Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/fNyPdnjMoGTqREyRnH9BHKe2U6w.roa
File: fNyPdnjMoGTqREyRnH9BHKe2U6w.roa (raw, json)
Hash identifier: ehHjgDd4zP7U/78PE7kX3zuyC2N62nsbGn8wTkD8nIg=
Subject key identifier: 7C:DC:8F:76:78:CC:A0:64:EA:44:4C:91:9C:7F:41:1C:A7:B6:53:AC
Certificate issuer: /CN=230340d27e4b24f9124977322edb36942e2d160c
Certificate serial: 018321A7BB0E5A996B808AC8E098AA6FE32C
Authority key identifier: 23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/fNyPdnjMoGTqREyRnH9BHKe2U6w.roa
Signing time: Fri 09 Sep 2022 09:49:43 +0000
ROA not before: Fri 09 Sep 2022 09:49:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208930
IP address blocks: 81.6.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:a7:bb:0e:5a:99:6b:80:8a:c8:e0:98:aa:6f:e3:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230340d27e4b24f9124977322edb36942e2d160c
Validity
Not Before: Sep 9 09:49:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cdc8f7678cca064ea444c919c7f411ca7b653ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5c:27:24:4c:06:9f:30:58:81:a0:84:ac:b4:
f6:05:18:0d:05:9a:8f:43:7c:3e:fe:4a:11:82:c3:
dd:66:30:dd:60:ca:37:81:bb:31:52:a7:b5:17:f2:
38:c9:41:b7:e3:a2:b6:7b:23:f3:c5:53:19:27:53:
f4:c1:05:e8:3f:b4:9b:61:7b:6a:04:ac:13:cd:1f:
26:81:79:bb:26:39:c0:b6:a6:ab:ea:ef:c4:1f:bb:
8c:3e:13:6d:2f:28:44:42:c3:e6:a7:ad:d3:83:bb:
0d:5d:4b:70:34:d0:ca:50:01:06:7b:39:e9:dc:ed:
f5:53:b7:e9:49:04:3b:9a:5d:0a:99:b9:dc:db:e2:
2e:74:f8:ba:79:c1:4f:02:4c:4a:f1:e3:9b:81:05:
7c:c0:45:a2:d5:ca:2e:0e:34:25:bd:bb:91:18:c3:
b9:30:d3:63:46:84:85:71:a3:cd:3b:bd:d9:df:d2:
d0:85:38:b4:cf:f0:9c:42:49:fb:45:6a:86:6c:58:
03:b4:6c:0e:3d:28:ea:4a:94:30:8f:4d:d4:cb:18:
1f:2a:53:09:a1:af:e9:4d:51:0e:e6:8c:77:d3:ec:
53:8c:a9:db:24:ed:b1:95:e5:3e:15:61:ac:26:53:
ac:c8:71:a8:29:2f:02:3b:28:d8:7d:46:0d:44:89:
3d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:DC:8F:76:78:CC:A0:64:EA:44:4C:91:9C:7F:41:1C:A7:B6:53:AC
X509v3 Authority Key Identifier:
keyid:23:03:40:D2:7E:4B:24:F9:12:49:77:32:2E:DB:36:94:2E:2D:16:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwNA0n5LJPkSSXcyLts2lC4tFgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/fNyPdnjMoGTqREyRnH9BHKe2U6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/7bdf52-6ac5-4c24-bfd0-b570907b59eb/1/IwNA0n5LJPkSSXcyLts2lC4tFgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.6.136.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:54:bd:c0:86:15:d3:4b:c1:fd:4d:8a:b5:b4:10:e1:70:12:
e8:57:0f:1b:28:1c:18:c9:de:4a:0f:8a:8f:eb:bc:88:de:9c:
74:9b:93:1d:d2:24:93:f6:d8:16:34:e4:8d:46:c0:ff:98:5a:
24:4f:9c:f0:b8:94:0c:54:f5:7d:84:b4:3d:fe:96:a7:83:2b:
aa:64:80:0b:e7:5a:d7:d4:e7:dc:bc:6a:ac:cd:86:be:81:0c:
d6:f3:ac:17:34:63:17:6a:37:57:ec:a5:b0:cc:16:3b:3c:f1:
f7:5c:3a:8a:6b:c1:95:8c:67:64:7b:68:4a:ea:5b:9f:f8:77:
7d:c0:06:d8:37:fe:a6:2d:51:fb:da:0a:34:78:a2:9e:4d:17:
a1:07:f0:2e:92:69:79:02:2f:92:29:a1:22:63:89:b0:cf:d8:
31:8a:91:5a:e9:68:bb:da:64:ed:2f:5f:88:ac:c1:28:31:93:
86:2c:30:c9:c8:fe:26:04:3b:0c:6a:6e:a5:01:1a:15:2c:18:
a6:ed:bf:86:b2:47:5b:72:4b:f9:02:73:31:22:c3:a8:3a:13:
66:e9:05:ac:90:65:f0:a7:1f:2b:20:a4:8f:62:da:0f:49:69:
d9:74:bb:82:c1:d1:e9:39:50:8b:c4:c4:f4:a4:28:73:81:81:
fb:71:d3:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:48 2023 by rpki-client on console-fra.rpki-client.org