Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/zcQVztSS5Rs21UmagypCw7Jtw2I.roa
File: zcQVztSS5Rs21UmagypCw7Jtw2I.roa (raw, json)
Hash identifier: fq0zD52qr5tLxOrUePvK0MvVwQbm28oFNIOVuKFifjo=
Subject key identifier: CD:C4:15:CE:D4:92:E5:1B:36:D5:49:9A:83:2A:42:C3:B2:6D:C3:62
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 01833D20FFBF4A49A2F661D9A411824F97AC
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/zcQVztSS5Rs21UmagypCw7Jtw2I.roa
Signing time: Wed 14 Sep 2022 17:51:56 +0000
ROA not before: Wed 14 Sep 2022 17:51:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24658
IP address blocks: 81.19.128.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3d:20:ff:bf:4a:49:a2:f6:61:d9:a4:11:82:4f:97:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Sep 14 17:51:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdc415ced492e51b36d5499a832a42c3b26dc362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6d:de:2a:31:8e:d1:fa:f4:e7:b9:33:f6:71:
e2:da:93:43:0f:bc:83:86:cd:c3:00:dd:17:62:90:
78:b0:a6:0e:43:39:3b:b9:1b:3b:63:8a:85:dc:1e:
83:58:2a:2f:e6:02:1a:fe:3c:5d:0f:f5:d4:b6:8e:
fb:69:dd:d6:f5:b4:c6:6b:c0:89:98:7e:c8:14:57:
a7:dc:2f:cb:9f:4e:1b:1f:35:32:24:ed:ae:c1:07:
3c:57:f4:9b:61:69:de:c1:25:ba:3f:f5:1d:14:f0:
89:97:24:f5:b1:be:73:13:55:57:14:35:0e:d3:88:
f0:63:5b:18:73:d8:e4:ce:5a:5d:a6:e7:13:cb:0c:
51:fa:3a:6b:dc:3d:cf:e8:88:bd:f5:87:cd:44:db:
7d:8d:15:48:f9:06:76:e3:fa:a1:58:9d:79:20:a8:
0b:40:f8:67:08:57:d4:fb:6e:7f:ec:37:5b:f0:6d:
c7:8d:89:96:ca:2d:0e:93:62:48:30:c7:1c:76:d7:
8c:d5:3f:c5:94:a6:6b:55:81:75:97:20:e6:49:34:
55:93:6f:65:51:15:96:b8:12:3d:e1:88:82:e9:35:
28:8d:0e:75:5a:78:cf:29:94:27:de:0c:7f:cb:81:
bb:81:f4:20:27:ab:98:62:8d:ae:66:14:f8:fa:e0:
f0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C4:15:CE:D4:92:E5:1B:36:D5:49:9A:83:2A:42:C3:B2:6D:C3:62
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/zcQVztSS5Rs21UmagypCw7Jtw2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.128.0/20
Signature Algorithm: sha256WithRSAEncryption
32:8b:53:8b:cf:ea:b9:af:cb:f8:b2:a7:02:02:c3:58:dc:2a:
cd:b7:38:18:99:e9:29:18:da:bd:78:ac:ae:a8:c3:c4:4b:69:
b2:57:68:f9:dc:b2:e0:a3:3a:7e:89:86:d3:b4:5a:69:91:ce:
66:f8:ca:30:18:9f:2f:07:df:08:3f:d3:e2:25:26:c3:cf:44:
ca:4e:00:dc:e3:9f:e2:ca:16:4b:6d:b3:71:c4:d9:e6:8c:4f:
2d:71:ae:28:3d:d4:36:28:48:74:f4:6d:31:f5:b8:fe:3e:ee:
0c:a9:2c:00:55:73:3f:19:28:2e:7a:56:9f:ee:3f:bb:bc:29:
84:6f:bb:6a:d2:6a:2e:3c:66:71:33:06:7f:fe:6e:7b:1b:15:
6a:c7:9b:0c:06:ff:60:bb:47:a7:ce:18:81:26:c8:a4:28:64:
ce:14:0e:c4:e5:b5:ec:05:81:73:1d:21:e2:4f:ae:c3:02:94:
50:f1:3a:df:12:cd:58:35:64:c1:24:15:18:36:42:49:71:62:
48:c1:00:dd:a2:d4:3e:96:9e:f1:8e:1e:3e:54:5e:ec:11:28:
29:4b:b9:7a:38:d1:d9:cc:97:6b:31:07:33:18:85:af:4d:eb:
85:db:95:f8:01:a6:b0:df:a4:96:a1:37:e2:0f:77:eb:69:c1:
e0:25:de:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:19 2024 by rpki-client on console-ams.rpki-client.org