Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/arEYYa6TQgtixnt7D3GCpki5wrM.roa
File: arEYYa6TQgtixnt7D3GCpki5wrM.roa (raw, json)
Hash identifier: 0vRXrwrWYfVahTSXMbKErjPESWvAHGUIMtdJdEPkzh4=
Subject key identifier: 6A:B1:18:61:AE:93:42:0B:62:C6:7B:7B:0F:71:82:A6:48:B9:C2:B3
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 03B3B44D
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/arEYYa6TQgtixnt7D3GCpki5wrM.roa
Signing time: Fri 24 Jun 2022 13:48:31 +0000
ROA not before: Fri 24 Jun 2022 13:48:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137409
IP address blocks: 81.199.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62108749 (0x3b3b44d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Jun 24 13:48:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ab11861ae93420b62c67b7b0f7182a648b9c2b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cf:d8:60:5f:91:95:16:8c:6e:d9:a9:7a:2b:
83:69:a6:f0:45:3e:a0:e4:c8:bc:74:9f:84:4c:7d:
b0:b0:fc:26:19:9a:f0:d4:ae:78:83:6e:4d:ce:8c:
4f:6d:ee:62:4c:54:11:d7:6e:b5:12:43:27:ce:8b:
c0:84:6e:6a:38:5f:ad:90:d3:0a:6b:aa:2b:32:9a:
81:fe:e7:48:c6:2d:5f:b2:29:8d:15:58:52:65:02:
8d:e2:64:49:d4:58:fe:0b:0a:2a:aa:b3:5f:fb:8f:
8d:a3:e9:28:56:e6:c7:e6:46:fe:57:15:c6:23:3a:
d0:67:ce:fc:32:20:2e:62:84:99:62:22:6e:e8:94:
cf:c3:9e:e5:93:b5:a4:ae:71:84:c1:35:7e:59:ce:
47:f9:28:06:51:4f:42:bf:25:a0:31:49:da:71:62:
a2:25:95:6c:38:42:a2:d1:c4:1d:60:8a:a9:7c:36:
0e:e5:e3:7f:49:73:eb:91:cc:6a:a2:e8:eb:d1:72:
f1:cc:76:55:31:d1:b8:13:3c:14:6e:c9:4b:44:a2:
55:7e:42:7a:4a:74:20:fe:0c:ec:24:8e:32:20:a4:
33:96:7f:d0:a8:b4:71:cf:64:df:0d:54:ad:90:f8:
65:00:2f:90:88:79:1d:d9:99:6b:10:4a:1d:47:18:
94:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B1:18:61:AE:93:42:0B:62:C6:7B:7B:0F:71:82:A6:48:B9:C2:B3
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/arEYYa6TQgtixnt7D3GCpki5wrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.27.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:84:c0:5f:61:a0:95:b8:8d:8f:dd:2d:f3:1c:00:56:23:79:
ed:08:0e:9c:da:58:e9:d6:81:2c:ad:f5:32:4d:5f:f5:10:b4:
1c:69:a1:34:6d:4d:db:7c:6a:96:a7:9d:dd:4c:b8:7c:fe:f3:
87:c7:1a:c7:b6:af:4e:6b:f4:48:5a:b4:05:f4:85:e3:2a:b6:
48:57:9f:db:dc:d7:21:d0:68:2d:dd:15:85:6c:5e:9b:d1:7d:
d0:11:3e:dc:08:bb:2b:4f:ae:c8:41:e9:ec:91:f8:76:57:2c:
9c:00:a7:77:91:25:00:19:51:1f:18:b4:bd:b1:6e:db:65:c9:
3f:b1:32:fa:45:d6:1a:46:3a:70:be:be:84:9a:ce:2b:17:52:
0f:9c:b9:5d:5d:01:39:1f:61:48:02:fa:ee:2a:fa:66:d4:ea:
c9:55:24:b4:de:f2:25:ee:46:15:0f:82:85:53:e5:ec:41:23:
ac:1d:a9:e4:26:06:2f:b5:92:47:bb:fa:56:ca:fb:76:e1:d7:
d5:68:c2:3e:ff:55:b8:a7:95:78:c7:f3:fe:66:63:48:51:0e:
a6:bf:21:53:1c:4c:3e:cb:f3:31:a6:be:17:d8:bf:29:85:2c:
57:19:1a:6a:a7:19:5f:48:f5:3b:62:1c:40:7b:b9:c9:9e:61:
33:52:7e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:32 2023 by rpki-client on console-ams.rpki-client.org