Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/5pY3BtGOuQ58MXPv7Plt-QacCMw.roa
File: 5pY3BtGOuQ58MXPv7Plt-QacCMw.roa (raw, json)
Hash identifier: cxbaCYdt/7JdH+NE34O6GEWil1Hb261bKJ12WD6r9Kc=
Subject key identifier: E6:96:37:06:D1:8E:B9:0E:7C:31:73:EF:EC:F9:6D:F9:06:9C:08:CC
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0181CE2B303CABF87D97C57ED266E12C4820
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/5pY3BtGOuQ58MXPv7Plt-QacCMw.roa
Signing time: Tue 05 Jul 2022 11:42:25 +0000
ROA not before: Tue 05 Jul 2022 11:42:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31133
IP address blocks: 81.19.132.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ce:2b:30:3c:ab:f8:7d:97:c5:7e:d2:66:e1:2c:48:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jul 5 11:42:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6963706d18eb90e7c3173efecf96df9069c08cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a8:7a:14:5e:d7:78:d3:76:9d:77:85:6c:0a:
07:9b:21:8f:3e:47:4e:37:5b:5c:0c:cd:3a:d5:ad:
1b:c1:00:4d:c7:aa:dd:f1:c5:48:5b:8c:ad:4a:03:
e8:2a:68:b6:ad:f5:fe:9b:62:a5:c5:dd:2f:6d:71:
4f:7d:99:a0:b0:67:63:07:e8:2e:b2:52:6d:34:ff:
ed:d5:7a:59:f0:a7:6f:29:20:3b:fa:28:12:2b:e6:
cd:6d:7c:13:b6:11:bd:59:b3:f8:79:1e:8b:64:ee:
f9:7b:a7:4b:21:d9:3d:a4:3c:19:7e:9a:8d:c1:fa:
66:81:db:c3:b0:ab:70:91:7d:6c:13:85:83:04:50:
4d:cf:f0:39:14:be:c9:e3:75:c0:d7:7f:10:7f:31:
34:af:5b:1f:e2:d2:ff:08:ef:64:48:a5:0f:2c:9f:
37:83:be:dd:be:03:06:35:c4:b4:36:be:94:83:b6:
37:9f:b1:d9:f3:59:a1:ee:bd:09:05:75:d0:32:e2:
be:b5:41:f9:80:68:ed:74:6b:98:e1:30:db:af:e8:
bd:d9:6a:f2:83:f9:96:2e:e0:aa:ee:93:71:2c:16:
f7:8e:1f:12:2e:8e:f7:8c:44:7f:6c:02:ef:7d:a3:
d8:9f:c4:bd:85:60:5b:e9:fe:06:ae:d1:c3:bc:1d:
10:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:96:37:06:D1:8E:B9:0E:7C:31:73:EF:EC:F9:6D:F9:06:9C:08:CC
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/5pY3BtGOuQ58MXPv7Plt-QacCMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.132.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:15:79:ee:87:0d:38:b0:c6:dd:ce:ad:45:a6:48:fd:0d:92:
9c:1c:4a:07:e5:eb:27:9d:c3:02:1e:ca:7c:d9:d5:de:c2:b3:
8d:45:65:96:9f:5b:2a:72:06:64:91:71:54:f9:6d:74:3e:41:
85:d7:b0:79:58:dd:dc:9e:46:84:62:a7:7b:85:8c:a4:df:67:
0e:53:07:38:33:34:f8:43:b0:ae:6f:cf:7a:4d:e3:40:dc:18:
c1:15:13:e8:6e:9e:2d:60:af:cd:60:e4:f5:9a:74:99:23:93:
f0:6c:8c:27:5f:62:d5:3a:97:35:fe:c8:f5:01:ac:0b:53:06:
fc:74:e4:86:ca:b3:24:e3:91:86:08:6e:34:38:6e:68:d6:12:
be:4e:54:5b:fe:b6:30:da:51:69:f7:86:f2:27:b9:7f:a5:f2:
e6:5c:f3:19:cc:5c:0c:e7:15:a6:da:c5:f5:64:e2:26:8c:a7:
eb:4d:09:d9:03:e6:8d:40:97:f1:a3:73:c4:67:ca:3d:bd:7b:
0d:28:ad:84:bd:f8:a5:8d:72:db:94:30:4b:dc:03:9c:75:71:
05:f2:a5:b0:24:20:84:b6:b6:e5:40:4b:c4:28:6f:c1:57:d8:
23:15:98:00:e8:2b:55:9a:d5:73:0e:de:9e:7e:44:d2:50:45:
47:72:04:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org