Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/gXPNCORUysXmXcD6ungnfPEemxY.roa
File: gXPNCORUysXmXcD6ungnfPEemxY.roa (raw, json)
Hash identifier: CNsLCL3R7HqbVhEjj1NLBa/NUDlGK0zYqcTrLfk0eOc=
Subject key identifier: 81:73:CD:08:E4:54:CA:C5:E6:5D:C0:FA:BA:78:27:7C:F1:1E:9B:16
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0183B4E2BDC7C78DC77C354FF7871D84AFA1
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/gXPNCORUysXmXcD6ungnfPEemxY.roa
Signing time: Fri 07 Oct 2022 23:58:22 +0000
ROA not before: Fri 07 Oct 2022 23:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 81.28.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b4:e2:bd:c7:c7:8d:c7:7c:35:4f:f7:87:1d:84:af:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Oct 7 23:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8173cd08e454cac5e65dc0faba78277cf11e9b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:79:04:28:cd:15:b9:1a:f4:09:4e:f6:7c:5f:
09:30:83:54:ae:02:5d:c0:c9:0d:82:9d:02:99:35:
47:46:6b:4b:70:ff:b7:3f:c2:62:68:8b:bf:2f:65:
a5:a8:17:61:a1:9f:c5:6b:64:34:26:23:2d:57:c9:
e1:30:db:63:c2:70:73:49:b5:6d:07:4e:88:dc:10:
f6:5d:65:94:ee:0e:15:06:d0:0c:cb:d0:19:5e:08:
b7:f6:a4:e4:c0:23:2f:ef:a9:1f:5d:22:a3:42:c0:
c5:06:7a:dc:5a:9c:05:eb:b4:5e:e0:46:4f:fe:02:
3e:9a:b7:a1:70:77:be:01:d5:86:66:83:64:d1:99:
81:71:fc:95:e6:16:d0:f6:3d:02:b2:e9:3d:7b:cf:
24:8b:65:fd:fc:b0:15:68:87:a8:88:51:74:fb:18:
bc:55:27:45:3b:ad:42:9b:00:57:02:f4:07:ba:e4:
63:41:b4:76:8d:c2:cd:05:3b:7b:53:0c:ef:86:21:
aa:3d:d3:a4:13:16:1c:27:e8:83:03:ab:03:11:84:
5d:d9:1f:4f:bc:3b:34:7e:c7:4a:6f:5b:d2:1f:6b:
27:cd:c4:b2:8c:d0:5b:05:57:76:d7:83:c0:ac:bb:
10:a6:a7:f6:58:56:b0:ea:c0:6c:2c:b2:b6:97:50:
6e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:73:CD:08:E4:54:CA:C5:E6:5D:C0:FA:BA:78:27:7C:F1:1E:9B:16
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/gXPNCORUysXmXcD6ungnfPEemxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.253.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:8a:a7:a9:f3:6a:d8:6e:54:13:34:c1:e1:6e:48:82:ab:57:
54:13:71:1c:d8:c9:46:1b:7b:f3:58:de:92:8c:c1:af:fe:43:
c1:50:66:62:cd:04:72:af:14:e2:47:1f:85:d3:d2:1a:10:93:
2c:51:cc:7a:90:74:94:88:49:db:7e:f4:5a:eb:a4:cc:cc:c7:
ca:61:3d:02:72:61:b8:3f:d8:8b:85:33:2e:36:e5:52:cd:90:
4e:cd:b6:9c:02:50:ce:5b:6c:0f:e1:67:54:57:95:48:77:4f:
06:21:5e:b3:4a:52:8a:ba:4a:4d:1c:e4:5f:eb:49:e2:a9:12:
7d:4a:08:45:c2:43:1d:ab:ec:a6:77:1c:7e:e0:65:bf:f6:84:
8d:ab:3d:b4:37:1b:d1:c5:4f:6f:dd:92:c5:b2:6a:6f:20:7c:
cd:98:58:35:25:1d:ca:17:fa:d1:b5:6f:2a:82:6e:a0:ee:c5:
49:fb:e1:5c:8d:d2:13:f6:5b:2b:0b:e8:e1:f3:f0:6f:eb:c0:
ad:15:8f:b7:08:42:fb:01:b9:ca:7a:8a:71:95:0f:0e:64:fd:
6f:c8:a1:16:09:04:9a:cb:e0:a9:1a:4f:b6:63:b5:5a:79:08:
f3:2f:78:e2:2f:84:04:35:cc:c9:42:ab:31:c7:9b:26:87:b7:
d0:c3:9b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org