Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/cjoVoTRU1yid9hJTvGQHY_pcGHc.roa
File: cjoVoTRU1yid9hJTvGQHY_pcGHc.roa (raw, json)
Hash identifier: wJGzm4Bu6v07/tCT/NwHxAtfHL71C3G4rcsFO8dSqRk=
Subject key identifier: 72:3A:15:A1:34:54:D7:28:9D:F6:12:53:BC:64:07:63:FA:5C:18:77
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 379E16D8
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/cjoVoTRU1yid9hJTvGQHY_pcGHc.roa
Signing time: Sat 01 Jan 2022 08:55:44 +0000
ROA not before: Sat 01 Jan 2022 08:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35043
IP address blocks: 81.12.64.0/22 maxlen: 22
81.12.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933107416 (0x379e16d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 08:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=723a15a13454d7289df61253bc640763fa5c1877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f5:d1:20:2b:a1:7d:e9:6e:41:87:0c:0d:ff:
f8:75:06:f3:19:2d:a9:ef:23:bb:7d:c4:1b:c9:4d:
24:3b:6f:87:cd:8c:8b:31:20:58:3a:82:42:5a:63:
d4:44:ac:a3:a6:85:39:1f:20:37:2c:37:ee:a2:26:
23:84:9b:99:69:69:18:3e:c6:2f:c6:bd:0d:13:3b:
35:cb:88:25:a8:c8:1c:17:73:e4:90:2f:20:64:e3:
3c:ba:fa:19:fd:31:6c:03:85:c8:94:aa:a0:a1:ef:
38:5e:e0:47:a6:62:13:5d:cb:4d:f0:fd:9f:cd:83:
21:d6:f1:d6:2a:d0:92:c1:f1:64:9c:68:59:63:f7:
4f:83:e6:16:51:a1:18:76:93:03:4c:9f:3c:23:26:
bf:be:3e:12:41:17:78:ae:6c:2e:03:66:56:80:b0:
e4:47:64:6e:69:ec:b6:67:fe:11:5e:58:1c:21:e2:
c6:1b:3e:53:37:c6:bd:ab:81:c3:ed:79:a6:02:d8:
bb:0e:52:38:10:c9:1d:fd:c1:ee:01:ec:0f:81:1f:
8f:34:05:e8:92:98:52:d3:13:ec:f8:af:2e:e7:e4:
29:b2:90:8a:61:1e:c2:b1:eb:89:21:93:24:f1:e1:
62:68:51:e9:6e:43:0a:c2:c8:17:8f:5b:db:02:28:
27:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:3A:15:A1:34:54:D7:28:9D:F6:12:53:BC:64:07:63:FA:5C:18:77
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/cjoVoTRU1yid9hJTvGQHY_pcGHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.64.0/21
Signature Algorithm: sha256WithRSAEncryption
25:93:95:9a:ac:01:68:07:0a:18:f5:49:3c:e0:aa:2d:26:28:
86:ad:a3:a1:13:4d:75:c1:73:13:39:0b:d0:1d:44:ff:86:ca:
11:22:49:62:20:1b:0d:6f:11:a7:3e:d8:6f:85:72:ba:49:bb:
4c:1d:d5:82:97:fc:31:f7:df:92:fc:f7:9e:70:1e:e3:59:a0:
76:6e:15:d1:29:c6:f0:f1:d3:38:23:c3:05:a0:65:0f:fc:20:
79:20:ed:74:e7:1f:10:d9:36:53:90:40:b5:e8:3a:6a:4a:1f:
09:95:17:4e:ab:60:3a:58:04:b5:92:a3:eb:3d:15:c2:75:cf:
af:b3:b2:0f:b4:92:80:dc:a8:d6:2c:9e:46:02:16:b8:89:56:
f6:c9:4c:85:6b:63:ed:95:14:b9:25:09:56:fe:59:44:fa:8c:
ac:59:95:64:55:5e:6d:be:50:e7:3a:18:27:11:4a:4b:66:c3:
e3:e1:34:b0:4c:d4:3f:bc:eb:65:c1:6b:eb:cc:7e:d3:c0:e8:
d2:a9:de:9e:0d:4e:2d:ea:4b:ae:71:32:0e:f6:21:9d:65:3d:
99:c0:0e:86:3e:be:df:cb:40:b2:8d:33:f4:af:9c:3a:ef:16:
66:05:c5:1f:9e:7e:15:c0:af:89:82:d6:60:21:43:b8:17:67:
19:ab:3f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org