Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/T2ouEl-LylpAG9_WDI2eKfpOwUc.roa
File: T2ouEl-LylpAG9_WDI2eKfpOwUc.roa (raw, json)
Hash identifier: O1fkGdfh1g9c93+Rd8ixeUhrW3u1PigMCKUO3AYz8e0=
Subject key identifier: 4F:6A:2E:12:5F:8B:CA:5A:40:1B:DF:D6:0C:8D:9E:29:FA:4E:C1:47
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 01847580C1468D9B94D9917B202B2F094878
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/T2ouEl-LylpAG9_WDI2eKfpOwUc.roa
Signing time: Mon 14 Nov 2022 09:38:03 +0000
ROA not before: Mon 14 Nov 2022 09:38:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211415
IP address blocks: 81.31.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:80:c1:46:8d:9b:94:d9:91:7b:20:2b:2f:09:48:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: Nov 14 09:38:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f6a2e125f8bca5a401bdfd60c8d9e29fa4ec147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b0:91:51:55:23:a0:c7:f7:e7:60:48:20:d6:
88:16:5d:31:18:d9:4c:2f:8b:1d:aa:f5:eb:66:d1:
f2:90:04:e4:d3:e9:ff:b2:99:0e:41:9c:fc:fb:19:
e2:dd:3c:89:16:18:65:b4:ec:f8:73:69:e7:42:e3:
44:27:1b:cd:36:0b:90:16:0f:33:4f:a4:9b:90:f6:
b1:6b:f6:29:98:70:0e:af:fd:26:92:48:20:e7:be:
98:41:38:27:8c:1f:f2:87:f3:0b:b9:55:08:28:29:
67:13:81:33:c0:48:9e:b1:79:01:1d:9f:dd:c7:5b:
e2:51:4a:7e:b4:33:f1:f8:79:a4:1c:ad:e1:4a:15:
5f:b8:fe:51:d8:b2:0d:11:2e:5c:30:3d:da:c5:02:
b8:15:8b:47:cc:39:35:13:bc:ab:3f:a0:71:78:26:
62:74:fa:cc:c8:37:ec:64:f8:00:11:e7:62:ea:74:
8f:fe:71:da:8d:b5:45:ad:ea:39:cb:5d:cd:44:cc:
be:1e:87:f4:55:5e:a6:dc:43:e7:fe:99:93:37:ce:
e0:e2:df:85:b7:8b:58:8c:99:58:f2:ed:7e:f9:32:
55:0a:ba:de:1c:42:3e:7a:b3:c8:bc:8a:5d:cc:2c:
3f:b4:80:7d:bf:2b:f4:dc:50:5e:f2:0e:cd:31:27:
c5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6A:2E:12:5F:8B:CA:5A:40:1B:DF:D6:0C:8D:9E:29:FA:4E:C1:47
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/T2ouEl-LylpAG9_WDI2eKfpOwUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.198.0/24
Signature Algorithm: sha256WithRSAEncryption
36:2e:30:e1:75:c3:1f:96:43:cc:71:3f:c4:5f:d1:05:c5:e4:
bd:2a:44:9f:d4:ff:a7:12:b0:0b:a5:21:63:b6:65:0f:f7:3a:
9e:d3:3c:24:ec:60:22:41:59:b6:3c:74:8e:8b:26:12:7b:8e:
b2:00:b1:ab:73:c4:b3:4c:82:e7:a5:57:bd:a7:e1:31:a3:11:
08:9f:c1:44:5c:01:b2:8c:2d:cf:06:1a:92:70:ff:77:2d:d0:
5c:34:ec:4a:ac:cb:65:08:a8:a3:d4:df:05:0b:45:46:05:5c:
68:fd:63:8e:66:09:3e:7e:4b:65:75:33:22:6d:ec:e6:11:5b:
b1:21:ea:4a:16:fc:85:0d:93:8a:cf:45:7e:a1:fa:bf:d0:8d:
c3:d0:2a:fa:1a:cc:79:f6:a5:c9:d3:e7:ec:17:85:8b:c5:f1:
eb:39:76:6f:f1:39:99:b0:89:80:f4:45:44:7c:5e:49:b2:1e:
10:77:e5:62:09:85:c4:b3:3e:a3:ae:23:3a:f6:e0:43:62:ea:
67:56:f7:0a:75:3e:25:d8:ba:c3:2c:26:14:2f:b2:90:0e:93:
8e:09:06:19:d2:4b:48:0c:30:4d:55:c9:37:de:3d:7c:42:61:
41:88:52:07:20:78:ef:cb:b2:8a:88:f9:8e:8b:ea:58:8c:6e:
d2:c3:54:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:08 2023 by rpki-client on console-fra.rpki-client.org