Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/b85fMUkHQC966Kj2C2q_p-AD1qk.roa
File: b85fMUkHQC966Kj2C2q_p-AD1qk.roa (raw, json)
Hash identifier: W+uwom+W9/vRNF/JTUr6RW1S/eGvWE+5eQiFSZvowSM=
Subject key identifier: 6F:CE:5F:31:49:07:40:2F:7A:E8:A8:F6:0B:6A:BF:A7:E0:03:D6:A9
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1ABE56FF
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/b85fMUkHQC966Kj2C2q_p-AD1qk.roa
Signing time: Fri 22 Apr 2022 08:39:56 +0000
ROA not before: Fri 22 Apr 2022 08:39:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62350
IP address blocks: 80.96.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448681727 (0x1abe56ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 22 08:39:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fce5f314907402f7ae8a8f60b6abfa7e003d6a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6f:2f:af:91:77:f9:50:2c:d9:2f:2d:b8:bc:
9d:67:e7:69:fd:20:6b:b5:30:0a:56:79:50:63:c8:
3b:a0:2c:1c:22:f2:fd:c6:c6:2c:56:87:ec:48:54:
fc:96:2b:46:ba:b1:47:5c:eb:84:0a:22:54:d7:49:
16:7c:fe:2d:4e:79:b0:37:f0:ef:76:c2:4d:d9:55:
69:42:a4:ad:52:62:06:b8:cd:60:7a:66:ab:7b:12:
30:ec:54:95:ab:3d:83:c4:5f:f4:b8:72:09:82:32:
2b:bf:92:08:40:b4:e1:00:5c:df:a9:cc:c1:13:d2:
8b:54:e9:31:a6:7b:f0:1c:c0:60:94:e3:e8:cc:ec:
0d:ea:8e:b2:53:51:dc:5a:cb:bc:8a:86:94:c2:50:
19:f0:c4:b7:d7:e8:19:c0:b3:7a:82:57:66:0e:1f:
a0:51:a6:30:0d:5c:a0:1e:27:a0:d2:68:a0:6d:96:
67:e4:e8:b2:82:53:fc:f6:c0:9e:ae:16:ab:0c:36:
64:19:30:54:1e:cf:cb:2b:fc:5a:73:f6:67:16:43:
9f:f9:b6:e3:f8:5c:95:4c:84:54:94:67:4e:5c:27:
98:48:b4:6e:25:9a:f7:3a:d0:69:d1:23:e3:16:a5:
6a:c7:c0:7e:fd:16:66:b8:88:b5:99:e3:fe:ee:67:
80:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CE:5F:31:49:07:40:2F:7A:E8:A8:F6:0B:6A:BF:A7:E0:03:D6:A9
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/b85fMUkHQC966Kj2C2q_p-AD1qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.25.0/24
Signature Algorithm: sha256WithRSAEncryption
35:0d:02:8f:7e:f8:21:9f:5e:2b:64:17:0e:f9:37:5e:2a:3a:
51:6e:a9:c8:58:6d:d5:95:03:42:3a:fa:b4:03:b0:c3:47:a7:
e2:74:01:41:c1:c7:c0:6d:2b:29:fd:24:63:12:ce:b3:ee:24:
a2:49:6e:48:bd:6a:62:c6:8b:ce:09:c2:c1:2f:b1:67:98:eb:
9e:73:ed:93:93:c2:1d:eb:f7:ea:ee:18:5f:6e:b4:d9:86:37:
61:28:2a:f4:a8:ad:4b:bc:c1:4a:80:cc:e7:ca:75:1e:05:61:
ec:10:e2:35:b1:bd:0e:e6:c5:3a:80:8e:04:15:1d:85:5f:5d:
d5:04:d0:e5:a3:33:e9:2a:ea:1f:0f:c2:c3:cb:e2:86:8f:45:
f9:12:f1:2c:e3:e3:04:23:e6:f0:02:a8:88:59:d9:d6:0a:08:
0e:ec:d0:b1:b2:e0:ff:2c:91:22:b5:21:bf:48:32:94:6b:b1:
2d:ae:30:ba:29:b8:b2:98:76:b2:0a:1c:a6:27:05:be:37:c9:
df:7b:69:d5:0b:d5:9b:61:81:91:5a:99:d5:f1:99:05:b2:b2:
63:7e:60:15:33:ce:e1:16:02:f9:d8:80:74:10:15:6b:b2:01:
6f:74:38:d4:fc:f6:1b:17:7e:91:b9:5f:fc:5b:1a:34:9c:01:
37:e7:29:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-ams.rpki-client.org