Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/bWqXx6JnNX9oPemhQZnFc86jSwY.roa
File: bWqXx6JnNX9oPemhQZnFc86jSwY.roa (raw, json)
Hash identifier: liGW5cSK5kF6m3tJ1LBzUhhnCfD4dDz7Pnx7+HTXpE4=
Subject key identifier: 6D:6A:97:C7:A2:67:35:7F:68:3D:E9:A1:41:99:C5:73:CE:A3:4B:06
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 01843B24144B05C29AE0C3AB9EAB93FC50F3
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/bWqXx6JnNX9oPemhQZnFc86jSwY.roa
Signing time: Thu 03 Nov 2022 01:38:50 +0000
ROA not before: Thu 03 Nov 2022 01:38:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205431
IP address blocks: 81.199.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3b:24:14:4b:05:c2:9a:e0:c3:ab:9e:ab:93:fc:50:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Nov 3 01:38:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d6a97c7a267357f683de9a14199c573cea34b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:26:64:b4:d2:52:85:cc:85:31:12:12:f7:0c:
00:3a:1d:3d:d5:27:80:51:f5:3c:d4:6e:b8:0b:ab:
fb:4a:80:68:5a:d1:df:7f:a4:c6:d5:c4:4e:9d:b0:
39:2b:b6:eb:88:7c:53:03:76:e9:80:4c:c7:42:6c:
fb:cd:6f:cc:18:05:5d:d4:06:d4:b1:8b:19:f6:fe:
30:aa:1f:14:65:f9:e9:9b:10:02:54:81:9b:da:5a:
bb:05:14:ae:50:e2:a8:e6:16:95:24:f9:51:71:aa:
3e:02:0b:d0:91:5a:67:94:7d:56:94:96:bf:4d:6e:
9b:a2:1f:2c:5e:d1:e3:a9:1f:d8:aa:ee:8a:4d:e1:
86:c2:84:20:82:98:57:06:6f:ca:4c:75:08:e9:e3:
47:38:86:de:e7:52:67:0f:92:e5:1c:de:57:37:74:
86:a5:e7:d9:5a:a4:a5:3d:50:c5:18:8f:11:bd:57:
cc:db:54:fe:84:86:d5:78:57:07:9f:ef:7b:5e:0e:
5e:f9:a8:61:08:db:77:d9:f5:72:f4:24:4d:70:4a:
6c:85:ab:92:46:62:8c:78:c9:6d:5d:99:28:42:d8:
84:d9:03:ad:fb:96:a0:e5:b3:35:81:06:58:da:74:
a3:44:37:5b:5e:7b:8f:a1:d4:ff:84:bc:51:ac:80:
dd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:6A:97:C7:A2:67:35:7F:68:3D:E9:A1:41:99:C5:73:CE:A3:4B:06
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/bWqXx6JnNX9oPemhQZnFc86jSwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.29.0/24
Signature Algorithm: sha256WithRSAEncryption
30:eb:fd:e0:25:99:60:86:bc:aa:f1:4e:69:08:ff:f4:65:24:
f6:31:ec:f3:5d:c6:47:86:83:57:90:f2:6f:c6:65:67:49:b5:
0a:91:1d:ed:be:40:6e:6b:e8:2f:b5:2a:38:0e:7b:36:15:3a:
4a:31:69:38:ff:6e:67:70:14:18:98:14:b1:56:55:4e:cc:eb:
a6:8d:11:9c:7b:9d:5f:35:0a:a9:4e:dc:bc:af:59:bb:23:0f:
af:f8:64:9f:75:f1:be:9a:c8:b4:f6:4a:00:51:bc:18:b9:b9:
55:56:63:58:4c:84:e2:56:96:12:49:2e:d0:d2:dd:34:7d:a6:
92:86:3f:58:59:7e:75:21:18:06:69:51:f2:4c:ff:82:91:a3:
9f:a8:91:93:95:3a:7e:7b:07:f4:eb:87:dd:42:c6:9a:a7:d1:
3b:0b:0a:02:e6:41:05:8d:44:7d:8f:b0:ae:ea:16:e5:9c:5f:
ea:51:d2:29:4f:1e:9e:1c:e3:65:e4:53:ca:73:dc:69:80:ec:
f0:60:e1:c1:67:25:e3:da:27:e5:87:02:5d:9c:0e:4b:c1:03:
72:29:9c:ac:0c:81:85:4c:65:cb:04:a6:f6:56:e1:5a:b4:be:
2d:55:1a:d6:9e:60:e5:75:8b:eb:15:72:86:a3:be:63:6b:9e:
a3:4b:5d:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org