Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/IZYOQafXzzNX_4gKSEZi5k0VDdU.roa
File: IZYOQafXzzNX_4gKSEZi5k0VDdU.roa (raw, json)
Hash identifier: HqYY/n4v87kWD7AowCu4LlXeh1Vy5SGO2FNqSUXVtt8=
Subject key identifier: 21:96:0E:41:A7:D7:CF:33:57:FF:88:0A:48:46:62:E6:4D:15:0D:D5
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0AA9F645
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/IZYOQafXzzNX_4gKSEZi5k0VDdU.roa
Signing time: Sat 01 Jan 2022 08:57:43 +0000
ROA not before: Sat 01 Jan 2022 08:57:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28906
IP address blocks: 81.4.232.0/21 maxlen: 32
81.4.248.0/21 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178910789 (0xaa9f645)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 08:57:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21960e41a7d7cf3357ff880a484662e64d150dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:87:f6:fa:1d:5b:0f:90:16:d9:48:5f:92:67:
0a:db:c5:10:f5:d5:17:1f:0f:01:5c:0d:f5:24:e9:
f2:53:86:bc:d3:69:93:c5:26:9c:ce:e5:2d:41:a2:
19:1f:37:14:b4:4d:d0:1d:b0:a2:74:43:42:07:d3:
70:73:76:a3:8f:7b:c7:e7:f7:0a:0d:75:88:59:2b:
65:e7:67:c6:ab:fa:13:1d:17:23:23:25:69:35:f1:
cc:d6:a2:b9:da:fd:63:56:e1:fa:54:4d:c1:06:1b:
39:c3:75:a6:b7:41:3c:76:7e:e7:43:81:2d:27:9f:
7b:9e:92:62:85:c2:85:19:8e:87:3d:7e:bf:b6:c8:
74:3b:39:45:10:34:ed:7f:8d:6d:db:b9:eb:56:fa:
7d:2f:7b:ec:a9:99:6b:93:4a:c0:ad:e9:cf:40:fb:
bc:27:c9:53:b6:ad:63:28:0a:62:09:07:88:c6:56:
9c:ba:78:59:00:d5:0a:84:0f:0f:dd:c7:5f:66:5e:
23:cc:17:ab:78:b2:68:bc:ea:c5:26:ae:b2:15:60:
62:58:49:84:f3:9d:81:d0:4a:26:12:a9:2f:b5:7d:
b8:c4:69:88:5f:69:c0:06:54:1a:4a:a1:8d:59:cd:
5e:b1:b3:f0:68:c4:38:38:4f:f1:de:30:7b:51:ca:
4e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:96:0E:41:A7:D7:CF:33:57:FF:88:0A:48:46:62:E6:4D:15:0D:D5
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/IZYOQafXzzNX_4gKSEZi5k0VDdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.4.232.0/21
81.4.248.0/21
Signature Algorithm: sha256WithRSAEncryption
b9:66:2d:c3:87:58:ab:67:f2:aa:0f:46:ba:38:82:95:b3:16:
8f:7a:b8:a0:b6:86:32:eb:b7:3e:bf:28:5a:78:8f:4a:bb:62:
d4:38:a3:d4:f1:de:19:69:bd:65:00:38:49:2b:d2:e5:5c:73:
00:38:a0:8b:ab:ec:75:f4:30:74:7c:9c:de:d8:c6:58:61:c1:
1f:60:a8:2b:cb:6e:88:2e:7f:34:5a:8f:cf:90:fa:89:30:60:
fb:70:af:2b:75:61:13:01:70:41:84:1f:99:a6:1b:54:60:37:
b6:a4:fc:2e:77:47:ce:1b:93:2a:21:80:db:0d:f7:88:90:1d:
70:88:01:fa:66:34:59:04:33:b5:a6:ea:af:ab:48:f7:85:71:
e0:ac:d0:91:a1:cb:63:91:1b:af:0d:75:7f:3b:3d:61:58:11:
38:9d:71:2b:3d:45:6d:17:3f:f9:8f:1c:74:b2:2a:d4:48:aa:
5e:f8:00:ba:8b:d2:4c:88:29:35:5b:7b:f4:ff:7e:e4:b5:41:
67:f1:95:d3:1f:ca:c8:c0:c1:65:39:65:72:37:c9:a3:df:8d:
05:4b:d0:49:be:cf:22:fc:35:8a:a6:90:53:6e:ce:2c:99:30:
07:de:ce:0b:b6:89:e5:29:24:bf:a5:87:0f:da:d3:3a:02:93:
d7:eb:59:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:51 2024 by rpki-client on console-ams.rpki-client.org