Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/YrKqbhpwvqHjzaqVsKQFEgz_oTE.roa
File: YrKqbhpwvqHjzaqVsKQFEgz_oTE.roa (raw, json)
Hash identifier: q0jrm/xal4/hf1EaMyuxFFSdzO0nbsHFCvrQnrMuabU=
Subject key identifier: 62:B2:AA:6E:1A:70:BE:A1:E3:CD:AA:95:B0:A4:05:12:0C:FF:A1:31
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 03907810
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/YrKqbhpwvqHjzaqVsKQFEgz_oTE.roa
Signing time: Sat 01 Jan 2022 13:01:39 +0000
ROA not before: Sat 01 Jan 2022 13:01:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 81.19.131.0/24 maxlen: 32
81.19.134.0/24 maxlen: 32
81.19.140.0/24 maxlen: 32
81.19.141.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59799568 (0x3907810)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jan 1 13:01:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62b2aa6e1a70bea1e3cdaa95b0a405120cffa131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a6:6d:97:8e:68:18:c1:36:11:3e:57:61:6a:
44:00:28:28:61:0e:c0:ab:5d:f3:5e:03:be:cd:62:
a9:e3:96:68:0d:56:57:79:9d:ca:7f:44:c3:73:c6:
b8:e2:ed:6e:a0:75:f9:c5:8f:ad:04:28:3f:59:3f:
29:0e:a3:a9:19:1f:01:62:62:35:e6:da:28:da:1f:
92:1b:6c:5c:6e:07:35:7d:64:1d:1f:97:75:2a:43:
d7:24:92:6b:0a:44:30:27:6c:5b:f8:00:cc:7a:f0:
c1:8f:f9:0d:ba:ed:63:f4:f9:77:46:42:99:90:40:
5d:ee:b7:73:1f:06:6b:9c:a1:ac:34:a5:21:c2:16:
dd:36:82:e4:a4:82:14:50:c9:af:31:e2:75:7d:1d:
37:d2:17:ac:6f:aa:77:57:df:df:53:c5:3f:42:b0:
94:2b:90:b3:a2:77:b8:5f:59:99:b4:6c:0e:fe:25:
3c:c3:0f:01:5f:90:c4:86:59:07:79:48:d3:d5:ff:
9a:3a:b8:b3:d3:04:1d:ea:27:7b:8f:d1:80:59:73:
8d:df:a1:b0:75:c7:9e:45:bc:0e:bf:51:5b:96:c7:
fc:15:4b:03:61:35:3e:59:8d:0c:86:54:72:07:85:
fe:e3:6a:69:f9:6f:25:b4:e5:fe:72:47:b0:e0:87:
22:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B2:AA:6E:1A:70:BE:A1:E3:CD:AA:95:B0:A4:05:12:0C:FF:A1:31
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/YrKqbhpwvqHjzaqVsKQFEgz_oTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.131.0/24
81.19.134.0/24
81.19.140.0/23
Signature Algorithm: sha256WithRSAEncryption
08:d1:31:b1:db:35:ba:1b:91:98:24:27:f1:29:5f:71:d9:9f:
83:db:d0:8f:70:fc:04:d8:ac:07:13:af:0d:4a:54:8e:8a:23:
56:f9:9e:3d:e9:3c:74:fb:84:f4:87:45:97:e0:80:1a:f1:b3:
bf:69:ec:dd:4f:a7:3d:e2:0e:fa:1c:02:ca:9c:38:2b:c5:16:
d8:c1:ee:c1:8c:d6:c5:8a:37:50:96:b2:e5:94:57:43:10:e6:
7d:49:d1:4a:29:f3:50:8d:02:e2:99:ce:f4:84:f8:c9:d0:f4:
0f:35:8d:cb:b6:8a:e5:86:3a:0a:a1:3f:41:93:fb:4e:63:53:
99:28:ef:6d:c7:76:05:1d:80:26:6d:41:5f:e3:5b:5c:19:1b:
da:42:dc:c6:3a:89:77:32:fb:8b:1e:63:da:61:10:d6:d5:36:
c8:57:83:13:37:10:bb:2a:21:fb:87:da:bd:42:57:85:e5:65:
c3:b0:e5:d0:78:f7:36:b8:9f:a1:01:36:ee:60:07:01:c9:47:
99:60:b8:85:aa:94:c6:32:6d:3f:c7:1e:0f:f3:63:a2:b5:3e:
70:fc:2f:78:91:4b:35:49:ad:7a:9d:c8:1c:03:ab:85:55:ad:
95:e2:31:51:02:37:3e:37:e0:88:c1:e5:e6:d1:f9:2a:5d:b3:
21:cb:b5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org