Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/1-WGqzaZjpeSSPx9fcfgJgnyGlp8.roa
File: 1-WGqzaZjpeSSPx9fcfgJgnyGlp8.roa (raw, json)
Hash identifier: cCY2JQbh0tLBRDDQLvgtEOqhOS/RXXYttHl3APq53FE=
Subject key identifier: F9:61:AA:CD:A6:63:A5:E4:92:3F:1F:5F:71:F8:09:82:7C:86:96:9F
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0183751622874E18B083170A611412888956
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/1-WGqzaZjpeSSPx9fcfgJgnyGlp8.roa
Signing time: Sun 25 Sep 2022 14:38:48 +0000
ROA not before: Sun 25 Sep 2022 14:38:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 81.19.131.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:75:16:22:87:4e:18:b0:83:17:0a:61:14:12:88:89:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Sep 25 14:38:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f961aacda663a5e4923f1f5f71f809827c86969f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:54:b4:94:df:74:8d:3b:a3:11:d0:c2:46:8e:
43:1f:0c:ab:a6:23:cb:f8:76:a8:6c:ae:a7:f4:d2:
f5:95:98:47:66:51:46:aa:4b:df:1c:76:bc:6a:31:
9a:81:19:31:aa:78:c4:44:c1:cf:c5:e8:34:28:83:
46:7d:fc:fa:91:fb:c5:8d:14:2e:df:3c:7f:93:fc:
0a:47:da:39:11:6b:b9:2c:4a:1c:e5:97:18:f5:74:
e0:af:d2:dd:6e:6a:95:96:b0:a8:d5:30:c0:d4:3b:
94:e2:a1:ae:a1:a6:41:01:8d:8a:ff:a8:1c:ad:fb:
82:a0:79:b4:66:01:56:c9:5d:e4:15:0e:f2:23:a6:
ab:fe:93:9f:39:d3:bd:6d:bc:e8:51:3e:70:ca:1f:
09:18:33:4f:ad:37:89:ab:15:ba:95:89:ae:d1:8d:
75:70:18:81:31:71:aa:37:0f:12:9b:3f:f8:4c:22:
cc:ff:5c:24:86:a0:68:2f:fe:cb:d8:4a:7c:82:be:
38:3e:43:56:e6:f7:8a:12:fd:17:fb:33:3a:6d:95:
25:fe:02:ef:7b:ad:f4:c1:78:73:fd:0b:42:45:ca:
01:81:88:64:3a:28:37:47:01:36:54:7e:8f:1f:e8:
32:89:cd:fc:83:71:8b:e4:62:1f:35:a9:ff:f1:78:
4a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:61:AA:CD:A6:63:A5:E4:92:3F:1F:5F:71:F8:09:82:7C:86:96:9F
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/1-WGqzaZjpeSSPx9fcfgJgnyGlp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.131.0/24
Signature Algorithm: sha256WithRSAEncryption
20:37:f3:c6:85:05:cd:30:f6:2e:cd:3b:70:17:93:4b:50:2b:
2c:4a:bf:47:b3:91:60:aa:4f:77:65:9a:ae:8e:d5:95:02:f2:
8e:1f:8e:64:1c:5f:d3:68:c7:db:ba:e1:d6:ea:97:d9:3e:4b:
21:a6:31:de:1b:2d:0b:f4:25:12:37:86:8c:19:d5:11:8c:83:
98:25:5e:14:97:4c:4a:ef:3e:74:b0:2f:79:bf:5c:f7:6c:9a:
74:b8:63:3c:3f:5d:e2:77:3d:bb:a2:05:69:23:d9:51:3d:46:
d9:3c:29:1f:c8:98:9a:f3:4c:29:70:8c:81:cf:50:74:94:6a:
80:11:dd:95:07:f8:6b:39:48:b6:1b:49:ab:ae:37:83:f8:3a:
a5:c7:47:30:19:1f:c1:02:8d:35:16:9c:3b:b2:c2:c4:09:86:
be:74:3f:29:04:39:15:a0:2e:93:7a:bb:b4:f8:90:ae:24:49:
5e:43:30:8b:b6:21:aa:9b:91:08:5f:52:f7:71:58:bc:29:95:
1d:95:8f:d2:52:cd:d6:7d:9c:60:0d:d6:3e:5b:09:cd:4e:49:
e7:c8:c9:da:6e:3a:8a:bf:39:e7:97:e3:48:68:fd:d8:d5:24:
e9:8c:43:53:bb:12:e1:fd:d2:e3:73:84:17:5e:70:e5:52:63:
a3:ee:b6:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org