Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/D2LnstzyzOZ5FxcW8Hj90hlbpA8.roa
File: D2LnstzyzOZ5FxcW8Hj90hlbpA8.roa (raw, json)
Hash identifier: 2a7nVZBL4GyAIfPv8A6py3pP4IrUFMb1qynWfoMaRZU=
Subject key identifier: 0F:62:E7:B2:DC:F2:CC:E6:79:17:17:16:F0:78:FD:D2:19:5B:A4:0F
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0574D273
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/D2LnstzyzOZ5FxcW8Hj90hlbpA8.roa
Signing time: Fri 10 Jun 2022 07:28:02 +0000
ROA not before: Fri 10 Jun 2022 07:28:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 269846
IP address blocks: 181.41.152.0/24 maxlen: 24
181.41.152.0/23 maxlen: 23
181.41.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91542131 (0x574d273)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jun 10 07:28:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f62e7b2dcf2cce679171716f078fdd2195ba40f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ca:da:e7:3d:56:4f:4a:1b:ab:99:b2:b0:53:
1c:3b:bc:87:5e:04:71:4c:16:78:3e:fe:1f:03:21:
e9:1b:dd:cc:23:f5:80:36:fc:ee:e9:77:1e:2d:b2:
20:3e:35:d3:04:d6:01:93:da:e4:a8:4f:80:5c:f4:
bf:91:42:c4:52:af:71:24:6a:54:cc:f3:20:d3:60:
6a:c1:de:be:29:45:d5:55:63:c7:e3:ec:48:db:fa:
1a:64:f3:d9:c2:52:9b:d8:b0:8d:c4:1c:a4:77:8a:
fc:3f:8f:3b:a3:60:bf:c0:ce:bf:f3:f6:db:17:a7:
cf:68:5b:63:3d:54:20:cf:7c:c5:1d:3a:5d:b3:7f:
c8:b2:0a:5e:c5:e5:c7:ea:9f:be:d8:60:89:48:fa:
b8:e4:02:73:87:3a:6e:f0:89:cd:9c:ba:8b:a3:b5:
4e:4a:14:bd:2e:71:35:70:05:cb:b5:21:85:a6:4c:
db:28:8b:4e:01:49:c8:eb:12:29:3e:e4:26:ad:28:
64:30:db:96:c3:42:b5:df:bb:e2:9e:e2:8a:1a:75:
0d:dc:88:92:93:d9:2f:e2:e8:73:01:ce:0e:ce:08:
e8:a9:4d:f4:86:0e:99:3e:f2:20:cf:ae:70:99:6a:
d8:28:86:25:4c:71:79:78:09:4c:2f:07:90:4d:b8:
53:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:62:E7:B2:DC:F2:CC:E6:79:17:17:16:F0:78:FD:D2:19:5B:A4:0F
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/D2LnstzyzOZ5FxcW8Hj90hlbpA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.152.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:1c:1c:5e:a4:dd:9a:76:ff:27:39:e5:ee:39:77:2c:bd:16:
13:d0:b7:a3:74:81:bf:1d:02:5d:9b:8a:f3:07:52:3f:f3:16:
2b:67:a3:ac:ba:71:85:33:4a:c3:d4:b8:d3:b2:63:e6:1b:e6:
f9:d7:af:50:a9:9d:be:52:ed:83:bd:99:41:44:81:54:d4:47:
30:1e:8f:fe:b0:36:3e:8c:a6:1b:16:1c:ef:cd:67:d8:0c:ba:
c7:3b:a1:ea:f6:7c:90:b9:21:4b:b8:b1:86:97:11:4d:cb:85:
a9:83:43:05:78:77:fc:8a:c7:5c:56:b5:3d:ba:06:ec:53:ec:
b4:40:04:25:2e:ca:6d:f6:6d:78:9b:64:9b:f3:21:d2:57:34:
88:b1:82:02:fa:30:a2:05:b6:18:60:7b:fa:3f:f5:14:40:f1:
83:cf:e2:cf:15:eb:d3:79:fc:bd:eb:32:62:5b:ab:6f:ff:cc:
ff:48:92:80:4b:74:bc:85:22:10:b6:89:63:c1:b9:a4:cb:2d:
0b:bc:34:3b:d0:25:10:ce:8c:32:d9:9b:46:ec:79:b1:78:2b:
99:6c:45:36:4f:62:8b:a3:35:75:2a:bb:5d:2d:de:0b:3e:a5:
1f:8d:7e:e4:c1:6a:ef:3b:b7:e7:a0:f8:db:22:ed:46:ce:ac:
b8:f1:cd:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org