Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/fuQ42a3OvvI4iTGW26Sx2UzrM_w.roa
File: fuQ42a3OvvI4iTGW26Sx2UzrM_w.roa (raw, json)
Hash identifier: kiLJHahbH7aUIneYAOSvv8OVziZSvXib8kkaStXSVGc=
Subject key identifier: 7E:E4:38:D9:AD:CE:BE:F2:38:89:31:96:DB:A4:B1:D9:4C:EB:33:FC
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 02180E35
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/fuQ42a3OvvI4iTGW26Sx2UzrM_w.roa
Signing time: Sat 01 Jan 2022 05:58:32 +0000
ROA not before: Sat 01 Jan 2022 05:58:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 81.199.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35130933 (0x2180e35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Jan 1 05:58:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ee438d9adcebef238893196dba4b1d94ceb33fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:37:5c:75:3c:40:1f:9d:c6:23:75:b4:f6:b4:
f5:a7:88:ce:a1:22:f5:91:60:18:f6:62:a6:65:b9:
53:35:2a:63:18:2f:c8:b4:33:ee:ce:7f:b5:6a:0e:
db:e9:cd:66:21:0b:95:6b:aa:31:37:d4:f4:f5:28:
ec:24:f7:b1:60:e1:a9:1c:c6:5c:76:53:95:98:3c:
29:60:2c:b6:cb:a1:dd:e0:f3:4e:16:33:c0:ea:0e:
5d:e1:cd:f0:00:7d:56:a2:38:4a:d2:da:93:d4:f2:
54:bb:b5:58:34:c3:a1:6f:0b:ec:d9:34:6d:9c:05:
e8:be:7e:be:c5:a5:7a:7f:44:97:a6:62:b9:4c:93:
42:3d:20:88:44:ea:63:7e:62:c9:ad:fe:4f:52:7b:
ff:c8:b6:26:de:38:38:e2:a0:84:d1:44:52:bc:c9:
2a:bc:27:73:0f:4f:00:83:bb:50:31:24:b7:a8:c2:
ce:64:7e:e2:37:3a:a5:1a:bc:5f:88:b6:4f:a7:55:
c1:e7:ad:c2:f4:f5:b5:d8:52:e6:26:55:e6:b3:29:
bf:0c:b6:c3:cf:08:04:aa:05:a3:bb:cb:ae:d0:30:
67:39:96:31:6c:9f:9d:cb:4f:c3:11:c4:d7:b0:4b:
01:f5:49:8d:bf:c0:d1:08:65:af:3f:52:32:89:94:
82:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E4:38:D9:AD:CE:BE:F2:38:89:31:96:DB:A4:B1:D9:4C:EB:33:FC
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/fuQ42a3OvvI4iTGW26Sx2UzrM_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.26.0/24
Signature Algorithm: sha256WithRSAEncryption
99:4d:fa:59:12:3b:c7:cc:8e:a5:c6:72:2b:b4:c1:10:10:7c:
66:ae:47:34:6f:ca:2c:1e:20:fa:67:a6:00:e8:e2:53:1b:ba:
28:3d:23:6f:c5:0b:35:40:13:9e:20:a8:79:ad:33:32:3a:9d:
9a:ea:c2:c6:2a:37:f7:d7:e3:b7:c9:38:4e:67:11:a9:ca:bf:
0c:25:91:b5:d6:ba:01:23:e3:78:7a:89:c1:14:a9:16:94:0b:
e7:1e:77:2d:a2:11:b3:40:19:0b:e0:77:64:73:07:a0:a1:f4:
2f:0b:1c:9e:1c:c5:67:80:4d:b5:f1:14:34:21:78:23:b5:ac:
2b:96:03:52:fa:a1:36:0a:3e:4d:a1:49:50:8e:6e:80:9f:12:
9e:1e:dd:57:a4:7f:7d:42:0f:49:f4:ad:c7:ee:00:ea:bd:b7:
43:62:47:28:3a:88:3e:bf:21:83:51:cb:e9:56:38:f9:dc:92:
87:b8:fd:c5:04:2a:69:5c:25:0f:78:51:c0:64:dd:e2:46:0c:
1c:f6:57:92:63:45:8d:fb:6f:27:12:a4:80:55:13:40:66:f4:
4c:28:8b:c8:65:87:14:ca:98:c7:41:0c:e5:ee:c7:d4:af:1a:
4d:64:37:77:ab:5f:e7:6e:aa:61:0b:ea:e4:95:25:08:1f:b1:
03:16:47:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org