Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/q5vO9YZR8C0_BqXTlfnciqhavtA.roa
File: q5vO9YZR8C0_BqXTlfnciqhavtA.roa (raw, json)
Hash identifier: jHrroM95kOd8whDCE2u/0/v9pXMRNogoZelYANWVeEw=
Subject key identifier: AB:9B:CE:F5:86:51:F0:2D:3F:06:A5:D3:95:F9:DC:8A:A8:5A:BE:D0
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0181D7A90A658F8A249F9F2C2C7D5F645A09
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/q5vO9YZR8C0_BqXTlfnciqhavtA.roa
Signing time: Thu 07 Jul 2022 07:56:28 +0000
ROA not before: Thu 07 Jul 2022 07:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 81.28.254.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:a9:0a:65:8f:8a:24:9f:9f:2c:2c:7d:5f:64:5a:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jul 7 07:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab9bcef58651f02d3f06a5d395f9dc8aa85abed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:fe:03:1a:01:e9:63:3f:3d:12:99:d5:7c:9d:
48:85:6c:24:7f:8e:08:dd:f1:fc:af:e8:df:c9:3a:
64:03:d9:37:30:aa:90:03:3c:e6:71:82:5d:9b:e3:
04:cd:67:89:ff:b3:8f:5f:2b:ae:78:67:0a:40:9a:
13:be:1d:4d:0f:12:8d:cd:da:c6:18:91:4a:02:91:
28:f8:1a:ac:85:e9:08:a8:16:70:11:07:df:7b:85:
61:30:dd:a4:b0:66:5d:21:48:16:1a:6c:b6:de:ef:
66:55:4f:22:66:16:54:40:e6:e7:74:85:96:b3:b6:
81:f9:af:4f:73:f6:a3:d8:55:e3:64:bb:3c:29:ba:
6f:39:d5:bc:4d:53:21:62:d3:8f:7e:0e:b3:e9:d9:
2c:38:2a:75:2d:ec:48:83:a8:b9:aa:bb:6e:09:49:
56:71:25:f9:a4:2e:bd:cc:14:c2:92:08:6a:55:a7:
0e:c8:c8:d9:65:52:21:9c:d9:2b:9f:8a:ba:96:5b:
0c:09:7f:58:ae:06:d8:b3:86:5f:83:79:10:dd:47:
57:43:ec:1b:79:b6:2a:c4:45:4b:6a:ce:8e:1a:ad:
cd:6b:6c:d7:73:ed:44:3e:d7:61:53:80:54:90:f0:
dc:03:c0:ab:a9:18:0b:d4:f1:be:41:54:f3:8a:c2:
15:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9B:CE:F5:86:51:F0:2D:3F:06:A5:D3:95:F9:DC:8A:A8:5A:BE:D0
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/q5vO9YZR8C0_BqXTlfnciqhavtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.254.0/23
Signature Algorithm: sha256WithRSAEncryption
c0:ff:51:cc:c1:ce:62:7d:98:8c:81:5b:24:bf:00:a8:47:b5:
15:65:07:35:aa:98:34:df:dd:c4:97:ac:93:59:e9:ac:5f:a4:
cc:f5:19:99:e4:6f:58:00:a0:af:9a:c6:0c:e0:95:ce:ec:4c:
25:18:79:a4:46:bc:2e:2b:0b:ae:fc:34:58:7b:c2:a2:01:56:
f4:6a:75:de:7a:25:6c:00:85:4d:5d:fe:11:ca:4d:df:fb:c3:
aa:b6:a9:43:68:74:d7:e4:2d:50:64:47:f2:17:de:45:30:38:
f6:76:05:09:61:91:99:0a:27:73:27:e0:19:82:d7:e5:dd:5b:
98:98:01:8c:4e:a7:8f:6f:85:35:78:2c:15:67:35:c0:e0:1c:
d3:2f:d1:49:f7:d8:db:98:90:2c:44:8b:ac:47:d7:2a:2d:67:
c1:36:2c:6c:ce:42:83:6f:3a:06:5e:e5:42:bc:0f:89:1a:fb:
ca:b3:d7:2f:52:de:d1:3d:0d:40:46:5b:de:15:ad:8f:dc:56:
07:0b:81:15:16:72:c5:fb:80:d8:f0:cb:87:a5:59:e3:4c:6d:
a5:c0:55:08:7c:6c:7b:e6:87:45:15:65:f4:3c:b9:81:af:e0:
bd:5e:03:d3:d5:82:46:ad:e7:1e:ec:c6:2b:7c:f0:0d:1c:4e:
65:28:8b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:01 2024 by rpki-client on console-fra.rpki-client.org