Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/lB74PsYkf9YKheUBLZsu5DhURcU.roa
File: lB74PsYkf9YKheUBLZsu5DhURcU.roa (raw, json)
Hash identifier: gBxcY3t5Z+8o/+/NQ9NlkyRBiPsoHJWLXrT9lcgqf4o=
Subject key identifier: 94:1E:F8:3E:C6:24:7F:D6:0A:85:E5:01:2D:9B:2E:E4:38:54:45:C5
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A796461
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/lB74PsYkf9YKheUBLZsu5DhURcU.roa
Signing time: Sat 01 Jan 2022 04:51:59 +0000
ROA not before: Sat 01 Jan 2022 04:51:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60378
IP address blocks: 81.15.200.0/24 maxlen: 24
82.177.136.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981034081 (0x3a796461)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:51:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=941ef83ec6247fd60a85e5012d9b2ee4385445c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:15:96:e5:f7:d0:49:04:cf:9b:c6:c5:8f:33:
05:ef:24:3e:e5:ec:08:98:47:1c:a4:b0:43:a3:b0:
87:24:66:89:b7:a8:42:29:84:9c:51:02:78:13:95:
73:30:03:95:9b:a4:8c:e8:3a:09:ee:06:80:ab:fd:
34:74:94:81:f3:f7:e8:d2:33:c9:47:e8:17:80:d1:
15:b4:a5:be:54:4d:4e:6c:72:e5:fe:1c:b8:ed:73:
70:73:31:80:bd:fc:93:65:47:05:99:9b:30:c2:c9:
33:c1:e1:c9:c2:cd:25:1a:36:8d:92:3b:e5:b4:7c:
f7:12:fc:af:30:f5:b0:9b:69:02:17:35:83:c6:97:
f8:0b:18:87:be:3e:60:08:a0:04:0b:90:a3:47:1e:
91:54:b5:04:a1:bb:21:8e:82:e0:72:1c:77:86:b2:
f2:6a:98:30:1e:be:83:bd:48:a9:97:fd:25:c4:bf:
b8:3f:c1:e4:bd:91:63:76:51:4d:dd:76:6e:29:e2:
81:2c:bb:a2:d4:83:8f:28:07:d2:2c:de:12:a0:06:
c6:80:60:65:a3:c9:3c:67:e5:6b:13:a7:f2:67:17:
a6:73:62:08:6e:f3:db:fd:39:ad:bf:47:cc:0f:94:
b2:da:96:99:78:f8:3a:fa:06:99:ee:33:11:39:2f:
7b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1E:F8:3E:C6:24:7F:D6:0A:85:E5:01:2D:9B:2E:E4:38:54:45:C5
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/lB74PsYkf9YKheUBLZsu5DhURcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.200.0/24
82.177.136.0/23
Signature Algorithm: sha256WithRSAEncryption
23:78:ed:16:2a:c3:30:9f:a4:40:93:70:f1:54:70:a1:04:a4:
2f:e8:59:d6:f9:d2:59:0e:c7:cc:78:c5:b9:de:ee:18:eb:a2:
78:01:73:dc:f1:ab:4e:ed:b3:48:50:1d:25:bf:43:13:59:78:
fd:3a:eb:36:d9:5c:7f:bf:d9:58:3c:55:86:52:fa:2b:cd:37:
c3:6a:22:ed:70:2b:9b:69:81:c7:fb:a5:0e:4c:c2:d9:2f:fe:
38:ce:55:72:a0:13:35:d1:3c:94:db:89:12:2c:37:b0:93:7c:
59:a0:56:0e:64:d4:11:1e:4e:ec:39:38:20:27:d4:0e:6d:e7:
eb:56:d2:1a:37:3b:b3:2e:69:f8:af:98:26:65:a2:73:2f:ad:
e1:51:46:25:d2:dc:81:50:d5:fa:7e:b7:fd:6b:ec:a1:06:6f:
1c:b6:de:c6:17:dd:10:f8:37:a3:91:1f:eb:65:d9:06:55:fd:
3a:84:65:bc:d2:91:59:53:f0:8d:f8:0b:26:38:e4:39:03:d0:
3d:94:70:c5:a5:18:d4:39:dc:09:30:dc:b2:64:54:23:05:08:
6e:c7:47:cf:62:8e:3d:eb:38:ab:60:f7:49:95:11:16:13:25:
63:ce:44:7b:37:6e:90:9d:38:e0:a1:5d:bb:a5:fc:ad:d3:9d:
ef:c4:19:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:14 2025 by rpki-client