Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/Ic52MFpBcIqVgZFttnRxeSWc0YI.roa
File: Ic52MFpBcIqVgZFttnRxeSWc0YI.roa (raw, json)
Hash identifier: kj06tXevNUTbQwt9FP5haY+0lOcVaHU13tqyX200CBU=
Subject key identifier: 21:CE:76:30:5A:41:70:8A:95:81:91:6D:B6:74:71:79:25:9C:D1:82
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 11EC07D0
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/Ic52MFpBcIqVgZFttnRxeSWc0YI.roa
Signing time: Wed 29 Jun 2022 09:48:02 +0000
ROA not before: Wed 29 Jun 2022 09:48:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198903
IP address blocks: 80.243.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 300681168 (0x11ec07d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Jun 29 09:48:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21ce76305a41708a9581916db6747179259cd182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:34:a2:48:13:db:08:d1:c8:5b:32:39:1a:8b:
d5:72:d8:82:bc:33:7d:64:fb:0e:72:98:ef:b1:8b:
13:d2:db:d3:e3:bb:1b:8c:ff:81:59:26:d3:f2:7d:
af:c2:fd:14:e1:90:ae:cf:13:20:30:64:4c:1b:2a:
07:68:08:6d:2d:4e:c1:69:34:b8:14:9c:f9:5b:9f:
d8:3d:53:7a:da:34:93:9e:e4:6b:37:0c:0c:f6:02:
59:59:81:b3:e6:d1:01:d6:ee:37:ee:f3:38:51:37:
3c:94:d7:b5:b9:12:11:0f:ac:f3:f0:d0:34:05:3e:
d6:f4:53:bb:f0:b9:0c:1f:9a:b4:45:6e:c2:eb:ac:
f8:82:a4:8e:66:67:92:76:24:91:11:57:32:dd:5d:
cb:34:45:b1:ba:c1:00:d8:9e:0c:8b:3a:03:69:06:
6f:4a:f6:9b:d2:3a:31:a1:a7:d2:8e:04:3d:2c:71:
8b:25:00:29:97:4c:58:db:8e:2d:28:a4:f2:4b:68:
c7:2c:b0:cc:70:97:70:2f:e0:9d:1c:da:b5:c9:18:
79:bc:0a:59:9b:48:49:88:94:69:17:fe:1f:65:f5:
95:3c:82:5e:2a:63:6b:64:9d:b2:7d:b7:dc:50:a3:
7c:31:4d:0f:26:20:cf:53:b2:e3:06:4c:0f:32:b8:
0c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:CE:76:30:5A:41:70:8A:95:81:91:6D:B6:74:71:79:25:9C:D1:82
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/Ic52MFpBcIqVgZFttnRxeSWc0YI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.121.0/24
Signature Algorithm: sha256WithRSAEncryption
19:19:bf:1b:69:13:42:e2:ad:bf:4a:96:54:52:eb:26:61:e7:
b5:03:c0:53:6e:bb:06:22:8f:76:6b:9b:0d:18:57:1f:5d:b1:
76:3f:98:98:7e:c6:5e:88:a8:6d:4e:02:7f:7b:15:32:a4:11:
7a:86:c3:75:df:e4:76:0c:36:cc:4f:f7:63:e6:fa:7f:bc:d2:
8c:be:83:f9:e8:81:0d:3a:79:e4:91:2c:6a:cf:b0:c4:44:69:
a7:dc:10:49:76:0d:33:ca:75:2e:ea:31:ce:d2:2c:43:2b:1a:
9d:86:e7:4a:74:41:64:23:d0:f6:c6:68:60:5e:93:71:cf:b3:
3a:5b:2f:cd:2c:46:c9:a4:ad:c6:f5:01:2c:6d:41:c8:3b:45:
2f:1e:7d:9a:ef:83:10:b9:3d:29:79:8b:23:3d:cc:90:48:dc:
51:5a:48:6b:4e:e8:b2:d4:7d:43:5f:60:b3:e6:bf:17:4a:19:
ec:01:d3:91:3c:6d:0b:44:c9:54:00:0a:16:dd:26:8f:d4:98:
c8:da:7f:d8:b2:c3:40:58:f3:20:50:03:64:3d:92:c8:b2:01:
63:2b:74:bb:14:3e:43:a6:54:6a:9a:1b:b9:32:47:d9:0a:d3:
5b:bf:a7:43:ee:0c:af:6d:27:ee:b8:4e:03:85:6e:a0:30:8d:
37:e0:7d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org