Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/sAgsajF6mQaAYiTNCb9KGBBoboU.roa
File: sAgsajF6mQaAYiTNCb9KGBBoboU.roa (raw, json)
Hash identifier: aIumjAWfbpvrCsDLLcFB4nCe3YqttzcMkrX2g8fUb7Q=
Subject key identifier: B0:08:2C:6A:31:7A:99:06:80:62:24:CD:09:BF:4A:18:10:68:6E:85
Certificate issuer: /CN=297c508d23b38315bbf45b726d22050a46127b8c
Certificate serial: 0F164546
Authority key identifier: 29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/sAgsajF6mQaAYiTNCb9KGBBoboU.roa
Signing time: Sat 01 Jan 2022 12:05:47 +0000
ROA not before: Sat 01 Jan 2022 12:05:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44494
IP address blocks: 185.81.52.0/22 maxlen: 22
80.245.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253117766 (0xf164546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297c508d23b38315bbf45b726d22050a46127b8c
Validity
Not Before: Jan 1 12:05:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0082c6a317a9906806224cd09bf4a1810686e85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:35:8a:79:65:c1:41:96:bf:e3:5c:a1:e0:af:
48:50:d0:34:ee:5c:20:de:38:69:63:76:d2:61:63:
ef:32:c6:6c:a2:4f:37:3e:98:ec:93:82:a8:d1:16:
0c:87:51:38:3b:8d:f7:08:a7:29:f5:88:48:b6:a5:
a6:a6:19:77:54:80:67:09:3b:1d:2f:2f:20:ab:9a:
de:21:03:4f:a0:63:e5:18:49:a6:cf:e1:24:e0:7e:
3c:63:7d:03:57:05:23:e7:18:fe:f8:2b:98:89:b8:
6a:2a:85:38:ed:1e:33:14:36:bf:35:ed:96:14:c7:
85:a0:93:e6:fe:75:42:37:ff:7e:b4:9c:ab:3b:31:
db:fe:d5:88:af:d8:b1:01:75:7d:86:2e:57:2e:91:
a0:c5:03:b7:ea:d0:25:e3:64:01:63:04:a9:2e:cc:
74:ca:7a:bd:7f:f7:18:c6:d7:f1:c0:e2:8a:2f:ee:
f0:42:89:4a:80:81:4d:5b:bc:cb:94:a1:dc:f2:05:
49:a0:01:64:ac:61:51:ff:b5:57:d1:af:03:f5:20:
08:4c:7d:b2:82:b8:60:d8:d7:58:ae:35:d0:6d:ba:
4a:67:53:66:c1:b7:0e:f8:b1:63:9e:2a:34:29:e1:
7d:6c:47:64:76:26:30:71:d3:67:9b:6a:3c:b5:fa:
56:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:08:2C:6A:31:7A:99:06:80:62:24:CD:09:BF:4A:18:10:68:6E:85
X509v3 Authority Key Identifier:
keyid:29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/sAgsajF6mQaAYiTNCb9KGBBoboU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/KXxQjSOzgxW79FtybSIFCkYSe4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.245.16.0/20
185.81.52.0/22
Signature Algorithm: sha256WithRSAEncryption
74:5c:97:d0:05:10:b3:58:a2:db:97:e9:89:42:ba:2d:5c:8e:
83:26:42:23:c6:e5:5b:d0:ca:99:9c:96:b6:2b:6c:fb:3e:96:
9a:95:b4:43:17:fb:a9:8f:4f:10:1e:c9:0c:fc:6d:d0:12:e2:
77:4e:e3:dd:5a:2b:9d:7f:4e:a0:d6:14:16:04:15:10:36:00:
26:85:ab:7a:5a:b9:4c:c4:41:4d:09:c7:b5:67:06:8d:b5:31:
be:0f:66:c9:5e:92:de:38:44:a5:0a:18:42:64:74:02:b2:4d:
1a:54:1d:c6:de:d1:b0:f8:ba:07:d0:10:b1:ed:0b:36:30:79:
95:e5:2f:4e:08:43:c8:cb:c9:60:5f:dd:67:6a:60:82:f4:4e:
c8:4f:10:ac:39:0e:10:16:b1:ec:f2:0d:51:0c:37:95:38:1e:
ad:4a:17:d8:59:f2:7f:8a:57:73:95:3b:6d:6f:63:cd:af:f2:
09:87:c9:c3:8c:cd:36:86:31:3c:e6:5a:4c:10:14:17:ac:7c:
05:01:0b:0e:36:a7:d0:fd:f2:a5:6a:f7:af:25:4c:63:d2:64:
24:ed:08:0f:dc:39:32:9b:17:1d:e1:5c:ca:83:ad:2e:34:ec:
82:61:f6:65:00:07:d8:98:50:53:75:28:f2:80:91:7e:6a:10:
a7:45:2c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:51 2023 by rpki-client on console-fra.rpki-client.org