Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/dl-LytaLcEV62X_lFnM87QeOyUw.roa
File: dl-LytaLcEV62X_lFnM87QeOyUw.roa (raw, json)
Hash identifier: /fdVzGo/zezUBj0/ALzW0ZJElaHC8zSUocAnWtdTYYU=
Subject key identifier: 76:5F:8B:CA:D6:8B:70:45:7A:D9:7F:E5:16:73:3C:ED:07:8E:C9:4C
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 01839CDACCB8ADB1334103DBD8CFC7CA7B05
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/dl-LytaLcEV62X_lFnM87QeOyUw.roa
Signing time: Mon 03 Oct 2022 07:58:48 +0000
ROA not before: Mon 03 Oct 2022 07:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207967
IP address blocks: 81.19.131.0/24 maxlen: 32
81.19.134.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9c:da:cc:b8:ad:b1:33:41:03:db:d8:cf:c7:ca:7b:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Oct 3 07:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=765f8bcad68b70457ad97fe516733ced078ec94c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0a:1c:de:c1:7d:71:41:d6:90:8e:e4:0e:bb:
ca:79:c2:d9:d2:84:42:4e:d3:f9:52:41:ee:d3:09:
7d:bc:8a:92:84:b8:66:50:93:84:56:e7:bc:13:31:
0a:a8:e9:8c:17:57:53:48:78:9d:b7:fe:ce:1d:cc:
06:0a:45:9a:17:b9:1a:84:cd:71:c6:a9:6d:29:a5:
7f:62:ba:11:07:c6:82:b5:17:28:96:5f:09:5e:6a:
d4:b1:0a:ef:7f:cc:ea:fd:7a:53:38:86:ce:d6:e6:
53:e6:24:2c:ef:00:52:b0:84:9d:11:b3:dc:37:b0:
37:e3:d2:3a:ab:ad:c4:74:11:cf:ee:b6:4c:e7:ac:
97:99:c4:0a:88:e7:ff:4c:bf:2e:dc:08:bd:65:15:
8b:ec:90:85:39:68:d7:29:40:cb:3a:68:09:6f:7f:
82:df:91:c2:dd:97:ac:ee:2f:13:99:c8:d8:bf:d2:
57:81:e0:1b:73:8c:a1:8d:d4:c0:63:66:ce:2f:56:
77:12:e6:63:52:a4:a3:e8:3f:80:c0:7d:82:0b:ad:
51:1a:da:79:93:6d:fb:da:82:b4:86:79:bb:29:32:
99:2b:ef:5a:07:57:b0:fa:0b:95:b3:a0:69:a3:b7:
96:23:f1:ea:90:73:ad:ea:e9:96:23:ec:e0:3f:5b:
5b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5F:8B:CA:D6:8B:70:45:7A:D9:7F:E5:16:73:3C:ED:07:8E:C9:4C
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/dl-LytaLcEV62X_lFnM87QeOyUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.131.0/24
81.19.134.0/24
Signature Algorithm: sha256WithRSAEncryption
75:61:83:6d:4a:75:23:0f:e9:49:4a:f5:87:82:22:51:af:2a:
cd:ac:03:ad:b7:2d:e2:9a:46:67:00:b6:38:bd:cc:ae:9d:3f:
50:f3:cc:f0:56:16:98:cb:9a:f0:65:9f:2a:04:c2:54:bd:b7:
2c:a7:88:32:4a:4e:b6:c8:3a:98:d6:d3:6b:f3:a2:f8:73:98:
05:f2:52:9b:66:09:6e:1d:ea:c2:f6:4c:cb:c7:6d:7f:80:96:
38:94:ac:35:dd:60:a6:13:41:69:e6:c0:a9:b9:a6:ee:81:bd:
49:7a:3d:25:82:f6:8a:0e:25:a9:37:bc:2d:78:86:1d:ce:a6:
fe:65:e7:19:a9:e2:ed:92:8d:9c:c4:e9:6c:a5:bd:75:4f:cb:
1e:97:55:c8:e1:ed:36:41:8d:48:82:0c:f4:85:01:3c:ad:59:
d1:d0:63:1c:10:41:4f:b0:c1:8f:9b:a1:31:49:38:54:36:e7:
86:74:c3:b4:01:0e:5d:2d:92:7d:0d:1b:7a:ba:ec:3c:84:a1:
33:92:4f:c5:5b:1a:11:54:2d:bf:44:4f:0c:2b:40:e1:3c:d3:
9e:c6:6b:64:82:66:6b:77:e7:e8:4e:f3:0b:4e:56:dc:62:1a:
91:ce:6e:4e:0b:fc:b0:47:76:3e:96:49:7f:83:f0:a2:86:bc:
25:66:12:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:19 2024 by rpki-client on console-ams.rpki-client.org