Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/b2kRM4a8AwqjOdLTXLEYw4TthdY.roa
File: b2kRM4a8AwqjOdLTXLEYw4TthdY.roa (raw, json)
Hash identifier: vaWuNHAw3MdHA1o1y+mH3tIRULREPfPzS2+elCtSnxg=
Subject key identifier: 6F:69:11:33:86:BC:03:0A:A3:39:D2:D3:5C:B1:18:C3:84:ED:85:D6
Certificate issuer: /CN=d73e83146a43869f657451e76d0a305f15a7aee9
Certificate serial: 305DA972
Authority key identifier: D7:3E:83:14:6A:43:86:9F:65:74:51:E7:6D:0A:30:5F:15:A7:AE:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1z6DFGpDhp9ldFHnbQowXxWnruk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/b2kRM4a8AwqjOdLTXLEYw4TthdY.roa
Signing time: Sat 01 Jan 2022 08:04:29 +0000
ROA not before: Sat 01 Jan 2022 08:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24634
IP address blocks: 80.77.176.0/20 maxlen: 24
185.125.152.0/22 maxlen: 24
2a06:b880::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 811444594 (0x305da972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d73e83146a43869f657451e76d0a305f15a7aee9
Validity
Not Before: Jan 1 08:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f69113386bc030aa339d2d35cb118c384ed85d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3d:1e:00:fa:8f:d9:c2:01:41:de:73:67:f3:
ad:1e:5a:1b:f5:af:6f:d4:d3:1e:b4:65:d0:70:b0:
c5:3a:da:80:b0:1e:7e:61:4c:90:ad:d8:fa:29:0a:
20:8f:da:53:09:4d:ce:c7:4b:d1:82:bc:f9:28:1d:
31:1a:96:e8:56:eb:d3:dd:77:9a:09:f3:34:7d:ef:
79:d6:b7:35:22:0c:54:da:7a:cd:4a:bd:81:2a:71:
8a:1e:75:53:3b:ee:79:18:25:4b:25:62:5f:34:d7:
76:99:d2:df:c6:c0:b2:b4:0e:cb:9a:8b:e8:8e:b5:
7c:ee:68:1f:6e:ae:06:b4:7a:d2:e2:22:db:8c:6e:
a1:cd:80:a9:23:3b:b0:48:7a:2b:78:82:c4:11:0e:
8d:b4:75:9d:84:7d:51:db:f0:37:33:2c:63:ba:af:
48:04:4a:80:ee:ef:84:5f:57:57:f7:c7:51:bb:51:
d7:85:64:a6:79:f9:ec:3c:21:4a:0a:03:e8:f5:b7:
c4:64:81:fe:45:6e:f0:b4:a6:81:c5:01:74:3d:67:
e1:ef:47:b6:a4:a6:e8:ee:e2:17:4d:12:ba:00:35:
61:09:b7:a3:e2:8d:89:9e:d7:a5:fc:d2:d3:21:79:
9d:8a:64:0e:d7:bf:e0:ed:1c:47:64:b0:66:0e:d1:
54:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:69:11:33:86:BC:03:0A:A3:39:D2:D3:5C:B1:18:C3:84:ED:85:D6
X509v3 Authority Key Identifier:
keyid:D7:3E:83:14:6A:43:86:9F:65:74:51:E7:6D:0A:30:5F:15:A7:AE:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1z6DFGpDhp9ldFHnbQowXxWnruk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/b2kRM4a8AwqjOdLTXLEYw4TthdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/1z6DFGpDhp9ldFHnbQowXxWnruk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.77.176.0/20
185.125.152.0/22
IPv6:
2a06:b880::/29
Signature Algorithm: sha256WithRSAEncryption
01:43:20:b1:a2:d5:8b:ca:22:3e:f2:e4:1a:8b:c0:a8:fd:c8:
62:ca:7e:be:77:b2:f1:c1:c3:be:34:f9:cb:41:0b:9f:1a:e7:
75:0c:db:e1:89:73:4c:1c:9a:cd:4a:d8:38:01:23:80:8a:3e:
42:2e:6c:d0:e8:6c:44:56:85:9e:d7:56:58:a4:e7:42:aa:c8:
9d:01:e8:7f:a7:45:fb:9d:0e:89:88:bf:0d:9f:55:d5:cc:cf:
5b:ed:68:7b:7b:cf:2e:52:66:c6:e8:19:7e:ae:54:77:29:72:
f3:c7:d9:7c:9e:5b:e5:43:94:f1:41:55:47:46:ee:52:d4:15:
1c:cd:d5:e4:13:e3:6d:1e:5f:b5:95:bc:9e:fb:2d:c0:ca:44:
3d:7f:2f:bf:24:1d:f1:16:3a:4f:ac:61:46:c6:16:64:fd:9e:
ab:59:a2:30:82:42:cd:f5:37:ba:93:e8:ce:b2:e0:fb:9a:61:
dc:7f:ab:a6:34:57:ed:e2:66:3d:48:01:b5:ba:44:0d:7e:23:
c4:71:0d:3c:fd:dc:10:c8:4a:87:df:3c:0a:28:8d:f5:cb:a6:
d9:7c:19:17:c1:c5:24:fa:15:90:5a:68:54:d9:6a:d0:d4:d4:
a5:f8:84:2c:78:bd:93:c5:ac:73:fa:51:f8:98:d0:a8:66:fb:
83:e5:1c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:41 2024 by rpki-client on console-fra.rpki-client.org