Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/8e5576-33c8-4002-a437-db6671ac7672/1/M7Ku0p-wEsUkTwF5_jwkXwUXVwQ.roa
File: M7Ku0p-wEsUkTwF5_jwkXwUXVwQ.roa (raw, json)
Hash identifier: Q+VqriCFKYHfD4LiJNiSW0rFF1v4zlMTViFb/BpCg1I=
Subject key identifier: 33:B2:AE:D2:9F:B0:12:C5:24:4F:01:79:FE:3C:24:5F:05:17:57:04
Certificate issuer: /CN=4aefcfed51ff158fbe68ccd60b7b39be5f3eae20
Certificate serial: 09E37A44
Authority key identifier: 4A:EF:CF:ED:51:FF:15:8F:BE:68:CC:D6:0B:7B:39:BE:5F:3E:AE:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su_P7VH_FY--aMzWC3s5vl8-riA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/8e5576-33c8-4002-a437-db6671ac7672/1/M7Ku0p-wEsUkTwF5_jwkXwUXVwQ.roa
Signing time: Sat 01 Jan 2022 11:04:50 +0000
ROA not before: Sat 01 Jan 2022 11:04:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39202
IP address blocks: 81.20.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165902916 (0x9e37a44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aefcfed51ff158fbe68ccd60b7b39be5f3eae20
Validity
Not Before: Jan 1 11:04:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33b2aed29fb012c5244f0179fe3c245f05175704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d2:24:f6:75:21:13:c6:57:91:9d:09:70:1c:
0c:17:81:26:55:37:1f:b5:7d:21:1b:f3:5f:dd:7d:
20:66:7e:a9:8f:11:85:c5:cf:05:2a:11:b0:fd:ef:
b1:57:40:f5:cf:68:17:8c:44:70:37:b4:d2:5a:7e:
50:45:2d:62:0b:9d:64:d4:34:01:65:85:2b:09:ed:
6b:b4:5e:50:ab:6f:6a:d6:ed:10:bb:08:db:0c:e7:
a0:7d:89:ed:15:e3:bd:fa:bf:41:65:f7:31:32:5d:
ec:80:b1:89:b6:c9:fb:63:06:3e:8b:7d:e5:e6:a5:
f6:75:4c:5a:a1:c2:48:ac:e3:26:37:ba:9a:b7:61:
5c:52:29:62:56:be:ab:72:35:e0:be:c4:c9:39:71:
91:72:7c:f9:2e:57:d6:dc:d9:c7:81:7c:43:bb:c5:
96:7e:04:3b:da:65:70:2e:dc:be:0b:79:94:53:fb:
a4:f4:9b:4e:04:f0:34:21:7b:9d:58:6a:ec:a9:d7:
af:69:2e:a9:b3:74:7d:78:71:37:18:87:66:7d:8d:
f6:83:f4:81:90:d9:67:07:ef:6a:b6:eb:ca:60:68:
75:a0:03:9d:46:06:dc:03:34:77:f6:5b:c1:84:1d:
84:40:e7:4f:ba:43:9c:cf:68:0f:cf:e6:73:89:79:
60:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B2:AE:D2:9F:B0:12:C5:24:4F:01:79:FE:3C:24:5F:05:17:57:04
X509v3 Authority Key Identifier:
keyid:4A:EF:CF:ED:51:FF:15:8F:BE:68:CC:D6:0B:7B:39:BE:5F:3E:AE:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su_P7VH_FY--aMzWC3s5vl8-riA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/8e5576-33c8-4002-a437-db6671ac7672/1/M7Ku0p-wEsUkTwF5_jwkXwUXVwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/8e5576-33c8-4002-a437-db6671ac7672/1/Su_P7VH_FY--aMzWC3s5vl8-riA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.20.48.0/20
Signature Algorithm: sha256WithRSAEncryption
60:22:91:8d:37:9f:ef:d0:5c:a7:de:a3:40:30:ca:56:c9:c5:
df:1c:ff:c8:ec:1c:0d:fb:ca:de:7a:ce:ca:9e:8f:27:4f:e5:
4a:8d:dc:cd:31:86:19:dd:96:f4:ca:12:78:4f:ba:95:79:a2:
27:a3:9e:26:09:d5:0e:1a:4c:8f:41:76:79:d5:48:c7:91:ec:
5c:a5:ed:bc:45:5e:49:cb:7d:53:5f:c7:c6:75:63:4c:08:cc:
8d:bd:e7:24:eb:cc:6e:c0:a7:9c:99:1a:8e:03:36:b0:3b:59:
ce:7a:7a:06:29:70:de:b6:21:c4:b1:f8:1a:01:fe:de:a2:91:
22:56:6a:31:97:06:16:8a:14:4e:c0:c8:45:9a:30:b1:50:f0:
cb:7b:84:a0:96:26:36:bf:17:90:d9:16:a1:5c:09:01:e3:22:
1f:60:64:d1:bb:05:cf:cd:53:0b:4d:df:2b:15:b8:f2:48:3e:
d5:a0:f1:f0:2e:07:df:7a:29:18:05:76:b7:6e:d2:74:3c:99:
a4:f3:35:98:e2:c6:ff:12:0b:aa:e7:bb:de:f0:d9:47:b8:45:
f0:43:e2:50:d5:45:28:7f:79:24:9a:cd:59:85:8f:6b:72:84:
fb:af:ba:4c:cc:c0:d5:1a:57:85:88:eb:6b:a3:a5:74:bd:2f:
bf:28:ae:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:28 2024 by rpki-client on console-ams.rpki-client.org