Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/a2-Qh2wPZpoLqe95RXoKt2aMgIY.roa
File: a2-Qh2wPZpoLqe95RXoKt2aMgIY.roa (raw, json)
Hash identifier: c/if+TagXSEkGUyYrTV1ozHZvrHBQHc2J8Z/Fq+HfY4=
Subject key identifier: 6B:6F:90:87:6C:0F:66:9A:0B:A9:EF:79:45:7A:0A:B7:66:8C:80:86
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018488B52659CB57B7780C794BEAECC55771
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/a2-Qh2wPZpoLqe95RXoKt2aMgIY.roa
Signing time: Fri 18 Nov 2022 03:08:04 +0000
ROA not before: Fri 18 Nov 2022 03:08:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212815
IP address blocks: 81.28.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:88:b5:26:59:cb:57:b7:78:0c:79:4b:ea:ec:c5:57:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Nov 18 03:08:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b6f90876c0f669a0ba9ef79457a0ab7668c8086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:cd:ed:89:13:34:e3:dc:8f:b6:ed:a5:a4:fa:
bf:38:da:61:cf:05:4e:e5:42:a6:89:c5:53:c4:f1:
0b:51:a2:dd:35:e2:f1:b8:7d:84:67:4e:37:d7:80:
b8:d9:37:7f:3b:e4:cf:fa:e5:a6:48:b3:b2:e7:8f:
5a:2d:e3:fa:a1:55:b5:14:92:54:85:44:78:9b:3c:
61:a8:8c:4a:4a:ed:aa:8a:cf:f6:6b:52:cf:e5:cc:
fb:6b:15:f3:10:cc:3a:22:b0:b2:63:d9:0b:0f:04:
15:14:5c:6e:0e:89:e0:a1:e2:bf:0b:97:ce:d2:3d:
f4:d3:63:60:6f:5b:ef:d2:0e:e5:a2:d6:b3:83:d1:
ec:b7:af:67:bd:85:0d:90:cb:b6:43:1d:3b:f2:96:
cb:93:fc:d0:d4:5a:ca:f5:fa:fd:9e:b5:7d:37:11:
aa:37:7b:b9:0e:cf:67:30:68:f6:1b:b7:4a:ac:f1:
a5:e1:d8:a4:e1:60:1e:f0:3a:ba:2d:ec:80:6c:c2:
8c:01:c0:83:51:f8:48:e7:ad:68:61:dc:8b:b3:a4:
c4:03:e9:b3:fc:98:8d:37:dd:bc:4b:80:e9:95:a5:
00:3f:ba:90:16:37:24:1d:b4:83:71:1a:3d:f0:8e:
08:d7:03:59:d9:99:38:1c:fd:aa:97:db:e4:7a:cc:
6a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:6F:90:87:6C:0F:66:9A:0B:A9:EF:79:45:7A:0A:B7:66:8C:80:86
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/a2-Qh2wPZpoLqe95RXoKt2aMgIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.252.0/24
Signature Algorithm: sha256WithRSAEncryption
47:42:bc:37:47:92:da:17:83:1d:b4:20:ff:67:9e:d2:5f:22:
53:7f:63:be:20:2b:d2:6a:93:e6:ba:ca:1d:84:39:a9:ec:a9:
64:19:fe:d2:41:05:e6:9c:eb:a4:69:e4:ef:30:cf:47:0f:23:
16:28:8b:e2:2b:b6:f8:79:d6:8f:2e:26:3f:7e:73:d3:98:32:
ab:e7:96:fc:21:3e:a2:e6:d3:b0:37:9d:8c:81:69:32:8f:93:
a6:ac:ce:62:88:a4:86:2d:4e:f9:a4:b4:e6:fa:ee:b6:4d:4e:
ef:58:9b:3b:27:42:92:22:f5:9d:a0:9f:3a:96:8e:23:0e:c3:
82:12:2d:62:02:a0:a8:9d:8a:89:cf:12:29:4b:60:63:f7:f2:
5b:9b:7e:8f:9e:d2:29:7b:e3:11:be:1d:b4:40:e0:7a:9d:09:
e8:b9:f9:18:76:b8:39:81:69:27:92:40:1b:cf:68:2a:a6:60:
d9:3d:d6:ba:b2:ff:6b:12:03:d5:5f:36:83:e2:cc:59:e3:83:
05:9e:58:a1:0b:a3:a9:2c:04:89:72:ce:5c:62:79:14:37:0d:
fb:80:3b:96:8e:d5:da:27:1e:08:81:24:47:80:fa:3d:a2:5a:
87:fe:61:c9:d1:7a:2c:f1:61:20:3d:32:19:c4:25:72:7a:35:
29:28:d4:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:01 2024 by rpki-client on console-fra.rpki-client.org