Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/rcfcDJe4uTIvdxEYhQqn29glJ-k.roa
File: rcfcDJe4uTIvdxEYhQqn29glJ-k.roa (raw, json)
Hash identifier: lCVvpNUBal6bMwbRrnS6677J5NlY4Yj8ZHRyaaU8CF0=
Subject key identifier: AD:C7:DC:0C:97:B8:B9:32:2F:77:11:18:85:0A:A7:DB:D8:25:27:E9
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 094C430D
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/rcfcDJe4uTIvdxEYhQqn29glJ-k.roa
Signing time: Sat 01 Jan 2022 12:59:02 +0000
ROA not before: Sat 01 Jan 2022 12:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60944
IP address blocks: 80.90.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155992845 (0x94c430d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 12:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adc7dc0c97b8b9322f771118850aa7dbd82527e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:85:01:a0:49:95:4f:27:94:2d:52:ae:68:03:
21:89:99:d8:4d:8a:08:0a:c5:ee:d6:0c:ab:0e:64:
bc:d4:02:15:88:98:57:dd:6d:f5:2a:c8:8c:66:e2:
14:a4:53:11:39:9d:13:00:04:c0:5e:ab:1d:1f:90:
0b:32:35:af:6f:9b:fe:00:0e:65:14:f1:77:f4:41:
0a:65:c1:73:01:3d:b9:6f:58:c9:2a:e2:bd:84:43:
bc:f9:ad:13:54:f4:93:c2:11:a2:92:93:9b:4f:6b:
38:18:09:e8:5b:94:1f:99:ee:2d:45:41:26:b6:20:
1c:dd:33:a8:b2:64:dd:f5:64:f1:d2:68:6d:e7:e1:
29:87:e3:c8:91:67:04:b5:20:fc:9c:45:02:08:af:
7e:8d:5f:e5:8c:15:1a:cc:ff:15:ae:dc:55:ac:be:
75:20:45:5a:b3:95:4f:90:39:d3:32:39:c6:0c:c1:
78:8f:6c:08:a5:6f:59:3a:be:8a:53:d9:97:68:1f:
a7:96:b3:47:ef:4f:39:1a:ff:a3:a5:19:71:6e:10:
4e:8e:6c:8a:92:82:e8:de:f3:62:bc:7d:13:fa:7a:
64:e7:d5:d9:11:99:36:8a:6a:a3:35:2b:d3:06:80:
a1:f7:79:09:22:07:33:57:7a:c0:a3:0b:6f:f6:e3:
06:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C7:DC:0C:97:B8:B9:32:2F:77:11:18:85:0A:A7:DB:D8:25:27:E9
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/rcfcDJe4uTIvdxEYhQqn29glJ-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.243.0/24
Signature Algorithm: sha256WithRSAEncryption
38:38:86:f5:e4:5f:6f:0f:5b:0e:db:91:cd:4f:31:4b:04:70:
bf:c8:17:1a:45:2d:80:47:22:70:c4:59:d3:56:1f:3a:18:0e:
55:12:5e:38:40:6b:30:97:0d:48:46:bc:d0:85:ca:42:60:88:
b4:b5:f9:9a:cf:27:99:8a:c4:b7:52:76:44:59:29:43:9c:36:
23:9d:b8:a7:43:17:db:c7:ee:ca:8b:27:b3:4a:ee:a0:02:cb:
80:57:91:c5:09:8d:2f:6b:26:9d:23:79:ee:35:ed:70:b7:2e:
2a:98:bd:f6:2e:d8:6f:63:5b:a2:43:23:de:cf:3f:dd:fc:3d:
fe:70:d8:ef:6f:b7:3c:10:1c:ea:1b:8e:6c:78:02:80:30:73:
d2:e0:e2:8b:41:ad:77:24:b9:21:9e:0d:60:7c:e3:e0:33:b3:
2c:dc:75:c8:b1:cc:58:38:d8:f7:89:3c:dd:09:dc:49:5a:17:
f3:d2:e4:c4:3a:0f:5a:9f:bb:f7:21:06:75:c0:38:e6:6d:c1:
7a:34:ef:55:88:ef:d0:94:7b:cc:52:9e:15:ef:0d:f6:a6:95:
8c:f8:8e:e6:36:b7:71:9c:df:d4:43:4b:f9:c5:14:55:87:a6:
01:84:cf:12:8f:f6:6a:6d:20:43:57:5e:b7:7f:db:3c:ae:56:
57:3e:8c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:45:32 2025 by rpki-client