Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/xF2ScCxUTAdfHIYP076tXhcsEWI.roa
File: xF2ScCxUTAdfHIYP076tXhcsEWI.roa (raw, json)
Hash identifier: mOLQbKLXmZeetQbikcUCWx4xXtZSbpJQ1LCw6c1qtNs=
Subject key identifier: C4:5D:92:70:2C:54:4C:07:5F:1C:86:0F:D3:BE:AD:5E:17:2C:11:62
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018570F0CE09250D04CFCCDB985270949587
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/xF2ScCxUTAdfHIYP076tXhcsEWI.roa
Signing time: Mon 02 Jan 2023 05:25:07 +0000
ROA not before: Mon 02 Jan 2023 05:25:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212479
IP address blocks: 81.15.138.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:ce:09:25:0d:04:cf:cc:db:98:52:70:94:95:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 2 05:25:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c45d92702c544c075f1c860fd3bead5e172c1162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:87:af:cb:49:43:a1:45:c0:15:93:d6:53:08:
0e:92:c7:5d:85:40:fa:55:b3:67:38:bb:28:cd:52:
ff:9c:f8:2e:9e:84:51:55:a3:dd:08:0d:8c:3c:fa:
ec:d2:d5:4a:6a:25:2d:2c:df:18:df:b8:3b:e0:6b:
b7:1a:fc:3b:49:f2:36:1b:d1:aa:b1:a6:a9:64:5d:
1b:19:1d:ca:62:cc:90:4c:d0:0e:79:1a:e3:6c:a1:
34:9c:f4:a7:69:33:92:c9:ec:03:0d:36:ad:a3:4c:
de:44:94:ed:60:a9:c3:65:8f:2a:7f:29:ef:ee:e4:
ca:6d:8c:ba:d2:33:2b:db:24:8a:d4:71:5f:f0:cd:
89:20:da:28:ea:52:b8:df:9c:ec:1d:c9:03:2a:dc:
cf:8a:98:a1:92:27:f6:f1:8f:90:4b:23:31:9a:13:
2a:4e:e1:6d:66:da:28:b6:6a:d3:d8:56:da:91:2d:
1d:fa:08:15:37:21:cc:5f:f8:29:ae:e3:e7:7b:08:
32:74:cb:50:70:e3:56:3a:7a:c4:22:2f:2e:82:20:
aa:cc:94:d5:ed:4a:f4:9e:51:7f:fa:6b:e0:4f:bc:
83:df:60:91:74:cf:3f:75:dc:a2:f5:60:60:83:b3:
d8:d7:ff:ba:40:e5:af:fb:db:99:16:2b:61:9c:21:
c8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:5D:92:70:2C:54:4C:07:5F:1C:86:0F:D3:BE:AD:5E:17:2C:11:62
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/xF2ScCxUTAdfHIYP076tXhcsEWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.138.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:2b:0c:ae:49:63:4f:12:bd:a7:c7:f5:79:64:5f:ee:04:69:
bb:6d:e2:73:7d:53:3d:5e:dd:5b:13:4c:6e:12:0e:b7:f3:6b:
d8:5f:2d:ad:1a:81:9c:02:b4:7f:47:b3:27:0b:35:7e:e5:5e:
9f:dd:25:9e:0b:0d:69:9e:45:80:bf:e4:29:ea:54:bc:5d:27:
07:ce:40:59:cb:09:3a:77:9d:e7:d0:6f:c6:4c:55:c6:21:fb:
df:f9:ee:c4:5f:04:77:14:ec:cf:20:64:53:4f:4c:f3:e9:9c:
97:7a:71:69:24:ec:2d:87:df:23:36:41:7c:b9:35:1f:3c:0d:
e5:00:2f:7f:f5:e6:65:0e:bd:35:9c:a5:23:b2:f1:6a:ac:d0:
d0:94:12:55:eb:b4:86:ef:8f:f3:19:1e:ac:f2:bd:d0:db:26:
c0:d4:08:82:7e:a0:dc:a0:4b:d6:ef:e0:9f:40:de:eb:6c:ff:
48:47:cf:60:3c:1a:57:9c:d5:2e:12:a5:60:b2:a7:a5:f4:41:
f5:70:06:b5:09:b0:1c:fb:1b:0b:ec:bb:23:16:1c:a6:f5:60:
85:75:e4:5c:d4:6e:ba:51:d1:09:99:5a:ea:98:c3:7d:67:66:
8a:b1:55:64:14:df:1c:a7:4c:88:35:a3:cc:18:09:ff:d9:8a:
71:d0:84:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:23 2025 by rpki-client