Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/_8sYTw2t4_rrB6dEcaN7UZXhcLw.roa
File: _8sYTw2t4_rrB6dEcaN7UZXhcLw.roa (raw, json)
Hash identifier: u7jB/JoMxsF9AznaW3DHjg4xDbsdxq3FrtBPBnsoan0=
Subject key identifier: FF:CB:18:4F:0D:AD:E3:FA:EB:07:A7:44:71:A3:7B:51:95:E1:70:BC
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A91D637
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/_8sYTw2t4_rrB6dEcaN7UZXhcLw.roa
Signing time: Sat 01 Jan 2022 04:52:14 +0000
ROA not before: Sat 01 Jan 2022 04:52:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205813
IP address blocks: 81.15.239.0/24 maxlen: 24
81.15.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982636087 (0x3a91d637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffcb184f0dade3faeb07a74471a37b5195e170bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:59:e8:50:01:c3:20:3b:5f:81:a4:9a:6c:2b:
51:67:f0:43:26:ed:f3:b9:63:95:97:3c:e4:81:8b:
28:d6:f6:24:ad:89:f6:ee:15:19:c3:87:15:40:45:
51:87:eb:65:c4:82:99:75:81:0f:51:af:e0:ae:da:
96:d2:f7:43:d3:9c:eb:78:f5:30:b0:6a:ca:ee:bb:
ed:28:2f:cc:2f:1d:d2:7c:3f:f2:da:67:4b:99:b0:
94:4f:2b:0f:b3:19:21:87:08:73:f9:e1:32:55:10:
26:2f:c4:41:85:42:fc:05:70:57:9d:7a:cd:2c:b3:
8f:4b:e9:87:bd:9a:a4:4b:ce:cc:08:15:a9:aa:0f:
e1:46:a2:67:1a:b3:f6:af:ca:5d:ff:82:f5:50:f7:
a3:b5:be:8b:6d:da:ee:94:26:fd:20:1a:4e:19:22:
04:c7:8c:e5:37:1e:00:c2:12:d2:19:af:15:c6:40:
b3:5f:67:11:53:1c:72:79:56:84:f7:92:40:bb:56:
16:91:8d:c2:f1:a3:40:74:77:f5:0a:48:fc:eb:82:
b6:e5:07:e8:74:bd:7d:b2:28:0f:7a:2a:8d:72:6d:
f5:39:5c:e2:02:a1:9f:a9:52:c0:2f:60:f7:38:91:
c8:d3:ab:06:8d:70:9a:51:bd:04:27:3b:c4:77:50:
01:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:CB:18:4F:0D:AD:E3:FA:EB:07:A7:44:71:A3:7B:51:95:E1:70:BC
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/_8sYTw2t4_rrB6dEcaN7UZXhcLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.239.0/24
81.15.242.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:8c:d5:7c:4a:9d:56:48:4c:cb:a4:ea:c8:38:0c:65:b2:38:
6a:02:27:49:2a:3f:b6:8a:4e:97:a8:39:0c:d2:e5:28:af:96:
4b:18:0b:d7:8b:20:31:48:04:91:11:0f:fb:ed:83:3c:0b:51:
75:e5:1d:f0:d2:e4:f8:53:cf:cd:c5:c3:2f:da:95:e3:10:58:
2a:82:f0:1c:35:e9:47:3d:64:c5:8f:cc:fc:7d:b8:11:9d:86:
36:9c:bb:e5:84:41:6e:78:36:c9:c7:49:9d:7e:10:a6:ee:04:
22:0b:26:38:ee:11:83:a0:66:f3:53:71:ec:75:87:52:2a:2f:
66:7c:95:c2:b7:10:e2:b6:8f:bd:fc:f0:6e:eb:2a:79:fa:ef:
de:15:f8:b3:ec:b7:02:c0:10:b3:46:ba:69:0b:70:2d:b6:0d:
97:d3:83:89:50:7d:63:e9:e6:8a:f2:89:8f:d0:56:28:ca:7a:
23:ab:3d:da:1f:7d:c7:8d:53:01:35:d3:87:31:b7:37:2e:53:
c3:3a:c1:f2:6b:b4:fd:fb:b9:6e:30:ef:5b:85:91:c9:06:e1:
c4:be:69:af:3f:49:70:cb:d4:4c:b9:04:23:a9:00:6f:84:24:
96:ee:ee:58:9b:a5:d2:d7:68:19:7c:66:22:be:bc:4d:b1:82:
64:21:64:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:21 2023 by rpki-client on console-fra.rpki-client.org