Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/oc571Q5Rj0bWiGvJujmOKdfBNr0.roa
File: oc571Q5Rj0bWiGvJujmOKdfBNr0.roa (raw, json)
Hash identifier: WZOh+QAf2ruBWTkpSyu/WFMRH6IpTSFlhiqBKBp88Pg=
Subject key identifier: A1:CE:7B:D5:0E:51:8F:46:D6:88:6B:C9:BA:39:8E:29:D7:C1:36:BD
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 01D5AE55
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/oc571Q5Rj0bWiGvJujmOKdfBNr0.roa
Signing time: Sat 01 Jan 2022 00:50:24 +0000
ROA not before: Sat 01 Jan 2022 00:50:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 81.31.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30781013 (0x1d5ae55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: Jan 1 00:50:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1ce7bd50e518f46d6886bc9ba398e29d7c136bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:eb:19:d3:97:4d:bf:ae:ea:d1:62:6a:5c:d5:
54:68:df:fa:e4:0f:28:65:ca:ae:af:f8:ca:59:ea:
4f:74:ee:43:30:51:3a:38:a2:13:25:b8:9b:75:b0:
9a:d7:c1:d1:87:9c:3a:d4:66:70:aa:72:f2:a8:67:
a2:2a:8e:1e:c3:63:d4:08:2b:31:1c:36:f5:8f:49:
d1:fc:ad:1e:af:44:47:22:27:a5:66:ac:41:4a:37:
02:25:de:6b:16:54:14:24:11:c4:b5:cc:d4:6d:23:
dd:f8:b1:16:e3:e9:06:0a:60:af:5f:e7:5c:2e:ee:
91:cc:3a:0c:d0:79:93:19:f3:a7:28:d1:0f:09:6a:
0d:44:0f:31:62:31:d0:2f:a5:35:a0:ec:3a:b7:31:
0e:8d:43:66:e2:ad:36:44:71:83:47:75:91:d6:1f:
a7:e0:83:4c:c3:2f:4b:e1:6a:f0:9e:0e:74:33:9c:
0f:13:c6:c3:dd:94:6d:38:19:c0:70:a7:33:8d:9d:
15:c2:5b:e0:ce:ee:57:44:7f:5e:8c:24:76:88:71:
15:f0:4a:7b:1c:6c:9b:ae:4e:1b:e3:f7:55:b0:54:
30:e9:c7:bd:12:81:69:c8:27:dc:66:6c:e5:5f:dc:
fc:ca:57:59:73:aa:05:c2:d5:73:03:e5:52:7a:a2:
05:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:CE:7B:D5:0E:51:8F:46:D6:88:6B:C9:BA:39:8E:29:D7:C1:36:BD
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/oc571Q5Rj0bWiGvJujmOKdfBNr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.198.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:55:62:55:2d:dc:02:3c:34:73:4a:7e:f5:e5:3c:a2:5f:25:
61:a3:f2:54:f1:a2:72:bd:89:37:23:42:f7:a4:9b:dc:04:14:
dd:07:26:c9:74:8f:70:4d:e0:c7:aa:b6:d2:d3:af:26:09:70:
0c:50:c5:af:0b:58:95:89:34:e1:97:4b:04:17:7f:ad:71:14:
f4:28:e4:52:d9:84:20:73:d8:e1:dd:68:b8:18:0b:45:b7:04:
b1:b8:38:60:74:a8:cd:ec:02:da:b0:41:58:24:75:12:87:66:
21:cf:05:de:18:88:69:4e:f6:f8:22:99:35:e1:cc:b2:6a:d7:
22:2a:39:a6:95:9f:a1:ea:20:3f:ec:1c:79:26:01:a2:4b:2c:
76:c4:fa:3a:bf:91:5c:01:8b:08:4b:f8:a7:90:45:31:27:91:
f6:1b:f5:6f:a3:31:b4:70:de:cb:3b:bb:5f:7e:c4:2a:76:05:
f7:32:31:4e:6a:27:0b:73:41:25:62:45:20:3f:ea:43:e1:03:
d4:9b:ae:3b:c7:83:d9:ed:e2:16:35:68:4e:d4:6a:16:96:1d:
74:53:b9:4f:02:c0:d8:7e:86:00:bb:9b:64:5b:87:45:6b:af:
77:c6:cb:46:0b:c7:34:4e:31:84:2f:36:45:be:41:13:28:33:
32:39:f1:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:37 2024 by rpki-client on console-ams.rpki-client.org