Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/xLAm551BubxBpRKBa2FqRz4FoNw.roa
File: xLAm551BubxBpRKBa2FqRz4FoNw.roa (raw, json)
Hash identifier: IzgPCN1zVglZHvoZ0EW61sxELPuz9mtAzwer3UzHh2U=
Subject key identifier: C4:B0:26:E7:9D:41:B9:BC:41:A5:12:81:6B:61:6A:47:3E:05:A0:DC
Certificate issuer: /CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Certificate serial: 018436FEF6D69CC8E23182CC2BF77DF6ADE2
Authority key identifier: 50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/xLAm551BubxBpRKBa2FqRz4FoNw.roa
Signing time: Wed 02 Nov 2022 06:19:49 +0000
ROA not before: Wed 02 Nov 2022 06:19:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22351
IP address blocks: 81.199.218.0/24 maxlen: 24
81.199.171.0/24 maxlen: 24
81.199.170.0/24 maxlen: 24
81.199.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:36:fe:f6:d6:9c:c8:e2:31:82:cc:2b:f7:7d:f6:ad:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Validity
Not Before: Nov 2 06:19:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4b026e79d41b9bc41a512816b616a473e05a0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:83:c9:de:d7:e9:c3:b0:9b:c2:0b:f7:79:28:
7a:50:95:99:49:b0:2a:87:0c:6f:3c:9e:3b:42:a7:
0a:3e:d1:96:8f:64:f4:4d:93:79:46:12:fb:0f:16:
4d:58:fc:cd:96:77:d1:7d:18:cb:8d:80:f1:4c:8b:
0c:20:d1:bc:8b:4c:ec:94:b1:00:ef:46:21:e6:c7:
7a:13:7c:18:05:7e:3a:f7:b9:a0:47:1a:85:4b:52:
c9:6d:33:42:b3:8d:58:4f:f3:a7:a9:6a:0c:9c:19:
0a:31:5a:ee:cc:9f:eb:f8:78:6f:39:25:c1:81:1f:
14:fd:7d:6c:64:92:e0:62:05:60:16:f8:a9:5d:d1:
5a:98:24:65:76:14:79:cb:dd:3a:82:08:42:28:a2:
48:82:64:ce:b7:46:04:46:a6:76:c1:4c:cc:8b:38:
8e:cb:03:cd:54:a7:39:ca:f3:c3:78:73:2a:67:1a:
8d:9a:d8:0e:49:1f:d3:6e:33:e6:9a:0b:89:01:12:
69:3a:e8:9e:75:21:cb:0e:75:9f:65:09:b9:51:5e:
d9:2c:f0:b0:6f:5c:bf:15:f1:a2:bb:cf:3b:05:10:
dc:3b:d1:be:36:9a:ba:de:9a:ea:29:af:71:c5:83:
11:68:37:a8:ad:90:6f:be:f7:9d:65:10:24:d2:13:
b4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B0:26:E7:9D:41:B9:BC:41:A5:12:81:6B:61:6A:47:3E:05:A0:DC
X509v3 Authority Key Identifier:
keyid:50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/xLAm551BubxBpRKBa2FqRz4FoNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/UBgr7pqgEMH_0tgE9qp7FL3bkfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.169.0-81.199.171.255
81.199.218.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:7c:a1:b2:8f:ba:21:8a:fc:74:c0:41:0f:bb:8b:9c:61:71:
ac:41:c1:e3:4d:55:23:79:70:d2:cb:0a:ee:7c:95:e8:ea:76:
a4:c3:42:69:9e:89:99:9f:26:b8:a3:45:c2:7b:72:7d:29:33:
26:92:ad:99:34:f9:aa:51:2b:6e:fb:08:13:0f:e4:2a:32:1d:
87:8b:8b:5e:03:a6:30:c5:4c:4d:a5:5e:2f:48:f1:a7:33:25:
0e:bb:70:5c:da:36:ef:a0:6f:b7:ac:50:55:6b:e8:ae:67:3d:
87:f3:42:84:1f:17:1a:f0:c9:e2:0a:53:15:34:fe:d2:d8:a6:
77:2a:1a:38:e6:83:6b:08:92:82:3b:66:1e:ec:cc:17:b1:d2:
a0:61:ff:fd:91:55:d1:08:29:5d:8c:0f:17:42:ff:0b:9f:5f:
05:70:ca:01:d9:4c:ae:75:af:b6:3a:d9:f3:71:d1:0c:5c:1c:
84:20:ce:25:a3:1e:75:32:28:d1:69:6d:18:de:35:36:ed:1e:
72:a8:c6:0c:6c:ab:c4:f7:6b:d4:dd:e5:7a:72:bf:7e:aa:7e:
f9:81:d1:7b:2f:28:71:14:fd:37:a5:2e:ad:b1:ed:9b:04:5b:
42:c5:ba:58:c1:9e:dc:37:fb:0a:67:a6:b5:0c:17:00:62:be:
c4:77:ea:12
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:51 2024 by rpki-client on console-ams.rpki-client.org