Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/_5bcnrf_kv4GPShaipFHlnscelY.roa
File: _5bcnrf_kv4GPShaipFHlnscelY.roa (raw, json)
Hash identifier: C1bteESEqgMfeu3CnH2LmhZcYl/xZIyoq0wy+F5g/k4=
Subject key identifier: FF:96:DC:9E:B7:FF:92:FE:06:3D:28:5A:8A:91:47:96:7B:1C:7A:56
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 0181D41B01C1B2CD1AB36934C6B64CAEEE0A
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/_5bcnrf_kv4GPShaipFHlnscelY.roa
Signing time: Wed 06 Jul 2022 15:22:28 +0000
ROA not before: Wed 06 Jul 2022 15:22:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14516
IP address blocks: 80.231.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d4:1b:01:c1:b2:cd:1a:b3:69:34:c6:b6:4c:ae:ee:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jul 6 15:22:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff96dc9eb7ff92fe063d285a8a9147967b1c7a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:61:4c:03:79:7a:b7:39:68:f4:ad:a1:f8:f3:
a1:c9:c5:64:a8:8c:53:03:35:88:f0:bc:f6:47:4a:
65:88:6c:ac:b7:7b:6b:8e:12:59:fb:a4:d2:af:18:
c4:ab:37:95:d0:00:2a:c9:d5:32:e0:05:c0:58:e5:
ba:cc:53:b9:26:bc:90:3b:fe:6c:a3:67:2b:e6:e4:
3d:3f:63:1c:bd:0e:e2:2c:be:d2:59:81:2a:14:86:
4f:0f:90:cc:5e:05:86:ee:95:a1:80:aa:87:3c:20:
b2:90:aa:48:dd:5a:da:11:56:2c:07:59:e9:0d:b1:
65:94:34:81:02:87:a3:90:a7:f8:3e:f5:53:8a:b3:
67:f3:e6:4a:7b:22:9d:ac:27:e5:8a:d3:a0:79:f4:
e3:45:d3:0e:c5:79:d8:43:cf:0b:54:72:5a:2c:54:
2b:ac:43:78:d1:94:d9:fd:11:e3:b4:08:0f:eb:65:
31:b2:86:e9:d3:e0:c8:e7:6e:47:83:89:0a:8e:44:
8f:cc:fc:3d:19:a7:85:32:c0:19:86:ae:8b:30:c0:
65:72:5d:60:59:71:1d:3f:74:38:e4:ea:b9:f0:b9:
a4:4b:90:e7:89:72:66:be:db:8e:df:e7:7b:09:0d:
94:7a:8f:51:4c:a9:bc:df:f2:ff:8b:fa:37:22:d1:
06:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:96:DC:9E:B7:FF:92:FE:06:3D:28:5A:8A:91:47:96:7B:1C:7A:56
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/_5bcnrf_kv4GPShaipFHlnscelY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.231.216.0/24
Signature Algorithm: sha256WithRSAEncryption
06:b2:6b:3b:ba:18:db:68:bf:17:4e:64:37:16:1c:92:b7:25:
75:bd:08:3b:59:24:8c:54:9d:67:ac:fb:46:e1:f3:9b:11:82:
5c:98:25:37:22:65:28:44:8a:52:e6:f9:bd:d0:b5:bb:80:87:
c1:12:6b:c1:b4:7b:93:43:ed:17:18:ea:96:91:fd:a1:e8:7c:
08:84:7c:bf:13:80:b8:bf:45:6f:71:8b:b9:16:5e:d4:9f:7d:
7b:7a:6d:d6:13:42:1b:4b:5e:41:d7:23:61:e9:87:50:af:c7:
4c:7d:e1:8d:fc:28:6f:3e:c0:33:ba:32:04:df:c6:eb:1a:4f:
5c:64:60:7d:4c:a9:37:65:75:53:42:1b:19:58:bc:01:7b:d5:
ae:70:b4:d5:ec:92:e5:2b:5f:5a:ef:16:13:1f:ec:51:04:39:
34:04:9c:0c:58:0a:d6:07:b6:08:71:f7:44:82:88:25:07:33:
21:87:f8:51:de:76:9b:0f:70:48:92:f2:b0:ec:a2:b8:34:f1:
f4:e1:48:6a:7b:d0:ab:c8:9a:99:b1:3f:8c:98:61:a4:42:73:
e7:53:03:dd:e6:33:d9:dc:8b:8b:04:93:ed:14:03:91:5c:ad:
f4:02:53:1d:b6:cb:bb:ad:0a:30:c4:fe:03:53:d4:d9:cf:29:
1c:41:6a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org