Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/5u8pl65YV3Z8gQfso8mJPCNEDxM.roa
File: 5u8pl65YV3Z8gQfso8mJPCNEDxM.roa (raw, json)
Hash identifier: J39/hpW6Z/KoiXkeRDL1l9LA2MgYtV9te1svwZrV8XM=
Subject key identifier: E6:EF:29:97:AE:58:57:76:7C:81:07:EC:A3:C9:89:3C:23:44:0F:13
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 038DFA06
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/5u8pl65YV3Z8gQfso8mJPCNEDxM.roa
Signing time: Sat 01 Jan 2022 13:01:38 +0000
ROA not before: Sat 01 Jan 2022 13:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34665
IP address blocks: 81.19.132.0/24 maxlen: 32
81.19.133.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59636230 (0x38dfa06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jan 1 13:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6ef2997ae5857767c8107eca3c9893c23440f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:16:31:7e:7d:17:ab:cd:9f:d3:73:8a:c5:df:
bb:da:67:0f:57:7b:c6:9f:42:0b:68:47:11:f3:61:
da:b4:f1:7f:4e:09:7e:a3:67:f0:f5:71:cf:7d:8c:
0b:5a:d5:0f:31:0d:e4:e7:73:40:ae:2a:2c:19:82:
29:19:00:35:71:08:ad:18:1c:cd:06:a8:e5:59:51:
40:46:c1:e7:2c:78:fa:da:29:94:9d:99:5f:db:21:
98:eb:ab:11:11:07:37:b8:d8:4d:40:b3:74:5f:04:
b0:6d:08:66:3d:bc:d6:79:33:cd:8b:44:b4:5c:0d:
a1:9c:ae:31:54:ec:10:93:f0:90:29:21:ef:f6:6e:
d4:fb:95:31:e0:d9:c9:f8:c2:89:9d:2c:4c:d5:da:
10:03:c9:4b:53:d0:89:d1:bb:ae:5a:73:c9:ed:61:
60:78:08:ec:40:45:f4:a4:9a:15:fb:bd:ab:e6:97:
e0:95:29:ab:54:54:fb:83:ca:76:6b:d3:a1:31:98:
e3:5a:60:d5:70:6e:e6:40:cb:42:4a:18:ef:a8:de:
12:0e:f9:05:00:a5:f3:b5:7b:69:44:87:f4:33:70:
97:87:47:66:20:ff:67:9c:94:3f:bb:a2:9c:9d:34:
3d:04:04:ce:d4:1e:26:39:68:dc:23:2d:63:e1:9e:
9b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EF:29:97:AE:58:57:76:7C:81:07:EC:A3:C9:89:3C:23:44:0F:13
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/5u8pl65YV3Z8gQfso8mJPCNEDxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.132.0/23
Signature Algorithm: sha256WithRSAEncryption
71:7a:b9:0b:3e:e9:fa:3d:c4:64:08:62:57:eb:7f:d4:8f:e6:
a8:56:fa:7d:ee:46:55:e6:5b:4c:7b:8d:7a:0d:50:8f:52:d3:
aa:48:66:ff:1b:45:a3:f2:38:54:a5:40:99:9c:59:7c:26:9f:
fa:e2:f8:d9:98:4d:ee:1b:bc:2b:e4:47:10:9c:4b:63:8e:04:
71:bc:e4:a2:35:27:30:45:70:81:50:42:7d:fb:82:1f:2a:fd:
84:14:b7:1b:48:6c:96:a1:7b:9a:bc:7d:4c:a4:d7:ad:89:ba:
a6:fc:4e:09:4e:21:61:0c:97:c9:b7:62:92:30:ee:81:d3:2b:
1f:38:c3:7a:2a:1b:73:7f:de:5a:72:04:48:e4:24:82:b6:61:
8a:8b:b7:6e:51:46:29:d4:06:8a:88:c0:fd:06:4c:ff:6d:e1:
d5:f2:e2:9f:cf:26:26:3d:e1:03:ef:97:36:b7:2c:a2:60:4b:
44:5a:1f:6a:a9:16:d2:8e:96:94:ef:63:54:12:4a:2c:15:f4:
be:a8:7b:da:a7:c3:83:01:8d:c6:ca:09:f7:84:fb:05:0a:b5:
2a:6a:27:e7:30:38:81:1e:87:55:b5:8a:0e:3c:e6:18:97:7f:
78:9d:96:53:99:ec:99:32:ab:3b:de:30:26:bf:bb:81:f1:aa:
87:a2:1b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:19 2024 by rpki-client on console-ams.rpki-client.org