Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IpA2Gkeob-yhAmN2aydg8dhWdkA.roa
File: IpA2Gkeob-yhAmN2aydg8dhWdkA.roa (raw, json)
Hash identifier: faNi2SpEiob/vk0h31iyL5PABC1f+mmDlYWpeRUteJ8=
Subject key identifier: 22:90:36:1A:47:A8:6F:EC:A1:02:63:76:6B:27:60:F1:D8:56:76:40
Certificate issuer: /CN=230340d27e4b24f9124977322edb36942e2d160c
Certificate serial: 10EC4110
Authority key identifier: 23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IpA2Gkeob-yhAmN2aydg8dhWdkA.roa
Signing time: Sat 01 Jan 2022 08:52:59 +0000
ROA not before: Sat 01 Jan 2022 08:52:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24848
IP address blocks: 81.26.0.0/20 maxlen: 20
81.6.176.0/21 maxlen: 21
81.26.16.0/20 maxlen: 20
81.6.184.0/22 maxlen: 22
81.6.188.0/22 maxlen: 22
2a00:cd80::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283918608 (0x10ec4110)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230340d27e4b24f9124977322edb36942e2d160c
Validity
Not Before: Jan 1 08:52:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2290361a47a86feca10263766b2760f1d8567640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ec:e6:08:e7:52:5e:72:48:2e:d8:da:7d:a0:
2b:a4:6c:ec:44:c2:8a:03:eb:6e:92:0d:45:b8:95:
f5:37:e7:14:3b:fa:c5:ff:d2:f0:b0:b1:79:b2:15:
53:1e:7a:4a:11:1c:af:5e:43:85:c6:36:d3:70:6a:
ce:14:8c:e4:d4:15:cc:dc:ad:74:bf:47:c6:06:8f:
da:6a:51:ef:e9:f6:c9:70:31:e9:cd:93:b1:66:b8:
b2:93:a3:2e:b8:e0:ba:2c:80:38:bf:78:1c:cb:ea:
d8:92:d3:07:24:e2:d7:14:bb:4d:36:36:d6:db:12:
35:97:35:82:13:71:52:9a:00:a6:31:40:09:57:4b:
35:15:79:17:96:27:ce:37:29:49:f7:18:28:84:73:
3c:17:22:40:ee:db:00:f3:9a:12:3c:6c:ef:10:d3:
e8:61:50:6a:ee:bb:25:af:be:ab:4b:7d:46:7a:fc:
e6:d8:21:6f:25:6c:4b:c5:d0:d0:90:b3:48:2d:a2:
7e:9d:ad:66:47:1e:d1:87:5d:16:cd:60:22:ac:e7:
4a:ca:9d:1a:51:49:64:7d:c8:12:a7:7b:dc:b2:90:
0b:2d:53:1d:db:bf:b9:19:06:03:20:94:27:c4:84:
6b:5f:2d:7a:96:b7:dd:47:46:af:ed:6d:c3:2c:92:
80:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:90:36:1A:47:A8:6F:EC:A1:02:63:76:6B:27:60:F1:D8:56:76:40
X509v3 Authority Key Identifier:
keyid:23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IpA2Gkeob-yhAmN2aydg8dhWdkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.6.176.0/20
81.26.0.0/19
IPv6:
2a00:cd80::/33
Signature Algorithm: sha256WithRSAEncryption
62:d5:d1:48:b1:68:e6:fa:54:1a:c7:c1:8c:f3:75:09:7a:bf:
8d:ea:75:91:b0:2b:8f:32:67:a1:69:48:14:f2:b3:30:54:14:
34:2f:90:fb:2b:8a:bb:81:7e:af:de:2b:f2:95:d5:8f:8c:65:
e7:6e:d2:a3:0b:28:f2:72:cc:e5:17:29:b0:bf:ee:33:94:e0:
1a:de:a8:fe:2b:20:8f:f3:8d:cc:eb:bf:e6:0d:41:68:4a:35:
d1:00:2e:32:b5:4f:36:2d:00:8a:a2:bb:e1:01:51:c4:5e:67:
cf:03:d7:1a:e1:63:73:04:93:64:f2:37:ce:61:7e:36:54:53:
8c:19:ae:74:1b:f8:14:5f:d6:b5:16:93:b3:5f:07:ad:2c:cc:
64:17:35:09:11:27:68:2c:66:02:b1:f2:3c:19:73:18:27:5f:
02:fa:02:54:ee:98:5a:cb:9f:60:75:51:28:2a:d0:8f:70:40:
79:d6:54:22:c2:c3:e0:02:8e:74:ed:fe:d4:d0:90:e8:9f:8a:
3d:c8:b0:7f:1d:52:45:9f:69:bc:74:87:83:54:52:5a:4f:10:
21:08:6d:24:74:b6:aa:6e:cc:61:45:03:39:c0:03:68:9c:aa:
92:68:8f:07:18:51:3d:44:35:02:ea:20:4f:85:bf:2a:b2:29:
a1:e8:fb:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:17 2024 by rpki-client on console-fra.rpki-client.org