Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/493ab8-54c4-42f5-b4af-ddb35b1abad5/1/nUj9-J9QfwufBW9yPZYmF5hGgz0.roa
File: nUj9-J9QfwufBW9yPZYmF5hGgz0.roa (raw, json)
Hash identifier: LRCEQcHEWzYH7oIwiPFwy1rIbAA7TFx3rgJEgDRdW7k=
Subject key identifier: 9D:48:FD:F8:9F:50:7F:0B:9F:05:6F:72:3D:96:26:17:98:46:83:3D
Certificate issuer: /CN=77c7dd25ca5fb1dc913c2ffb916fa22fb8610b78
Certificate serial: 0155DE
Authority key identifier: 77:C7:DD:25:CA:5F:B1:DC:91:3C:2F:FB:91:6F:A2:2F:B8:61:0B:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8fdJcpfsdyRPC_7kW-iL7hhC3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/493ab8-54c4-42f5-b4af-ddb35b1abad5/1/nUj9-J9QfwufBW9yPZYmF5hGgz0.roa
Signing time: Tue 22 Feb 2022 14:32:28 +0000
ROA not before: Tue 22 Feb 2022 14:32:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40339
IP address blocks: 81.16.184.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87518 (0x155de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c7dd25ca5fb1dc913c2ffb916fa22fb8610b78
Validity
Not Before: Feb 22 14:32:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d48fdf89f507f0b9f056f723d9626179846833d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2b:31:f3:a4:d8:ed:77:5e:91:78:3e:11:ec:
a5:cc:e2:3f:75:16:09:79:9a:ed:be:27:48:c2:9d:
33:4a:f2:a6:74:ea:92:22:95:b2:50:66:0a:db:12:
1b:88:54:9d:1a:bd:df:30:45:f2:be:0b:62:bd:75:
ff:1e:a6:85:2a:5a:d0:70:30:8b:53:9b:6d:df:41:
39:60:e0:ba:c1:59:28:da:a3:7b:7b:f1:ad:74:a6:
b5:29:78:8c:e0:84:0b:1a:40:f9:6b:63:b5:1e:01:
b3:44:32:4d:4d:84:bf:68:8e:e2:17:36:68:49:8a:
c0:3f:58:11:22:9d:8d:21:d4:65:37:47:50:e6:27:
d4:0a:9b:88:6e:3b:25:9e:cd:b1:ac:fb:48:85:60:
60:4b:11:ae:d9:14:a7:59:22:85:01:06:87:00:dd:
b3:0b:86:ed:c1:5f:da:35:f0:7e:30:3b:b1:0d:1b:
ed:40:97:af:b4:61:cc:61:7d:28:10:98:ee:2c:a9:
fe:9f:46:1f:99:b3:ea:83:d8:f1:3d:ca:81:e7:ee:
6f:41:27:86:58:0f:f9:cf:65:d6:93:c8:3f:97:f6:
5d:c7:1d:22:b9:b8:b5:0f:06:f7:d6:b5:ed:8b:af:
f9:3c:83:cd:67:27:a3:d1:ad:52:c5:96:07:e3:1f:
aa:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:48:FD:F8:9F:50:7F:0B:9F:05:6F:72:3D:96:26:17:98:46:83:3D
X509v3 Authority Key Identifier:
keyid:77:C7:DD:25:CA:5F:B1:DC:91:3C:2F:FB:91:6F:A2:2F:B8:61:0B:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8fdJcpfsdyRPC_7kW-iL7hhC3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/493ab8-54c4-42f5-b4af-ddb35b1abad5/1/nUj9-J9QfwufBW9yPZYmF5hGgz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/493ab8-54c4-42f5-b4af-ddb35b1abad5/1/d8fdJcpfsdyRPC_7kW-iL7hhC3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.16.184.0/21
Signature Algorithm: sha256WithRSAEncryption
1c:8d:ce:bf:91:80:69:0c:42:22:fc:3f:de:ad:9f:27:65:a8:
62:7b:b6:42:6a:8b:65:29:a3:f8:6c:fa:5a:34:26:8a:9c:f1:
a9:49:82:fa:05:70:ed:3b:27:af:13:8f:af:e8:30:38:91:3d:
55:8c:c4:14:0f:dc:ad:ad:4f:47:96:92:91:bc:5b:48:6d:7f:
cb:c0:4e:7b:45:a7:9b:84:e0:2f:3a:40:b6:44:74:7c:68:6f:
8d:2f:ae:ca:8d:98:13:20:1c:2d:49:c2:73:d8:68:1c:f9:cf:
d5:fc:b0:f7:9e:47:29:ff:49:2e:38:aa:14:e3:9b:c3:57:73:
81:23:e3:b8:dc:a2:e3:99:98:40:f2:da:4a:f1:ef:fe:c1:d0:
59:9d:16:a4:64:d6:47:0c:a3:c4:ff:67:f0:f9:91:06:9b:c1:
82:35:a7:63:65:83:7f:a2:27:1b:7a:4d:fa:c8:d0:97:28:e4:
a0:36:ad:1e:ed:4a:d5:ee:e1:51:9a:9f:d6:ce:59:f7:73:04:
f3:e7:e1:99:24:cb:7a:d8:8a:41:c5:9b:4e:9d:65:f4:c6:47:
e9:1c:f4:6a:ec:d4:00:d6:0b:a3:c2:95:bc:f8:99:4b:9e:01:
0b:8d:94:3e:28:62:d4:63:15:f5:6b:06:96:c7:20:6c:97:46:
68:47:4b:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:19 2024 by rpki-client on console-ams.rpki-client.org