Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/zLgyKLIJeE4-yrjoPY9yRgIv7v4.roa
File: zLgyKLIJeE4-yrjoPY9yRgIv7v4.roa (raw, json)
Hash identifier: Ij3ybZErFKadXpDaZLV3weF2e6gQARq/A4NxbPiDfHM=
Subject key identifier: CC:B8:32:28:B2:09:78:4E:3E:CA:B8:E8:3D:8F:72:46:02:2F:EE:FE
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0182F9D9E5F6F2EE12B8B98801059EC8710D
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/zLgyKLIJeE4-yrjoPY9yRgIv7v4.roa
Signing time: Thu 01 Sep 2022 16:19:43 +0000
ROA not before: Thu 01 Sep 2022 16:19:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39616
IP address blocks: 81.29.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f9:d9:e5:f6:f2:ee:12:b8:b9:88:01:05:9e:c8:71:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Sep 1 16:19:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccb83228b209784e3ecab8e83d8f7246022feefe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d8:65:2e:fd:a5:ca:ab:7d:9f:6f:94:ca:c2:
fa:95:77:d6:1e:52:7b:af:ff:92:3b:84:a0:ac:f7:
ee:1d:e8:2c:57:a2:32:45:16:ed:75:f5:b3:91:f1:
cb:e5:d2:67:aa:5e:cf:e4:e6:d4:cd:63:e0:ef:58:
4e:3b:e3:dd:b9:82:5f:d6:8a:b1:bc:36:b1:6f:e6:
ae:b8:f9:67:9f:d3:6f:a1:f9:ce:52:88:5c:5b:fa:
6d:a1:a6:3d:c9:6f:32:5f:ab:f0:e7:e5:95:c3:e0:
ff:b4:b3:1a:f8:e0:05:c5:e4:02:ec:98:0e:5a:ff:
d5:93:06:07:52:32:2e:83:70:48:e1:01:b9:7d:a5:
20:86:60:30:54:38:8c:44:7c:0b:26:17:81:87:39:
e4:54:44:ce:89:9a:e0:5b:1b:cb:1d:49:5f:c3:dd:
a7:62:32:9d:17:cc:b2:d1:9b:b0:18:c1:36:6f:7d:
36:0d:a0:0c:9c:84:71:ce:65:6d:34:4b:b5:ca:9e:
3a:1e:ed:93:a3:b6:16:c7:6b:7e:f4:f8:96:24:47:
32:ce:9c:04:34:b6:1e:4c:34:10:24:76:bf:c2:e8:
62:60:b1:f4:ec:8d:5a:38:6c:2f:c6:e6:f5:4d:13:
46:4b:74:69:8a:d0:a7:5f:a0:f1:d3:3d:04:65:0b:
48:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B8:32:28:B2:09:78:4E:3E:CA:B8:E8:3D:8F:72:46:02:2F:EE:FE
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/zLgyKLIJeE4-yrjoPY9yRgIv7v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.144.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:3f:81:9d:a7:b9:ae:cb:5a:7e:1a:53:df:71:2c:31:9f:ba:
7b:67:cc:05:83:59:f6:eb:cb:cd:9d:e6:c4:50:9f:8f:40:a7:
c1:1b:e6:a5:d9:a5:56:95:63:7b:40:f5:0c:94:3a:bf:ff:72:
42:94:7e:f5:c4:78:d3:b2:87:e5:71:ab:ff:31:e9:5b:e7:0b:
6a:08:62:89:bc:46:46:20:66:ae:18:3f:b1:68:e4:0d:42:95:
44:b8:70:2f:da:46:90:a5:0c:ed:15:b1:e0:4d:03:c4:54:4d:
c5:e4:85:f5:08:6a:ab:a9:23:dd:86:d3:19:0e:95:d6:7a:64:
65:77:99:39:56:e1:a6:cb:92:2a:30:ff:88:4f:f7:fc:92:3e:
c8:33:3f:b9:8a:cb:77:42:30:e2:a4:27:05:10:3f:74:9b:ee:
f2:b8:bb:c4:eb:85:47:89:f1:05:96:09:24:d9:70:1c:d9:62:
ee:8c:77:78:f2:61:3f:d7:d0:89:7e:83:a6:34:95:0f:9f:b8:
6f:a3:06:f1:ab:03:5d:be:05:0b:5f:8d:a5:4a:a7:79:60:c3:
c4:89:a0:a9:12:84:01:83:60:e7:ea:17:7d:87:86:69:4e:4a:
22:1a:b5:5d:c5:25:1c:c2:ad:4c:1b:d9:ac:5c:41:99:c3:2d:
ec:09:1f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:33 2023 by rpki-client on console-ams.rpki-client.org