Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/43akyZBkwpUM_Yufh8cTKbjdU7A.roa
File: 43akyZBkwpUM_Yufh8cTKbjdU7A.roa (raw, json)
Hash identifier: yW7MYqGBE7lH2yrLOzUz5oLCpTmGVMh62OqirMxXWW4=
Subject key identifier: E3:76:A4:C9:90:64:C2:95:0C:FD:8B:9F:87:C7:13:29:B8:DD:53:B0
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018359921C5F28D5D8469EE3609BA153E58C
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/43akyZBkwpUM_Yufh8cTKbjdU7A.roa
Signing time: Tue 20 Sep 2022 06:24:51 +0000
ROA not before: Tue 20 Sep 2022 06:24:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 80.76.49.0/24 maxlen: 24
185.218.139.0/24 maxlen: 24
193.222.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:59:92:1c:5f:28:d5:d8:46:9e:e3:60:9b:a1:53:e5:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 20 06:24:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e376a4c99064c2950cfd8b9f87c71329b8dd53b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:49:b0:ce:c5:94:a9:fe:fc:86:a8:fc:54:9d:
c4:79:1a:25:b5:c8:7a:e4:5f:88:5a:3f:3f:c0:6c:
2d:9d:d8:58:1b:62:ce:d2:a6:76:0d:84:f9:fe:e7:
bc:e6:7b:09:15:bd:de:36:c9:04:b0:37:19:bb:8a:
e2:63:ec:5e:bf:00:d8:dc:a9:2c:78:a1:60:a1:26:
23:a3:68:f7:08:44:c6:b8:87:8e:62:b0:45:24:02:
77:30:b3:3f:b4:41:1a:6b:45:ec:bf:63:a3:99:9e:
c4:bd:0b:62:97:99:0f:ba:f5:bb:7b:66:88:bf:45:
9e:b5:27:c8:02:75:48:40:12:36:08:05:f7:cb:52:
bb:13:16:df:2f:3f:80:03:d9:b8:74:b6:15:c5:6b:
b8:35:a9:18:b5:d7:12:b9:89:d7:96:3f:c6:7e:75:
f2:70:59:2c:4d:d1:73:f6:bd:d2:a1:e2:0a:83:f8:
03:f5:cb:11:16:f0:e9:6f:50:6d:4b:48:00:07:14:
71:1b:a4:10:43:00:d8:b4:c5:2b:c4:69:ad:27:8d:
ec:93:9a:39:df:f7:8c:45:8a:39:a7:60:41:46:10:
0e:be:11:84:af:b7:20:d7:1c:f2:d0:8c:ff:5b:c0:
dc:4d:02:92:ec:3e:66:e0:4b:c0:d2:f9:fa:9d:8e:
ff:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:76:A4:C9:90:64:C2:95:0C:FD:8B:9F:87:C7:13:29:B8:DD:53:B0
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/43akyZBkwpUM_Yufh8cTKbjdU7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.49.0/24
185.218.139.0/24
193.222.98.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:30:96:4e:14:8a:74:70:8b:49:4f:c7:2b:17:7d:0d:48:63:
dc:31:4e:07:9b:19:76:78:55:e9:c6:b8:ce:da:32:76:bd:ff:
d0:34:a3:f8:dd:1e:87:bc:ea:cb:ab:b2:a2:79:11:a1:df:97:
1c:6d:6b:07:2c:e6:bc:62:12:e7:07:6b:c0:69:2f:95:87:6e:
48:31:b7:fb:9a:e8:3f:7f:8d:a2:0e:5a:aa:e1:79:42:31:66:
c2:9e:56:de:c6:1d:e8:f4:84:61:76:38:ae:4b:23:51:75:b6:
97:79:8c:86:7e:16:47:8c:16:4e:23:f9:49:6b:1c:a6:b8:e1:
c8:c2:f0:58:b3:75:ad:96:6a:9b:8a:2f:e8:32:23:31:50:d2:
3d:e8:5f:1d:7e:0d:63:4f:d6:9f:b6:3a:cb:fe:65:c5:1f:02:
eb:61:93:97:87:f3:62:93:1a:91:86:04:cf:10:52:61:d1:88:
68:95:e8:f4:f6:cf:bd:eb:b2:32:b4:ad:5b:35:77:91:57:9f:
c9:80:a9:9c:17:f8:28:d6:86:16:f3:6e:ec:83:0a:bb:4e:0a:
c4:15:03:81:2b:61:36:ac:da:1d:f0:53:5c:2b:5e:59:a6:b3:
b5:03:04:c9:8a:da:b7:99:83:f9:2d:68:f8:8b:fb:15:08:68:
4f:8c:dc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-ams.rpki-client.org