Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/390I-Pe5OPP4-o7HhwLCnPeFUd0.roa
File: 390I-Pe5OPP4-o7HhwLCnPeFUd0.roa (raw, json)
Hash identifier: 7xtRqTp53iOHfdB6zdRTWo51M5dV7ZQ5mEXMbu6VSmE=
Subject key identifier: DF:DD:08:F8:F7:B9:38:F3:F8:FA:8E:C7:87:02:C2:9C:F7:85:51:DD
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 04EC0E39
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/390I-Pe5OPP4-o7HhwLCnPeFUd0.roa
Signing time: Thu 26 May 2022 14:15:15 +0000
ROA not before: Thu 26 May 2022 14:15:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207967
IP address blocks: 81.19.131.0/24 maxlen: 32
81.19.139.0/24 maxlen: 32
81.19.134.0/24 maxlen: 32
81.19.140.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82579001 (0x4ec0e39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: May 26 14:15:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfdd08f8f7b938f3f8fa8ec78702c29cf78551dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3e:6a:2d:8f:6d:68:b4:b0:68:40:16:c1:5b:
2d:47:ee:4d:43:5b:25:6c:26:bc:29:49:8f:68:51:
51:34:d2:85:69:e4:97:7b:eb:0f:1d:60:d3:bb:d0:
e4:0b:77:b9:c9:9a:41:44:6e:98:32:4a:5c:46:89:
3a:c1:0a:21:1b:5a:81:35:48:8c:da:31:fa:5b:72:
35:6d:f9:ca:9c:d2:a9:c7:72:23:d3:4e:fc:44:75:
27:d5:58:1f:a3:46:e5:dc:0a:8b:ee:ae:bf:e2:0e:
64:ac:93:c2:65:83:79:2f:e1:9a:f7:db:0f:b3:13:
c9:ea:8b:c4:1d:88:f9:7a:8a:ea:ba:ad:81:d1:2f:
2b:32:e9:3d:b8:4a:71:4e:ef:e1:df:68:64:a1:01:
11:bc:0c:11:34:a9:b5:e8:f9:8e:e9:43:fd:9d:77:
58:b3:d4:99:5b:1a:fe:4e:61:e1:a7:b2:81:9f:e4:
af:3f:2c:5f:df:bf:4e:e5:27:26:27:93:82:27:e9:
a0:3b:c3:d0:41:87:d2:ed:5e:6f:73:67:8b:ca:05:
ae:fb:9f:12:75:1a:0e:f8:67:ac:d7:33:ee:a3:1a:
95:28:94:83:a9:c3:9b:78:2c:aa:91:3c:e8:e7:00:
b9:ab:d8:6a:d1:a3:6d:d6:4b:97:97:99:89:05:65:
db:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:DD:08:F8:F7:B9:38:F3:F8:FA:8E:C7:87:02:C2:9C:F7:85:51:DD
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/390I-Pe5OPP4-o7HhwLCnPeFUd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.131.0/24
81.19.134.0/24
81.19.139.0-81.19.140.255
Signature Algorithm: sha256WithRSAEncryption
5f:a9:0a:ad:13:98:d1:97:58:32:a4:5b:b7:cf:bd:81:19:0c:
5f:73:c8:58:bb:e7:d3:6a:e3:2f:80:fe:8f:8d:07:16:c3:e2:
69:f2:1a:b1:a6:d2:fb:61:a2:a8:56:99:e3:8c:69:43:4f:ce:
a8:c7:41:34:b1:9b:fe:01:b7:b7:e9:93:e2:37:cb:1c:3f:19:
d7:04:21:73:a7:dc:33:f2:e4:8b:3c:30:0b:0b:1f:32:7f:c3:
2d:6f:59:07:96:a3:fe:97:8a:55:6d:19:c8:e9:17:77:7e:86:
93:bd:7a:c7:bf:e9:f8:69:f1:41:c8:21:03:3c:48:6f:2d:e6:
3d:78:5e:f5:21:f4:62:a4:0a:61:b6:e0:cf:7f:99:9a:d5:09:
f1:4f:b0:50:70:1c:b8:18:9c:64:25:66:47:e4:a0:9d:f8:32:
0b:be:36:aa:4d:30:36:d7:9a:9a:77:9c:b8:18:bb:94:b4:9e:
98:52:fa:97:e1:07:89:cb:7f:55:a6:41:88:42:ea:aa:5c:e4:
9e:8d:f7:02:8c:75:30:fa:13:ae:c3:2d:24:71:96:a3:ae:58:
3f:69:cd:46:10:47:4c:95:a9:8b:29:67:e0:3e:b1:04:c8:2b:
71:d4:70:01:33:2e:6a:3b:1c:ef:8e:4e:ad:35:e1:28:e0:1b:
23:9e:94:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org