Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/RuessFcKVIU45nOrxaLMIHId_EE.roa
File: RuessFcKVIU45nOrxaLMIHId_EE.roa (raw, json)
Hash identifier: S5cUhLvulb0mlfr0VYMuPdhgf+eLjIbICzHuELqX0c0=
Subject key identifier: 46:E7:AC:B0:57:0A:54:85:38:E6:73:AB:C5:A2:CC:20:72:1D:FC:41
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0181CE295C86B2A997DCC249111091DDACBC
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/RuessFcKVIU45nOrxaLMIHId_EE.roa
Signing time: Tue 05 Jul 2022 11:40:25 +0000
ROA not before: Tue 05 Jul 2022 11:40:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34665
IP address blocks: 81.19.133.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ce:29:5c:86:b2:a9:97:dc:c2:49:11:10:91:dd:ac:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jul 5 11:40:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46e7acb0570a548538e673abc5a2cc20721dfc41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:05:7d:2f:e1:cf:e8:f7:93:62:e4:a8:ae:1c:
67:dc:ed:d8:ce:4a:60:29:d1:9e:e1:70:3d:8a:ba:
b1:06:f6:a8:71:46:2e:df:3d:cb:dd:73:41:2d:71:
66:b8:df:0d:bc:60:5b:a1:f1:a5:cd:a3:c5:3b:30:
79:8f:f3:45:a8:dc:fe:f9:59:04:f5:64:95:47:36:
25:0a:ce:b3:3a:df:b3:04:f3:f5:88:05:e9:1f:08:
0c:cd:d7:d1:42:dd:3b:40:30:aa:a8:43:4c:71:ab:
89:32:c1:77:fc:30:91:eb:f4:bb:18:93:4a:e4:01:
16:ff:8e:4e:cc:e0:a2:75:7f:59:ed:38:be:91:51:
2f:92:4a:db:2b:6a:12:39:35:8b:6e:20:33:4a:3a:
b7:c4:7b:3a:1e:8c:a4:18:9d:81:57:95:87:a4:cf:
10:3f:b5:a5:b3:1c:07:d6:2c:f9:8b:cb:f7:e5:fe:
c8:df:96:c2:47:22:6a:22:c7:c7:dc:b7:a2:e6:28:
56:f4:a2:7e:a5:37:1f:77:78:ba:e6:cb:b1:9c:ce:
19:40:35:4a:d3:dd:da:a8:8d:4b:38:2b:91:94:73:
79:00:2b:2a:53:7f:fd:73:b5:81:ef:de:14:81:e9:
94:95:0f:7c:03:c1:75:97:23:83:18:08:c8:80:6a:
f0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E7:AC:B0:57:0A:54:85:38:E6:73:AB:C5:A2:CC:20:72:1D:FC:41
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/RuessFcKVIU45nOrxaLMIHId_EE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.133.0/24
Signature Algorithm: sha256WithRSAEncryption
96:2d:0a:cb:33:4c:df:ab:fa:b2:b3:53:b8:f5:db:1b:de:d4:
74:e1:f8:b6:b9:84:0f:1a:72:8d:27:e4:74:b8:47:9e:1c:58:
84:1a:98:6c:b2:23:51:14:e2:86:10:17:77:22:be:34:48:e1:
da:b9:55:84:94:75:8b:7d:6a:42:8e:74:90:1a:c5:aa:35:41:
d4:c9:29:f4:fe:7e:42:91:8f:1e:28:d3:c6:c1:67:fa:8c:78:
fc:f4:af:37:2b:3b:2c:32:04:61:36:c9:6a:c5:87:96:34:cc:
06:3c:eb:5b:68:f2:eb:8b:9a:9e:a7:60:02:24:10:55:6e:b8:
b3:05:47:1a:34:00:8e:64:86:9f:aa:8a:12:20:77:2a:c5:2a:
8d:23:a9:c9:a5:3b:bf:18:fe:12:d8:37:4e:9c:b0:a5:b8:e4:
64:fd:4b:bd:97:40:68:0e:76:a8:b5:fc:87:96:9e:45:6f:ca:
66:f7:ef:a8:42:5d:f4:c1:8d:82:04:92:dc:2c:51:5c:f4:1f:
8d:a8:5b:e7:7c:b4:82:39:a3:0d:b2:72:35:e4:19:79:e4:35:
ad:44:8c:28:31:61:b4:fc:e6:0b:00:b8:fd:ac:f6:c6:13:bb:
a0:89:d9:01:21:b6:28:cf:25:2b:a7:ad:52:e8:74:88:57:9a:
33:95:f9:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org