:eb:5e:5e:1a:4a:13:d6:71:88:7c:
88:aa:b0:2f:67:b1:2c:34:70:4a:de:e4:ea:b4:61:57:d3:fc:
65:b3:85:cb:03:e4:a0:c8:18:1c:d4:ae:b5:68:cb:7d:0c:78:
5b:99:74:9c:61:bd:0e:d8:14:e7:82:5c:9b:cb:af:ae:3e:40:
a7:7a:ba:4f:73:9c:a2:b2:93:ae:d4:91:ca:35:b4:8d:10:58:
18:ca:12:d9:72:61:a1:55:ee:85:30:87:1a:43:f7:19:04:33:
5a:a9:0e:c8:ea:3f:91:84:ec:df:3d:af:ce:8a:72:69:98:33:
52:75:96:b9:a4:89:3f:6e:ef:9b:ea:91:d2:e5:3f:fe:be:03:
6e:b9:e9:fc:b2:c4:ca:40:c6:06:fc:03:2a:20:d9:9a:1e:71:
5b:7e:c3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org