Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/MTUaUNWTrxCXMBAsh69ahjiRJqk.roa
File: MTUaUNWTrxCXMBAsh69ahjiRJqk.roa (raw, json)
Hash identifier: TCjz5wtdBSEpOQpDLiwC37WaWu6hcBqYW/tGtVqJ8XY=
Subject key identifier: 31:35:1A:50:D5:93:AF:10:97:30:10:2C:87:AF:5A:86:38:91:26:A9
Certificate issuer: /CN=8bdd074bdebf45154a26bebfdce5538291534b0a
Certificate serial: 018539C07FEEEB91687C982F10A8BA0BF6F5
Authority key identifier: 8B:DD:07:4B:DE:BF:45:15:4A:26:BE:BF:DC:E5:53:82:91:53:4B:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i90HS96_RRVKJr6_3OVTgpFTSwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/MTUaUNWTrxCXMBAsh69ahjiRJqk.roa
Signing time: Thu 22 Dec 2022 12:13:15 +0000
ROA not before: Thu 22 Dec 2022 12:13:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210993
IP address blocks: 80.85.242.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:c0:7f:ee:eb:91:68:7c:98:2f:10:a8:ba:0b:f6:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdd074bdebf45154a26bebfdce5538291534b0a
Validity
Not Before: Dec 22 12:13:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31351a50d593af109730102c87af5a86389126a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:69:df:0f:f5:60:72:3c:7c:8d:2e:5c:95:1a:
59:f5:fc:3b:46:90:51:2c:dd:eb:61:5a:6a:fe:fa:
22:40:ce:69:7d:b3:95:e5:6d:23:17:59:d5:3a:a4:
87:b1:a5:9d:99:a1:61:95:dd:2b:ab:1d:9a:d5:7b:
67:1d:b7:b9:2d:37:fa:8e:b5:ec:56:89:f8:a7:70:
24:c9:11:95:e2:84:9d:39:4e:cc:34:4e:b3:53:ca:
ce:3d:4f:21:69:ff:d5:7e:0f:83:7f:f6:0b:3c:52:
63:f8:70:fe:89:b5:75:95:33:f2:d4:36:a4:be:24:
75:41:b6:0a:71:a2:83:e5:60:0e:2c:42:96:e3:ce:
86:c5:54:d3:24:0b:c9:16:e6:d3:46:0e:01:11:ab:
1c:fd:d4:1c:fc:e4:37:12:15:37:bd:85:1f:74:d2:
9b:56:34:48:b8:80:aa:70:62:35:bc:66:18:cf:65:
8d:ac:43:8a:92:4d:a7:25:fa:ef:3d:3b:c4:80:97:
54:5c:5e:cd:60:9e:51:5a:10:60:88:9f:ad:6e:a1:
30:bb:37:73:52:3c:89:78:3e:0c:27:ea:32:3d:a7:
d0:af:82:06:c0:2e:73:44:17:ac:c6:2d:3c:cd:53:
a8:38:6c:56:d0:85:60:79:08:ba:22:e2:88:84:16:
10:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:35:1A:50:D5:93:AF:10:97:30:10:2C:87:AF:5A:86:38:91:26:A9
X509v3 Authority Key Identifier:
keyid:8B:DD:07:4B:DE:BF:45:15:4A:26:BE:BF:DC:E5:53:82:91:53:4B:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i90HS96_RRVKJr6_3OVTgpFTSwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/MTUaUNWTrxCXMBAsh69ahjiRJqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/af71d0-df80-483e-b059-50fbf7e95042/1/i90HS96_RRVKJr6_3OVTgpFTSwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.242.0/23
Signature Algorithm: sha256WithRSAEncryption
50:eb:34:d8:11:05:3a:40:b5:74:63:0b:13:ad:63:9d:af:87:
f6:e2:b9:9a:c6:98:53:31:d1:d1:d9:c5:bb:46:d4:7b:b6:7a:
47:a4:e4:a8:2e:50:c8:a1:e8:b5:5d:5a:17:d7:a8:ac:00:90:
91:13:11:aa:e5:c9:26:bf:77:f1:a5:b8:6f:16:dc:2d:d3:59:
c3:81:e0:bd:9c:4c:4e:1b:9a:d2:93:4b:9f:98:32:9f:44:a1:
be:d5:7f:46:65:56:18:60:76:90:ed:cd:b7:f8:61:5c:69:86:
ad:43:59:8b:65:8c:69:ae:98:19:d0:99:f4:43:3d:fb:82:d4:
3d:79:7d:7a:50:83:38:1d:54:d1:89:09:bd:46:ff:fa:61:3e:
22:5a:ad:db:43:a6:35:4b:70:2d:12:94:3b:a0:6e:92:59:d3:
95:ef:2f:20:75:4f:b6:92:5e:14:67:ca:5c:ad:7e:56:ca:31:
ac:d8:73:57:1e:18:9a:26:4a:5f:c5:0a:7a:20:8f:a1:6d:0d:
39:72:11:06:da:00:b3:da:fe:d1:c2:55:57:92:2d:c2:5b:34:
25:aa:7c:07:c3:ba:1f:11:a9:c6:f8:a9:68:25:5d:d4:71:c8:
9c:de:49:3d:f6:68:ed:2d:a4:93:18:1c:d0:4f:61:cd:35:b6:
7b:ab:57:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:28 2024 by rpki-client on console-fra.rpki-client.org