Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/f4VNuAeNnuTbY-E3mzO3aT0df9w.roa
File: f4VNuAeNnuTbY-E3mzO3aT0df9w.roa (raw, json)
Hash identifier: 3XzXaM3I18BjGJm4EFBFP5HU0myHsrjBM/Ic8jrP4F0=
Subject key identifier: 7F:85:4D:B8:07:8D:9E:E4:DB:63:E1:37:9B:33:B7:69:3D:1D:7F:DC
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 075B0905
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/f4VNuAeNnuTbY-E3mzO3aT0df9w.roa
Signing time: Sat 01 Jan 2022 03:51:28 +0000
ROA not before: Sat 01 Jan 2022 03:51:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51659
IP address blocks: 81.28.254.0/23 maxlen: 23
91.244.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123406597 (0x75b0905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 03:51:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f854db8078d9ee4db63e1379b33b7693d1d7fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:53:2d:b0:1f:5d:5e:15:82:69:c3:83:fb:d6:
42:e8:03:65:c9:e0:58:7f:6c:78:22:12:50:c1:79:
61:f6:de:96:fa:e2:0d:2f:23:33:bc:21:1b:b8:e6:
cd:04:b9:17:a2:b7:3c:d3:36:dc:a1:7b:5a:9f:b1:
db:9e:7b:eb:89:89:a0:ec:35:c5:45:d3:57:49:e3:
a4:aa:5a:d2:61:0a:84:4d:fd:08:74:3e:c3:f3:d4:
d1:eb:e5:63:8c:3f:f5:2e:0f:74:80:0a:e8:2a:69:
94:1a:0c:52:f1:14:b8:8c:af:31:d2:c1:a6:32:13:
5e:6b:e7:12:c0:19:3e:1f:82:79:5e:cb:4d:cc:7d:
77:e0:2f:e5:67:f0:e1:f7:d3:34:cc:f1:ca:6a:7c:
e0:9d:72:a6:16:2f:4c:70:0c:38:0d:af:19:a8:47:
df:86:4e:ee:0d:df:fd:f2:b8:b9:7e:66:5c:f4:89:
dd:04:a4:e8:9b:71:73:13:43:6b:01:e4:bf:2b:1a:
72:0e:62:c9:7d:eb:6a:b2:0c:92:36:16:28:61:03:
ef:5b:64:e3:2a:1e:00:70:f2:28:aa:41:bb:dd:0c:
c1:a5:21:56:d2:6b:4b:c0:b9:b7:97:a4:7d:05:22:
23:ce:fe:56:3a:13:01:07:04:05:9f:15:3f:77:bc:
c2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:85:4D:B8:07:8D:9E:E4:DB:63:E1:37:9B:33:B7:69:3D:1D:7F:DC
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/f4VNuAeNnuTbY-E3mzO3aT0df9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.254.0/23
91.244.198.0/24
Signature Algorithm: sha256WithRSAEncryption
44:16:71:1b:0b:6b:4f:6e:1c:4b:15:72:97:56:d4:ce:ce:05:
41:77:01:1e:bd:7b:fb:53:05:bd:bc:9f:3a:98:a8:93:d1:d0:
d9:c5:0f:fc:e7:aa:b8:5a:4e:f0:29:0f:c5:0a:84:c0:5e:a6:
b3:a5:79:79:5f:28:85:0c:db:0c:63:ad:95:44:e2:96:d2:60:
4c:df:bf:88:e5:38:12:b9:c2:b0:ce:99:75:cc:1b:29:b9:5e:
87:fe:6d:43:f3:80:58:4b:bb:66:25:47:15:c7:6b:cd:5e:a8:
97:45:03:0b:30:bd:a3:94:3a:b4:f8:c0:82:b3:88:1c:b3:4e:
8e:a8:96:7a:fc:ea:c3:02:1a:5d:82:93:24:13:5d:5e:95:18:
61:de:56:97:90:99:12:7f:cb:73:83:e5:85:5c:74:f2:50:54:
01:d4:41:70:55:49:b0:a1:4e:00:59:ba:d6:f9:1f:ec:e9:e7:
6e:9e:eb:2c:a4:d6:95:ef:0b:28:b4:84:e6:e7:50:10:7a:37:
96:6d:22:cc:5c:46:40:bd:97:b1:f3:29:58:28:09:82:32:af:
e7:13:e4:4f:e7:ef:87:91:73:ae:3a:06:f3:bd:e2:11:03:4c:
93:22:2e:22:90:91:7b:55:79:64:4c:93:af:bd:da:76:2e:64:
6f:f6:25:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:43 2024 by rpki-client on console-ams.rpki-client.org