Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/5H_UiuVDzs9E9YBjRztlsjR_P70.roa
File: 5H_UiuVDzs9E9YBjRztlsjR_P70.roa (raw, json)
Hash identifier: bTL5dRLIFmQSluxPtFr/ySopXSgo8WonRtCmfR7raWg=
Subject key identifier: E4:7F:D4:8A:E5:43:CE:CF:44:F5:80:63:47:3B:65:B2:34:7F:3F:BD
Certificate issuer: /CN=a9807f6d50d97d971dcf2e2e5064e9b907adb3ec
Certificate serial: 10CF60BF
Authority key identifier: A9:80:7F:6D:50:D9:7D:97:1D:CF:2E:2E:50:64:E9:B9:07:AD:B3:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYB_bVDZfZcdzy4uUGTpuQets-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/5H_UiuVDzs9E9YBjRztlsjR_P70.roa
Signing time: Sat 01 Jan 2022 02:51:07 +0000
ROA not before: Sat 01 Jan 2022 02:51:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60257
IP address blocks: 81.179.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 282026175 (0x10cf60bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9807f6d50d97d971dcf2e2e5064e9b907adb3ec
Validity
Not Before: Jan 1 02:51:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e47fd48ae543cecf44f58063473b65b2347f3fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fa:f9:e6:62:c3:56:75:e1:5e:ed:24:52:99:
c0:2f:67:8b:01:bf:9e:d4:af:c0:35:13:01:ab:25:
f5:c1:16:ee:78:ba:26:4f:0b:62:8a:79:17:4c:31:
86:2b:cd:b3:8b:04:7d:29:14:6f:72:3b:69:47:c2:
e9:a9:7c:c5:fc:97:b7:8b:54:b1:3b:c1:62:b7:2f:
b0:1c:08:ef:36:35:96:2b:16:bb:d3:d1:41:2d:60:
b9:40:09:ba:42:f1:d6:b8:38:6f:19:5d:db:ed:db:
d7:e6:89:39:f4:d3:a2:38:e8:a3:33:fb:f2:98:27:
8a:a2:c3:c7:e9:45:02:eb:d9:69:ae:59:09:24:8a:
10:c7:0e:b2:50:6f:27:c1:0e:13:87:c9:de:d5:47:
f5:f4:de:d8:7e:a4:4f:9d:6e:64:f3:53:8b:f5:5d:
dc:84:57:5d:29:8d:c6:66:03:2e:5b:89:18:f3:31:
49:70:5c:c7:39:48:62:a5:fd:6c:cd:00:33:36:b1:
e4:06:2f:9e:94:1a:77:c1:01:df:e4:c8:fd:7c:15:
7d:a9:c4:95:b9:88:48:0f:9f:ec:69:eb:2d:ce:39:
4d:48:69:85:6a:eb:76:61:88:da:9b:34:4f:fc:83:
4e:23:c3:93:29:8f:3f:00:6b:eb:ac:ec:2e:c0:40:
b7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7F:D4:8A:E5:43:CE:CF:44:F5:80:63:47:3B:65:B2:34:7F:3F:BD
X509v3 Authority Key Identifier:
keyid:A9:80:7F:6D:50:D9:7D:97:1D:CF:2E:2E:50:64:E9:B9:07:AD:B3:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYB_bVDZfZcdzy4uUGTpuQets-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/5H_UiuVDzs9E9YBjRztlsjR_P70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/qYB_bVDZfZcdzy4uUGTpuQets-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.179.96.0/20
Signature Algorithm: sha256WithRSAEncryption
58:62:f4:17:2d:ff:d2:d2:ed:2d:e9:86:ee:4e:89:c2:a7:06:
0d:54:94:34:7e:9f:2d:b6:07:b7:3f:fc:50:63:80:bc:10:2a:
1b:bd:d5:6d:53:1f:cc:06:ce:0d:71:d1:03:9f:f8:23:e4:c0:
c7:1f:24:ba:2e:c9:ee:e5:bf:b9:a8:20:0b:15:f0:1d:4b:f7:
80:a3:89:f6:c5:7e:de:b4:30:e8:1f:d9:6c:02:08:b1:0d:bd:
f2:19:53:da:54:d6:9b:be:51:0b:79:d4:de:40:07:b8:f9:c8:
ea:0f:2b:7e:45:b2:45:31:23:f9:c0:ea:18:80:cb:30:5f:d6:
ef:c6:f8:22:21:55:a7:10:4c:7f:55:cf:f3:78:59:d0:52:7e:
7c:ef:eb:c9:4c:52:f7:f7:55:57:63:24:d7:a0:c2:9f:68:d6:
9f:d3:82:99:fc:51:64:88:a0:25:20:43:23:45:cc:4b:17:64:
b8:28:64:42:c5:f2:04:c7:19:89:f8:ce:97:cb:29:35:b3:ba:
ac:d1:a0:72:7d:11:6a:a1:5b:f4:fa:c8:74:6b:bf:42:09:39:
01:11:61:35:df:04:81:93:ac:4c:49:4f:19:e5:2d:c0:28:a7:
e9:1d:b1:4e:e7:5d:33:65:75:e9:14:73:d2:85:14:cd:c9:9f:
23:fc:63:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:33 2023 by rpki-client on console.sobornost.net