Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/vmVduNf42NCGFS0HwLFehn43Lt8.roa
File: vmVduNf42NCGFS0HwLFehn43Lt8.roa (raw, json)
Hash identifier: trD7oj4ASzkU1WpRXmolh71YLZ1Vx1zfm97ouWMHNI4=
Subject key identifier: BE:65:5D:B8:D7:F8:D8:D0:86:15:2D:07:C0:B1:5E:86:7E:37:2E:DF
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 0F120022
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/vmVduNf42NCGFS0HwLFehn43Lt8.roa
Signing time: Thu 24 Feb 2022 19:20:06 +0000
ROA not before: Thu 24 Feb 2022 19:20:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6906
IP address blocks: 81.198.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252837922 (0xf120022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Feb 24 19:20:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be655db8d7f8d8d086152d07c0b15e867e372edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e3:5a:6c:21:3f:70:05:47:98:67:b9:6c:1f:
b2:0e:0a:fb:60:e8:99:b4:22:af:ed:77:e8:3c:ad:
0f:21:8b:a1:6c:e2:ae:25:ce:09:cc:c7:bf:c0:0a:
81:be:9c:79:42:6b:c1:4b:a0:e7:00:1e:8b:38:f2:
63:a3:38:a8:0b:ec:83:ef:0e:04:c8:6d:a2:5e:ab:
7c:a8:68:da:8e:d9:26:9c:b1:25:f7:33:7c:77:8e:
63:47:a2:d3:98:fd:e2:ae:75:57:fe:d2:4a:e4:89:
2e:ba:ca:ce:ad:d6:6c:68:bd:a6:8b:82:26:65:68:
11:c0:9e:74:0f:09:77:75:3b:e7:70:32:da:8b:24:
6d:92:8d:88:ae:06:93:43:01:f9:86:fe:0a:73:6e:
06:88:2a:c6:ce:2d:1d:d2:fc:aa:33:41:0b:21:6c:
2a:54:9e:f0:3b:2c:c0:f4:3a:35:a7:f2:00:85:33:
50:3e:6f:7a:9f:dd:9f:44:5a:96:2e:7b:54:df:9c:
e1:97:2b:fb:09:81:a5:22:9d:3f:b6:a3:cd:82:9a:
36:1c:cd:8e:6f:bb:a3:ba:4d:bb:13:32:c7:bb:97:
97:a8:f4:eb:57:7a:34:49:b8:66:05:ec:12:32:7b:
0e:71:c3:21:57:d8:08:b0:a9:bf:18:6f:12:8f:43:
e4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:65:5D:B8:D7:F8:D8:D0:86:15:2D:07:C0:B1:5E:86:7E:37:2E:DF
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/vmVduNf42NCGFS0HwLFehn43Lt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.198.174.0/24
Signature Algorithm: sha256WithRSAEncryption
92:e9:12:30:7b:4d:af:79:48:f3:38:f8:56:86:4e:27:16:48:
df:30:95:ba:43:f3:69:50:55:d9:66:e8:f6:23:b7:1c:11:31:
7a:ad:3a:69:0b:1e:b0:f8:f4:99:88:ab:7b:24:79:f7:38:6a:
46:22:bf:4d:0a:8a:d5:c6:b2:62:e2:ea:ed:20:cd:56:1e:2c:
6d:94:b0:68:43:c0:fb:b3:e4:30:cc:84:f5:92:e5:b1:5e:c8:
fd:68:d9:3d:2b:1a:a2:78:d5:e8:37:b5:be:64:65:cb:c1:18:
91:42:99:51:cd:83:74:db:af:5d:8d:6e:d7:eb:29:63:ab:19:
b7:a8:76:11:69:eb:99:52:01:39:f3:f4:ba:43:2e:87:62:7f:
a9:00:a4:86:3d:be:f6:95:64:51:3f:fc:99:b4:85:70:06:41:
f9:52:33:ef:3e:75:cb:1b:41:a5:b0:bc:49:60:31:7d:e3:14:
ea:37:92:e6:80:ee:c2:e0:ac:e3:45:15:9d:ca:94:72:69:8d:
49:a9:3a:97:70:4e:44:bf:b8:da:20:cd:3d:9c:c5:13:a3:c0:
ac:92:f6:43:7f:e6:4e:75:24:b8:2c:4b:86:82:fd:10:b5:35:
3d:e2:96:c1:4a:01:57:39:cf:a2:8d:71:6d:0d:25:5e:32:73:
13:f3:62:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:48 2023 by rpki-client on console-ams.rpki-client.org