Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/7xtt7mlDWoFLycFe8Ixcc3FruaY.roa
File: 7xtt7mlDWoFLycFe8Ixcc3FruaY.roa (raw, json)
Hash identifier: QzlRrYesZ6QxWkT1wGachCRI13D+lU/lv7sjOCFXmZs=
Subject key identifier: EF:1B:6D:EE:69:43:5A:81:4B:C9:C1:5E:F0:8C:5C:73:71:6B:B9:A6
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 018511191045E2E6FA61841B5D36EB5D9B2D
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/7xtt7mlDWoFLycFe8Ixcc3FruaY.roa
Signing time: Wed 14 Dec 2022 14:45:33 +0000
ROA not before: Wed 14 Dec 2022 14:45:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50643
IP address blocks: 176.117.80.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:11:19:10:45:e2:e6:fa:61:84:1b:5d:36:eb:5d:9b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Dec 14 14:45:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef1b6dee69435a814bc9c15ef08c5c73716bb9a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0d:66:bd:a6:ef:5c:76:a5:66:7b:e9:ad:d7:
a0:79:60:fe:27:10:5d:2f:27:c0:4c:14:e8:16:6e:
1f:94:71:c4:b0:af:b2:83:c9:3f:70:09:68:6c:eb:
b0:8a:db:a3:ab:48:b3:0c:9c:48:2e:48:94:87:54:
9c:b0:8b:0c:04:a2:69:69:e6:be:17:5f:b5:4f:14:
33:02:60:3c:15:83:05:7b:b0:75:7e:6a:8e:8b:a5:
f3:a6:b2:e3:1d:21:7d:d4:3d:bd:2e:9d:a2:86:2c:
c4:c1:bc:3a:17:7c:16:b6:43:9d:cf:59:c2:d1:aa:
4b:84:55:d5:8c:e9:8c:8e:15:cc:5b:a2:79:a3:2d:
71:84:53:e7:61:fd:e9:a1:8a:9e:ac:09:bd:7d:c9:
11:2e:f2:58:46:07:28:5e:94:b6:4b:c7:40:7c:78:
2b:97:d3:cb:2c:7c:25:a1:23:b6:96:38:03:2c:bb:
bb:2c:6c:71:15:e7:88:d6:6a:3b:ba:39:a2:4e:e0:
39:da:dc:a0:a3:44:6a:b3:16:25:10:56:3a:65:b5:
aa:56:9e:f0:4d:ba:6e:6e:b6:9a:a7:39:ca:d5:21:
ac:c2:d3:03:a3:5e:aa:0c:a1:24:ba:e0:c1:50:d2:
13:3f:ed:0c:44:b9:2a:7a:47:c5:ea:2c:a6:3b:99:
51:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:1B:6D:EE:69:43:5A:81:4B:C9:C1:5E:F0:8C:5C:73:71:6B:B9:A6
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/7xtt7mlDWoFLycFe8Ixcc3FruaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.80.0/20
Signature Algorithm: sha256WithRSAEncryption
48:70:3e:4b:d5:16:0e:9f:cd:82:f4:13:4c:13:43:3e:5e:e6:
71:bc:70:cd:d5:77:07:17:17:6c:3f:45:df:f9:37:b2:d0:eb:
47:52:5a:11:d9:16:0a:bd:65:a4:10:62:a2:cb:48:21:f2:5f:
bb:b8:83:48:4e:89:a2:47:15:44:0c:bb:e9:8f:22:0c:56:ab:
f2:50:fe:b9:f6:7c:c1:c4:f6:b7:74:ec:1f:81:b7:a8:a5:89:
f5:44:63:84:ec:b3:65:a4:83:61:07:22:3d:f8:d3:d9:ca:0d:
4a:6d:8d:e7:80:4d:ba:f8:38:93:b3:24:f0:40:3c:e4:e3:15:
ba:32:2a:4e:aa:62:fe:31:f2:08:99:b1:20:f1:03:b8:e2:63:
90:52:e1:97:35:0f:2f:4d:f1:e1:61:49:e1:08:24:3a:7e:73:
d1:2d:a4:cd:15:01:f9:13:78:0a:cc:95:48:f5:79:52:81:44:
c3:6e:38:7a:a8:60:e1:ac:7e:b2:71:1c:d3:79:03:c9:37:de:
1a:5f:53:10:dd:16:7c:cf:a9:cb:ec:53:c7:ff:6e:eb:d8:ae:
5e:12:71:7a:9f:16:e4:95:5f:72:3e:2b:c4:bb:ba:03:56:89:
46:1f:61:51:fe:e9:8b:fc:a6:1e:0d:fa:e4:b3:32:e5:2b:9e:
3e:d0:2f:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:55 2023 by rpki-client on console-fra.rpki-client.org