Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/y3BxyTnQC2Um-RqOCN7vUFf0hX8.roa
File: y3BxyTnQC2Um-RqOCN7vUFf0hX8.roa (raw, json)
Hash identifier: azNh9s7+Ewcq1O7flC1gco6uiDG9PrBjZlRuw7r2Bao=
Subject key identifier: CB:70:71:C9:39:D0:0B:65:26:F9:1A:8E:08:DE:EF:50:57:F4:85:7F
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018432508BA287624B50E8F1F16AB476CA9B
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/y3BxyTnQC2Um-RqOCN7vUFf0hX8.roa
Signing time: Tue 01 Nov 2022 08:30:50 +0000
ROA not before: Tue 01 Nov 2022 08:30:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51777
IP address blocks: 81.12.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:32:50:8b:a2:87:62:4b:50:e8:f1:f1:6a:b4:76:ca:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Nov 1 08:30:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb7071c939d00b6526f91a8e08deef5057f4857f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:31:75:26:03:ad:62:f8:37:09:ee:26:d7:93:
ff:00:0b:a0:c4:62:bc:cf:c5:51:1a:d2:68:bd:ff:
e9:3e:37:c4:5b:b0:c1:bc:47:a6:af:1d:ea:17:7f:
36:e8:aa:93:84:43:dd:8a:34:3d:4b:97:d9:5e:59:
53:43:f2:db:2b:97:70:d3:bc:df:76:56:5e:90:32:
53:db:1d:a2:0d:c7:9f:e1:33:d9:af:0c:ba:34:7e:
6d:d5:ec:c4:06:8e:7a:28:77:a5:49:37:ea:9e:9d:
10:7b:d1:b1:1d:0b:44:8c:24:80:80:f9:12:b5:b4:
6d:66:a6:86:9c:76:26:2e:32:cb:86:f7:d8:b3:0f:
e8:85:da:cf:13:16:e1:71:f2:59:63:fb:70:ab:fc:
31:21:ae:79:da:36:bb:e5:0b:06:6b:a2:57:13:e8:
73:b5:64:89:9e:64:65:7f:c4:9f:61:46:59:67:9e:
24:e2:a7:89:4a:80:9b:55:50:01:ef:6c:d6:f5:61:
59:d8:36:c9:3b:ce:54:5c:0c:61:70:b0:8f:1b:83:
8b:88:17:91:ab:29:59:81:2e:be:45:50:dd:05:53:
a3:1a:1c:b9:c0:f1:fc:d6:b4:bc:82:5b:b2:2c:f0:
6f:67:01:4f:7c:85:93:63:bc:7f:da:79:11:ce:17:
d9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:70:71:C9:39:D0:0B:65:26:F9:1A:8E:08:DE:EF:50:57:F4:85:7F
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/y3BxyTnQC2Um-RqOCN7vUFf0hX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.29.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:14:ff:cc:94:9c:bd:24:12:a1:84:b0:4b:0e:27:52:d0:fd:
1d:2d:f8:9f:e5:89:52:b8:32:65:2a:d0:8b:da:2d:2e:67:38:
de:19:48:32:9b:01:80:c9:4e:6b:b0:20:cf:24:0c:68:bb:77:
d1:23:ef:a0:8f:3e:5f:e3:bf:e1:d7:3a:79:a2:0a:91:7c:d7:
7e:76:93:55:07:c6:5f:70:65:73:80:25:75:e2:68:ea:59:0a:
25:42:cc:3b:5f:26:2e:59:c2:6b:1c:ae:7e:ea:8f:0d:4b:d7:
31:1c:b5:2f:f5:a6:d8:61:ff:84:25:8a:6e:6d:cb:1e:ff:d9:
ae:e1:3a:d2:74:29:8c:61:0c:ba:bf:ec:f5:1c:b6:e2:e6:7f:
00:ba:2b:4d:d5:28:a0:67:87:d6:24:a8:03:86:07:6a:7f:04:
62:e1:4d:7c:c3:12:fb:96:7e:85:51:a7:db:ae:d2:5d:e7:4e:
e1:81:85:5a:fd:dd:d9:e8:4c:c8:a6:2d:29:2c:d7:ff:20:4e:
74:19:27:60:62:ce:e9:98:0b:2f:f6:5f:69:f9:f6:c8:0d:ed:
bc:7d:80:df:18:fe:88:e2:2b:d8:c4:d1:d7:78:83:2c:cd:9f:
52:d5:b6:16:26:3e:7d:16:19:c8:63:b7:53:9c:a9:cc:f8:85:
32:bd:dc:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org