Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/4X81cRSMSXmn59rzscUOhX0BMdI.roa
File: 4X81cRSMSXmn59rzscUOhX0BMdI.roa (raw, json)
Hash identifier: CHQyHHDHL3og54WB9bLHrR72fLzvomCLb2YAh5qFWXE=
Subject key identifier: E1:7F:35:71:14:8C:49:79:A7:E7:DA:F3:B1:C5:0E:85:7D:01:31:D2
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 03AC0CBA
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/4X81cRSMSXmn59rzscUOhX0BMdI.roa
Signing time: Wed 12 Jan 2022 12:28:38 +0000
ROA not before: Wed 12 Jan 2022 12:28:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207959
IP address blocks: 81.19.139.0/24 maxlen: 32
81.19.135.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61607098 (0x3ac0cba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jan 12 12:28:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e17f3571148c4979a7e7daf3b1c50e857d0131d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e1:a0:77:74:cf:47:3d:03:0c:63:dd:cf:d9:
3d:c3:ff:66:64:18:d8:c8:f6:08:87:c2:a1:bf:4c:
98:c2:95:8c:23:46:19:f6:1f:12:69:5a:9f:82:3c:
73:ae:a4:de:b7:43:06:41:b4:56:cb:6d:cf:47:41:
3f:ca:8a:c9:75:f2:1f:3a:eb:27:11:56:5d:91:0b:
ec:a8:7c:e2:35:29:6d:0d:c1:12:85:fb:0d:59:60:
31:67:9f:dd:1c:39:18:93:d5:13:f3:07:cd:ed:88:
81:e6:2b:7b:78:70:f2:a3:97:d1:1a:a0:7c:88:5c:
e9:08:33:1a:b8:45:b8:b7:d9:37:0d:f1:10:f0:38:
ef:3a:15:2d:08:26:a5:9c:10:c3:d5:cb:5b:e4:7e:
8b:9a:32:6f:7d:17:88:69:83:86:52:91:48:29:1a:
84:94:38:a1:b4:27:dc:1a:09:51:c9:fd:b6:6b:74:
af:07:69:74:fb:ae:82:ab:e7:b2:9f:79:72:85:be:
ec:98:61:31:2d:a6:67:ba:34:dd:79:46:75:d6:db:
2f:e8:a8:47:68:88:17:c4:56:9c:6b:4c:49:e9:93:
50:8c:36:1d:f9:ec:61:3a:90:06:e9:48:16:89:62:
77:48:a0:39:5a:8e:79:93:c5:b4:1a:b6:81:d4:1d:
d9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:7F:35:71:14:8C:49:79:A7:E7:DA:F3:B1:C5:0E:85:7D:01:31:D2
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/4X81cRSMSXmn59rzscUOhX0BMdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.135.0/24
81.19.139.0/24
Signature Algorithm: sha256WithRSAEncryption
16:09:d3:6a:c5:51:24:7f:cc:ab:26:cb:7f:47:db:e5:0d:a4:
a1:07:07:6d:d0:20:02:d2:71:aa:70:34:ae:34:cf:18:4f:62:
48:93:e2:36:c4:3a:7a:db:cd:5d:82:3a:36:02:2b:31:cb:33:
59:0c:1f:1d:5e:14:8c:14:43:7e:2b:22:2e:a7:68:dc:1b:d9:
dd:48:b4:37:0a:9e:0a:58:04:e6:05:35:ea:5c:d1:02:a8:13:
3e:48:27:5e:98:f0:2d:e2:47:c5:7d:82:94:44:d7:c2:3d:6c:
03:c9:b6:0c:12:9f:01:95:6b:1b:4a:03:bf:2f:4d:dd:33:8e:
34:b4:4f:41:41:42:26:97:a5:3e:ae:fb:f1:45:b7:d8:01:22:
3f:01:ec:aa:65:01:8c:2a:67:26:18:bb:50:37:ca:c8:2a:19:
39:05:dc:03:9f:84:7f:b2:0b:e3:fc:c2:7f:c2:e9:15:41:08:
ee:f7:4f:17:9d:d8:00:58:36:0e:80:45:e7:6e:9d:00:3a:6a:
56:b7:46:26:b9:6a:27:8a:d6:6d:78:b6:dc:c7:a9:fd:01:b2:
e1:6b:d6:c5:ba:46:7e:7f:29:a8:4f:eb:88:ce:8d:54:5a:73:
18:74:ee:af:4c:74:ff:31:a2:ac:0f:92:72:23:1f:61:b6:6c:
9c:69:d1:3d
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA6wMujANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NGNlOTY0MGEzZWYyZmVhMTkzNzRhZDhmOTlmNDIzZDdhYTdjNzZiMB4XDTIyMDEx
MjEyMjgzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTE3ZjM1NzExNDhj
NDk3OWE3ZTdkYWYzYjFjNTBlODU3ZDAxMzFkMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJDhoHd0z0c9Awxj3c/ZPcP/ZmQY2Mj2CIfCob9MmMKVjCNG
GfYfEmlan4I8c66k3rdDBkG0Vsttz0dBP8qKyXXyHzrrJxFWXZEL7Kh84jUpbQ3B
EoX7DVlgMWef3Rw5GJPVE/MHze2IgeYre3hw8qOX0RqgfIhc6QgzGrhFuLfZNw3x
EPA47zoVLQgmpZwQw9XLW+R+i5oyb30XiGmDhlKRSCkahJQ4obQn3BoJUcn9tmt0
rwdpdPuugqvnsp95coW+7JhhMS2mZ7o03XlGddbbL+ioR2iIF8RWnGtMSemTUIw2
HfnsYTqQBulIFolid0igOVqOeZPFtBq2gdQd2bUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBThfzVxFIxJeafn2vOxxQ6FfQEx0jAfBgNVHSMEGDAWgBSkzpZAo+8v6hk3
Stj5n0I9eqfHazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BNNldRS1B2TC1vWk4wclktWjlDUFhxbngycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGIvZjhhNWQxLTI2MGEtNDZhNC1hOGU0LTI4M2ZlNTRhNmYyZi8x
LzRYODFjUlNNU1htbjU5cnpzY1VPaFgwQk1kSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIv
ZjhhNWQxLTI2MGEtNDZhNC1hOGU0LTI4M2ZlNTRhNmYyZi8xL3BNNldRS1B2TC1v
Wk4wclktWjlDUFhxbngycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFEThwMEAFETizANBgkqhkiG9w0B
AQsFAAOCAQEAFgnTasVRJH/MqybLf0fb5Q2koQcHbdAgAtJxqnA0rjTPGE9iSJPi
NsQ6etvNXYI6NgIrMcszWQwfHV4UjBRDfisiLqdo3BvZ3Ui0NwqeClgE5gU16lzR
AqgTPkgnXpjwLeJHxX2ClETXwj1sA8m2DBKfAZVrG0oDvy9N3TOONLRPQUFCJpel
Pq778UW32AEiPwHsqmUBjCpnJhi7UDfKyCoZOQXcA5+Ef7IL4/zCf8LpFUEI7vdP
F53YAFg2DoBF526dADpqVrdGJrlqJ4rWbXi23Mep/QGy4WvWxbpGfn8pqE/riM6N
VFpzGHTur0x0/zGirA+SciMfYbZsnGnRPQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org