Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/h5T3yXfvBqQG4vXdmeAlLbkVeqY.roa
File: h5T3yXfvBqQG4vXdmeAlLbkVeqY.roa (raw, json)
Hash identifier: qOuaLyzwZe3arwB1REwJfjOvEobMMie5932Y70uuPxU=
Subject key identifier: 87:94:F7:C9:77:EF:06:A4:06:E2:F5:DD:99:E0:25:2D:B9:15:7A:A6
Certificate issuer: /CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Certificate serial: 0AC3349E
Authority key identifier: B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/h5T3yXfvBqQG4vXdmeAlLbkVeqY.roa
Signing time: Sat 01 Jan 2022 15:06:22 +0000
ROA not before: Sat 01 Jan 2022 15:06:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15547
IP address blocks: 81.88.176.0/21 maxlen: 21
81.88.176.0/20 maxlen: 20
213.221.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180565150 (0xac3349e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Validity
Not Before: Jan 1 15:06:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8794f7c977ef06a406e2f5dd99e0252db9157aa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4b:4e:d9:af:3a:e7:8a:98:7c:ae:af:26:9d:
81:7a:78:d1:ef:ba:7c:b7:5d:d2:7e:c0:1d:97:19:
ca:88:1e:8c:03:b4:1c:3a:5e:bf:fc:1d:3a:51:cc:
a3:89:3f:4d:75:a6:16:ce:d6:0e:39:1a:94:5c:4e:
a4:98:7b:68:a3:53:28:14:23:a8:8b:29:b7:28:2d:
f7:3d:ad:7a:57:e3:c3:c0:07:a5:44:84:a0:92:4a:
97:d7:a2:35:ed:69:8e:c7:f0:60:64:d3:fd:db:61:
f7:9a:6d:7c:87:81:96:df:64:41:db:4d:6e:06:37:
8b:40:ad:3b:6c:21:2e:5b:30:d9:aa:11:55:d8:ad:
1d:64:ed:07:05:f8:16:d2:2b:03:bb:20:64:50:2e:
65:7e:c3:b3:4f:05:e2:6e:38:73:bb:3c:0b:62:b2:
13:0e:a7:96:ac:2e:9d:8e:c5:53:2d:91:4f:f1:65:
2c:0b:66:15:0a:ab:d8:25:a7:53:8b:92:e5:26:b6:
9b:2d:2c:67:f3:81:33:17:a8:5f:d0:29:16:73:3c:
fc:18:6d:3d:6b:91:a1:cf:d3:42:f9:b1:f1:47:87:
13:e9:81:63:fe:52:e6:ee:af:5f:2d:2b:b9:3e:17:
84:24:c6:5c:9a:85:d6:94:8e:5e:6e:02:ba:bf:5e:
8d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:94:F7:C9:77:EF:06:A4:06:E2:F5:DD:99:E0:25:2D:B9:15:7A:A6
X509v3 Authority Key Identifier:
keyid:B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/h5T3yXfvBqQG4vXdmeAlLbkVeqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.88.176.0/20
213.221.128.0/19
Signature Algorithm: sha256WithRSAEncryption
c0:0c:85:8e:9a:10:28:6d:fa:95:60:52:66:11:7b:2d:51:71:
1e:1b:96:c9:a4:44:17:ce:61:7d:9b:ff:57:a2:c7:04:ce:47:
bc:cf:82:a6:08:31:3e:37:94:78:81:29:52:59:f2:9f:3c:41:
b7:0a:6b:52:5c:3a:6c:5c:82:5e:0b:25:7c:42:57:4c:09:4f:
9f:43:1c:c6:47:37:05:1a:00:28:14:4a:fc:8f:79:34:80:e1:
5b:4a:f3:43:73:80:85:e8:59:26:e2:53:3d:55:f0:43:81:84:
32:53:5e:9f:5d:3d:0e:c0:a2:12:85:46:76:ef:26:32:5a:4a:
3e:94:ac:b7:03:51:73:c5:34:e2:a9:b3:0a:38:20:7e:25:c4:
fa:93:ba:fc:02:91:f0:c7:9b:4a:29:fe:77:e7:19:bd:86:3d:
72:41:f5:77:54:5d:52:19:ed:15:0a:e4:42:c5:ca:94:bd:90:
b3:60:e5:bb:24:9d:80:41:cd:ba:5e:34:ac:81:8d:be:ca:ed:
fe:d9:7a:72:4f:8f:f6:65:d8:22:b3:ff:d4:0d:01:71:99:b6:
05:51:ba:b8:53:ec:b1:08:f1:c0:b4:e9:c1:cf:93:29:21:d3:
96:16:37:6f:d9:44:08:9c:f5:4a:ce:29:26:58:37:40:39:9e:
47:73:b3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org