Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/XkTwfuaZuvC1UcLlToXBEJIu2Bg.roa
File: XkTwfuaZuvC1UcLlToXBEJIu2Bg.roa (raw, json)
Hash identifier: FP0Ol592utHx+WJMnG7SGOpuWGhQlE2H73NzUQSrjaY=
Subject key identifier: 5E:44:F0:7E:E6:99:BA:F0:B5:51:C2:E5:4E:85:C1:10:92:2E:D8:18
Certificate issuer: /CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Certificate serial: 018419472ED996302E6D93C899D9BA76B7D5
Authority key identifier: 27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/XkTwfuaZuvC1UcLlToXBEJIu2Bg.roa
Signing time: Thu 27 Oct 2022 11:50:06 +0000
ROA not before: Thu 27 Oct 2022 11:50:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 81.17.47.0/24 maxlen: 24
2001:1af8:8100::/44 maxlen: 44
2001:1af8:8110::/44 maxlen: 44
2001:1af8::/32 maxlen: 32
2001:1af8:8000::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:47:2e:d9:96:30:2e:6d:93:c8:99:d9:ba:76:b7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Validity
Not Before: Oct 27 11:50:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e44f07ee699baf0b551c2e54e85c110922ed818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:91:97:03:54:42:be:bc:01:73:c7:66:40:ba:
7a:e9:ae:79:17:67:51:b7:b0:ff:a6:70:b4:f5:a5:
3e:5c:98:6b:07:06:16:7f:39:e0:f5:9e:65:96:94:
73:ed:f9:ce:4b:73:3a:e2:b7:69:ea:9f:a3:1a:34:
46:2d:be:59:3d:c2:ef:26:f2:97:12:d4:fa:fb:41:
6b:63:e3:ae:8a:bc:da:d3:7b:71:96:d3:5b:f6:23:
73:dc:a6:a5:3c:e3:8f:4f:0a:67:6d:87:15:3e:2e:
82:fb:3e:3f:93:08:4b:f0:83:e9:d2:37:7f:71:f7:
4a:cb:e6:ed:3e:2d:0d:c2:e5:f4:a1:b1:a5:8b:1d:
23:11:7d:9e:ff:ac:4c:98:ec:f7:dc:1b:dc:85:5c:
5f:d4:7e:3d:e5:29:a4:db:55:2d:5e:11:db:fd:f8:
39:5e:61:20:0c:ce:2c:2f:2c:72:c4:9e:03:6f:de:
a5:98:4e:0c:c8:37:45:30:7b:25:ff:1d:ab:c4:ab:
96:7b:32:26:62:70:f9:3e:8c:be:a9:69:f3:83:46:
5c:89:62:10:ea:f3:2b:b2:ec:68:4f:5b:a2:de:f1:
75:c5:46:7a:52:69:a3:be:6b:93:0d:c1:13:bd:da:
65:ca:e4:6b:01:bf:87:53:95:c1:c0:be:5b:1f:d4:
e2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:44:F0:7E:E6:99:BA:F0:B5:51:C2:E5:4E:85:C1:10:92:2E:D8:18
X509v3 Authority Key Identifier:
keyid:27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/XkTwfuaZuvC1UcLlToXBEJIu2Bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.17.47.0/24
IPv6:
2001:1af8::/32
Signature Algorithm: sha256WithRSAEncryption
34:5e:c9:60:d3:3c:70:ce:05:54:2f:29:eb:7a:37:d8:8c:f6:
ee:67:58:da:50:e5:97:38:b6:28:e6:e9:7a:3a:a8:20:99:3a:
56:da:9f:68:d1:d4:ef:6e:82:fc:6a:e5:4b:ab:87:cc:4e:12:
86:0e:09:16:ed:74:d7:c2:72:2e:77:62:94:59:e4:1d:7a:4c:
28:69:8e:03:a8:d2:ea:0c:f1:dc:cb:b7:1d:0f:26:8b:17:a7:
c1:2a:38:8e:e3:d8:60:44:08:2a:65:88:84:92:96:7c:8f:11:
e3:df:95:56:3b:4e:4f:59:ba:39:59:ab:75:39:ad:0b:e9:3a:
f2:ae:cf:04:7c:3b:08:ed:55:7f:fe:a8:ce:63:b2:ce:7d:41:
e9:4d:39:15:37:ed:0f:9a:cd:4e:21:30:05:e8:81:24:1c:59:
2e:a0:96:0a:4f:64:51:87:c0:7d:52:de:cc:aa:33:fb:97:95:
d5:21:fc:43:55:91:da:bd:8c:51:1c:ac:64:58:20:61:bc:55:
66:0c:1f:a2:93:e1:11:8e:96:5c:2a:22:b6:93:b9:9a:ca:ea:
bb:43:97:a8:fb:91:2a:49:f9:c7:29:3d:3b:7f:a6:24:2d:84:
46:d5:d0:fd:11:87:34:45:02:fa:9d:e2:03:81:24:86:11:81:
c0:00:ca:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org