Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/2jUbfY6GTAAx-wHvujNJir6mwZY.roa
File: 2jUbfY6GTAAx-wHvujNJir6mwZY.roa (raw, json)
Hash identifier: HRYAscAqn4SmWkO236lGAgbMUf0qjJBI462FKHQi/2I=
Subject key identifier: DA:35:1B:7D:8E:86:4C:00:31:FB:01:EF:BA:33:49:8A:BE:A6:C1:96
Certificate issuer: /CN=490db999ca4ce287c5c92ab167a500902259bb05
Certificate serial: 37AD4201
Authority key identifier: 49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/2jUbfY6GTAAx-wHvujNJir6mwZY.roa
Signing time: Mon 30 May 2022 09:53:14 +0000
ROA not before: Mon 30 May 2022 09:53:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34666
IP address blocks: 81.16.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934101505 (0x37ad4201)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=490db999ca4ce287c5c92ab167a500902259bb05
Validity
Not Before: May 30 09:53:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da351b7d8e864c0031fb01efba33498abea6c196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:84:e8:1f:b2:72:a3:9b:a5:3a:26:b5:01:74:
fa:86:af:8c:b6:96:ea:8b:1f:9c:0f:20:2a:a2:e0:
d7:4e:a2:b9:3d:00:22:4d:44:19:42:32:f9:83:ac:
fa:5f:aa:69:e1:05:7b:44:c4:f5:fa:2c:4f:1b:c2:
cd:07:7c:ed:f1:26:1e:49:a9:1c:21:79:4a:e5:c4:
99:d9:a4:df:23:ff:a3:a1:f5:b8:43:10:58:f0:4c:
94:d0:17:95:ce:d8:fa:c9:4a:76:bf:a7:eb:74:76:
3a:06:d0:6b:43:89:45:d0:f4:4a:28:57:da:7b:68:
1c:f5:5b:7f:30:29:fa:ce:9c:46:4f:d0:36:26:f0:
23:09:2b:fb:39:51:bc:14:81:21:c0:ce:37:c5:85:
03:c3:80:72:a4:08:b8:5f:1e:ae:8f:f6:a3:41:2f:
c9:d0:8c:05:e4:74:d8:79:ac:a8:a1:40:44:bf:ac:
3b:8a:1c:17:b3:0a:42:62:f5:8c:0c:4a:d0:d4:49:
19:78:65:86:83:45:95:40:e1:fd:46:ed:46:22:79:
40:45:31:18:9d:52:d4:b7:fb:13:0f:98:af:f9:c4:
dd:b3:d6:c1:57:b2:0c:6e:49:c2:fa:fd:6e:72:4a:
29:35:96:d6:2e:3d:d2:c8:88:38:a9:a9:9d:a2:e5:
57:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:35:1B:7D:8E:86:4C:00:31:FB:01:EF:BA:33:49:8A:BE:A6:C1:96
X509v3 Authority Key Identifier:
keyid:49:0D:B9:99:CA:4C:E2:87:C5:C9:2A:B1:67:A5:00:90:22:59:BB:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SQ25mcpM4ofFySqxZ6UAkCJZuwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/2jUbfY6GTAAx-wHvujNJir6mwZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6f71f3-6399-4913-b98e-98e25e046908/1/SQ25mcpM4ofFySqxZ6UAkCJZuwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.16.250.0/24
Signature Algorithm: sha256WithRSAEncryption
03:79:e1:0a:63:27:6c:c3:e1:cd:12:e5:a1:4e:20:81:19:e9:
70:76:df:63:52:12:1e:74:35:e9:ce:11:d8:3c:d0:e8:56:bd:
d9:96:a7:e9:99:22:8e:59:5d:23:3d:58:4c:f6:98:5a:6b:e4:
b5:a1:8f:b6:a6:cb:c3:92:9e:14:06:b2:40:d2:58:83:a3:05:
75:9b:14:44:79:bb:6d:c5:37:17:73:d3:18:35:ec:0f:20:2e:
5a:f0:4f:16:e2:32:f1:9b:0e:27:0d:61:63:7c:9f:61:61:69:
7a:a5:bf:f9:ec:1d:a9:a8:24:c7:a0:b9:8f:c3:1c:71:28:a8:
7a:bd:11:bd:eb:a2:c6:04:3c:1c:31:4e:e8:9c:4c:9e:b1:32:
c2:4b:7c:89:51:2b:e0:ce:20:62:f3:74:96:aa:fb:7f:df:c2:
f0:02:7d:7e:a2:ab:1f:ec:6c:37:e5:8c:4b:a0:35:d8:fd:a3:
de:42:55:70:9f:ba:e9:fc:a0:72:9b:7f:c2:f9:2b:7e:da:ca:
97:ff:91:66:eb:a4:e8:fe:64:9e:80:b0:9b:8a:42:3a:83:b2:
0a:ba:76:c5:8c:8b:16:8d:53:70:6a:4f:03:c6:2f:f0:84:a9:
29:b9:f3:f2:78:f4:29:84:2e:a0:54:a0:54:ec:42:cd:1b:ec:
f7:72:3f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:19 2024 by rpki-client on console-fra.rpki-client.org