Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/dUa7S6uj8rr0Tk4ctJHz7mjAMlQ.roa
File: dUa7S6uj8rr0Tk4ctJHz7mjAMlQ.roa (raw, json)
Hash identifier: 2g9Y758KHKrd5SIhqbNfHb4z5Q+UupT4EPFd84FiVb4=
Subject key identifier: 75:46:BB:4B:AB:A3:F2:BA:F4:4E:4E:1C:B4:91:F3:EE:68:C0:32:54
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 0184CF2BC56876F7E97FAC679677D816B694
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/dUa7S6uj8rr0Tk4ctJHz7mjAMlQ.roa
Signing time: Thu 01 Dec 2022 19:31:02 +0000
ROA not before: Thu 01 Dec 2022 19:31:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212298
IP address blocks: 80.91.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cf:2b:c5:68:76:f7:e9:7f:ac:67:96:77:d8:16:b6:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Dec 1 19:31:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7546bb4baba3f2baf44e4e1cb491f3ee68c03254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0a:b4:81:c3:72:17:33:24:5a:77:bb:68:f7:
b0:89:db:a0:ba:14:48:92:e6:84:61:cd:15:5c:d6:
b6:e2:99:20:12:f9:2e:5d:92:bc:c9:91:30:44:f9:
2e:cc:c6:3a:03:7a:c2:d5:2b:8c:92:12:aa:3f:71:
31:b2:6f:d2:af:c8:81:a7:d8:e8:48:03:38:38:9d:
20:1d:c9:dc:ac:88:69:93:a4:ab:be:86:1e:4a:c1:
57:0b:7d:60:02:a3:b5:7c:f6:b6:a5:10:1d:bf:37:
86:22:97:2a:b3:11:85:16:74:d3:2b:3f:1d:78:9e:
30:aa:6c:48:b8:f2:b1:bf:d9:93:71:e9:71:a8:2c:
f3:76:84:8f:cc:1f:43:b9:d4:a3:bb:0c:03:c5:48:
df:e6:55:8e:e8:b6:e6:af:d3:3b:66:8f:d0:4b:3f:
60:6c:e2:77:27:7b:2c:c9:7d:3a:ea:4e:5e:6c:53:
f8:91:57:31:35:75:86:40:31:11:12:57:fa:3d:f7:
d3:3d:82:1d:79:cc:a9:2b:ed:cb:dd:9f:ec:af:35:
35:68:2d:21:2a:44:e9:15:aa:31:e6:74:44:31:43:
ec:69:b4:74:92:ec:c9:73:da:55:0b:47:18:8f:75:
d9:f4:da:d2:f9:34:02:05:3f:88:69:3e:fb:54:b8:
be:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:46:BB:4B:AB:A3:F2:BA:F4:4E:4E:1C:B4:91:F3:EE:68:C0:32:54
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/dUa7S6uj8rr0Tk4ctJHz7mjAMlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.218.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:21:df:45:20:99:76:56:5a:2a:e4:d0:a9:12:c9:cb:26:21:
98:64:78:b0:1c:65:a0:b3:1b:7e:96:db:63:6a:c3:f5:fe:02:
4e:ce:c9:a6:41:23:ab:0d:d8:bb:c5:3b:a3:a1:6a:4f:62:ab:
68:3e:fe:42:ff:d3:93:fc:c2:8d:df:40:f5:ac:3c:bc:0d:9a:
d2:46:61:8c:83:e5:16:f7:3e:df:da:a2:c5:07:73:04:c2:0a:
09:45:b2:4e:de:c9:9a:8c:cf:88:63:06:d6:75:41:49:9f:2c:
a1:fd:35:6c:74:45:67:b5:9c:3b:95:2a:70:de:fb:96:85:61:
f1:3a:ab:79:67:f4:50:57:74:d2:b1:89:c5:5f:f0:e6:50:07:
f1:63:41:2b:97:31:4b:f7:9d:68:25:1d:87:fd:3a:7e:1f:cb:
21:5d:35:0a:1d:d5:d3:99:0f:fb:67:27:be:3d:3c:66:e6:8d:
80:63:07:f1:be:a0:9a:8f:cb:8b:48:35:bd:16:fe:25:78:47:
7a:a8:39:35:c1:5c:3c:6a:2f:a6:9f:3b:5a:45:d3:15:16:c1:
fd:ff:4f:bd:63:be:32:e5:f2:af:d3:a9:6e:02:62:47:77:49:
e0:75:97:6a:90:15:5e:83:01:0f:43:8a:eb:0c:14:8b:d0:fe:
90:8f:2c:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:52 2024 by rpki-client on console-ams.rpki-client.org