Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/SrYi58gxm9hLdODhyV4Lyq32vPw.roa
File: SrYi58gxm9hLdODhyV4Lyq32vPw.roa (raw, json)
Hash identifier: fMGPHUf4jEFT6+5UK6JXLrXY1JA/rvzR8i72DnSWReM=
Subject key identifier: 4A:B6:22:E7:C8:31:9B:D8:4B:74:E0:E1:C9:5E:0B:CA:AD:F6:BC:FC
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 41FFC7D9
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/SrYi58gxm9hLdODhyV4Lyq32vPw.roa
Signing time: Sat 01 Jan 2022 16:11:19 +0000
ROA not before: Sat 01 Jan 2022 16:11:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3163
IP address blocks: 81.88.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1107281881 (0x41ffc7d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Jan 1 16:11:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ab622e7c8319bd84b74e0e1c95e0bcaadf6bcfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ed:b1:96:1a:ea:c8:84:ad:94:31:76:59:4d:
6d:e4:c7:69:29:31:e7:ba:b4:ce:06:33:e6:33:df:
2a:d3:33:bd:9c:d6:c6:ee:ff:f5:96:85:ea:eb:75:
0c:58:f5:90:31:6a:b2:08:a5:aa:52:c7:14:e8:af:
fc:16:19:9c:e1:ab:16:f8:a9:de:36:63:34:eb:63:
b8:f3:54:76:77:ce:c8:22:aa:cd:d7:17:84:7f:3f:
6b:74:97:9e:f7:0a:fe:01:80:42:f4:96:2b:57:33:
61:61:3d:9d:95:d6:4c:fc:92:48:7b:a3:97:fd:e2:
cf:cd:ef:31:1a:fb:0e:cc:07:aa:57:42:47:d9:98:
e3:d3:71:aa:cd:6c:a6:31:aa:61:d9:08:48:c4:b1:
dc:6f:bb:f4:0b:52:fc:bd:a5:e8:99:7e:64:a9:b4:
aa:dd:43:32:8e:09:8f:b5:a6:c9:ee:f6:a0:27:47:
a6:0b:f0:58:5a:ba:d3:a2:ec:0d:04:64:43:c8:bf:
24:ea:20:bf:1b:f2:80:1f:7f:f8:4a:6e:d6:5f:05:
43:e7:8c:6d:01:24:84:d4:06:23:7a:fb:bb:01:c9:
49:4f:03:f4:4c:df:09:19:57:f4:54:11:6d:a2:8d:
7a:7f:2d:12:9f:f9:e9:9f:98:ec:af:95:35:c7:1a:
27:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B6:22:E7:C8:31:9B:D8:4B:74:E0:E1:C9:5E:0B:CA:AD:F6:BC:FC
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/SrYi58gxm9hLdODhyV4Lyq32vPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.88.21.0/24
Signature Algorithm: sha256WithRSAEncryption
72:72:c0:e4:00:ed:90:ad:d5:ca:9c:8a:8a:e9:a2:de:c8:82:
91:1b:e0:60:56:5a:b6:5f:fb:22:ca:0b:02:a0:25:a0:c6:b0:
c1:0f:5a:ff:a1:c0:24:95:58:aa:f7:81:f1:44:f1:92:fa:80:
35:0e:38:d2:1b:a5:63:f1:c4:ac:47:92:86:ce:f1:05:96:d8:
a1:8e:4d:47:e0:2e:c2:da:68:3f:dc:b2:f0:c8:4f:b2:71:bf:
f7:1d:47:7f:38:c9:00:e2:a4:8e:3b:ce:75:28:de:ee:d6:bd:
34:8c:46:3f:df:72:2b:cc:29:8a:e1:79:21:a3:a2:ad:14:ec:
ee:25:4d:95:07:85:0c:7a:eb:fe:24:f5:7b:3e:b6:4e:5b:11:
8a:69:b3:aa:51:37:4f:ad:d9:16:6c:4a:04:8d:b5:91:c4:2e:
ef:bd:5b:07:58:f5:32:ef:e6:c5:04:49:4a:49:32:f9:5b:8a:
a3:8c:d2:c8:e6:90:1a:a4:19:65:64:bb:e9:90:b4:cf:ae:c0:
a7:ba:3b:c9:51:51:06:c1:c4:39:25:89:9a:ce:97:54:bd:fe:
33:fd:42:35:da:46:d2:0f:ee:af:5a:b7:9c:04:12:4c:fa:1b:
e7:be:b1:91:af:67:6e:6d:98:00:d9:73:c7:64:56:81:db:1c:
21:33:4b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:44 2024 by rpki-client on console-fra.rpki-client.org