Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/1146ec-03ed-4025-8aa6-7a63590a06bd/1/52FRN7WRAp4eQtrNLe64PDwJu_w.roa
File: 52FRN7WRAp4eQtrNLe64PDwJu_w.roa (raw, json)
Hash identifier: 33aGS6yMIXIJ9WthAGle+UXLahtUrfDbOofcL1dqJyo=
Subject key identifier: E7:61:51:37:B5:91:02:9E:1E:42:DA:CD:2D:EE:B8:3C:3C:09:BB:FC
Certificate issuer: /CN=36ea2abed8908f327f86e2b0af15d4831049ceaa
Certificate serial: 127872F6
Authority key identifier: 36:EA:2A:BE:D8:90:8F:32:7F:86:E2:B0:AF:15:D4:83:10:49:CE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NuoqvtiQjzJ_huKwrxXUgxBJzqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/1146ec-03ed-4025-8aa6-7a63590a06bd/1/52FRN7WRAp4eQtrNLe64PDwJu_w.roa
Signing time: Sat 01 Jan 2022 04:53:31 +0000
ROA not before: Sat 01 Jan 2022 04:53:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35535
IP address blocks: 80.241.114.0/23 maxlen: 23
80.241.112.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309883638 (0x127872f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36ea2abed8908f327f86e2b0af15d4831049ceaa
Validity
Not Before: Jan 1 04:53:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7615137b591029e1e42dacd2deeb83c3c09bbfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1d:0e:1f:7c:ee:5b:f6:8b:cd:54:63:64:c2:
da:2b:fa:e7:88:40:91:76:c0:84:68:82:82:e9:25:
03:e3:5b:20:27:d8:da:21:d0:4a:3f:86:51:b6:e8:
e5:3f:3b:46:92:ab:ff:a4:1c:58:77:1c:e6:e1:91:
b1:7b:36:40:e7:ee:21:d8:a0:76:fa:d4:51:6f:89:
c6:37:6f:8f:ea:b3:66:c1:a8:80:7f:c1:c4:b5:89:
f6:3d:1d:27:72:fc:1e:2f:e7:22:b9:d8:c6:61:54:
fd:23:bf:8d:30:8b:9b:7c:da:dc:f0:98:6e:cd:52:
9d:d2:33:a9:02:da:5d:9a:a2:64:32:6c:94:ff:b2:
7d:00:00:45:87:2b:30:16:ec:7a:5b:76:a9:88:09:
3f:ca:b0:04:b3:1e:90:83:70:c2:47:7b:43:75:46:
93:2f:9a:64:f4:9a:a4:62:42:e2:59:07:34:78:53:
cd:46:79:dd:a7:fa:f6:2b:b9:46:cd:89:77:ba:6f:
66:ba:c4:75:f5:fa:54:ed:a1:b1:dc:50:ee:63:69:
a4:56:4a:df:74:4e:96:d6:7c:bc:cd:9b:d0:8e:18:
96:b4:fe:53:d2:95:db:4c:e2:97:10:ff:e9:f5:79:
1e:34:59:bd:56:82:c6:cd:09:c0:aa:9d:cb:6d:1a:
46:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:61:51:37:B5:91:02:9E:1E:42:DA:CD:2D:EE:B8:3C:3C:09:BB:FC
X509v3 Authority Key Identifier:
keyid:36:EA:2A:BE:D8:90:8F:32:7F:86:E2:B0:AF:15:D4:83:10:49:CE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NuoqvtiQjzJ_huKwrxXUgxBJzqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/1146ec-03ed-4025-8aa6-7a63590a06bd/1/52FRN7WRAp4eQtrNLe64PDwJu_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/1146ec-03ed-4025-8aa6-7a63590a06bd/1/NuoqvtiQjzJ_huKwrxXUgxBJzqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.241.112.0/20
Signature Algorithm: sha256WithRSAEncryption
62:e7:12:36:1a:46:df:ff:d8:03:7e:be:a3:ea:6b:60:8f:f2:
32:f7:66:dd:0f:97:ad:40:16:c8:7f:0a:1c:7d:3f:2a:ac:ff:
b9:03:08:b9:93:e7:a5:37:c7:68:69:09:cd:36:63:53:b9:7a:
92:0a:9e:93:c4:31:eb:ff:18:b0:85:60:be:b7:e2:48:af:82:
42:f4:37:86:96:69:e0:57:a0:d5:a1:45:19:7b:51:55:24:61:
e9:c3:99:f2:00:eb:10:fd:fd:96:54:b0:ce:60:0c:a7:83:26:
fb:73:c5:af:e4:65:d4:90:00:87:a1:5e:f3:55:80:f4:56:28:
de:32:43:8b:a9:8c:56:ab:be:50:d6:79:10:3d:28:d2:0e:91:
ed:2a:a1:2d:7d:69:2c:95:30:1c:82:c8:92:e9:8e:61:fc:7a:
3a:a0:fe:21:18:a2:e2:d1:09:5d:6e:21:98:1b:d5:6b:65:02:
87:67:61:db:3e:d3:00:83:ba:68:b5:75:83:d4:09:68:4a:8b:
f3:42:fd:d1:11:ab:19:bd:d8:91:90:b4:3c:a2:14:b5:01:ca:
9f:73:a5:d1:ad:91:09:53:13:19:bd:b6:4d:da:be:cb:aa:69:
81:66:d4:e6:10:aa:c9:c6:21:73:2e:d0:53:93:38:23:a9:3e:
8f:55:a2:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:34 2024 by rpki-client on console-fra.rpki-client.org