Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/qXYgJiQ7vhrbKQsNtZFvK4ZEx5Y.roa
File: qXYgJiQ7vhrbKQsNtZFvK4ZEx5Y.roa (raw, json)
Hash identifier: O69uqpfe0wP1ySGSry27Y2DeMQfcrmX6UtKKXDcHmlc=
Subject key identifier: A9:76:20:26:24:3B:BE:1A:DB:29:0B:0D:B5:91:6F:2B:86:44:C7:96
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0184C97AD64EB0ED174BB4F552BE7B3F67A6
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/qXYgJiQ7vhrbKQsNtZFvK4ZEx5Y.roa
Signing time: Wed 30 Nov 2022 16:59:41 +0000
ROA not before: Wed 30 Nov 2022 16:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 80.96.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c9:7a:d6:4e:b0:ed:17:4b:b4:f5:52:be:7b:3f:67:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Nov 30 16:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9762026243bbe1adb290b0db5916f2b8644c796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:78:f4:3d:0b:80:58:04:61:84:a7:7f:40:85:
b8:e8:b2:92:ab:f4:4e:47:29:56:3e:64:32:38:22:
c8:81:67:ec:dd:d4:4c:52:66:46:22:33:92:e1:2d:
c8:0d:39:f2:e5:1b:cf:a6:d2:45:bf:85:7f:fe:1d:
eb:56:21:0e:5e:54:b8:ec:bc:4b:5f:ea:50:a9:eb:
7d:54:fc:70:94:e4:c9:42:c3:f6:36:c9:bd:c9:09:
f6:48:21:af:21:09:af:90:34:d9:1c:46:31:e7:f7:
1b:86:74:45:21:56:f6:25:33:bf:16:c7:49:59:f1:
ab:37:3b:ea:12:b0:e8:41:01:41:91:f9:82:2e:3d:
7f:56:e6:0c:ff:02:36:f0:e9:04:9e:e9:62:2c:05:
34:5e:2b:31:cf:dd:96:df:d2:a7:9e:28:00:44:a3:
b3:75:5d:54:44:f2:95:9d:d2:29:c6:37:80:a5:4c:
74:54:c2:2d:8b:f5:4e:f1:bd:c4:7c:17:d3:30:be:
c5:ef:e8:61:14:ec:58:6c:6e:e7:fa:0f:27:d7:dc:
0a:f8:c1:38:46:f3:66:78:c6:5c:a9:67:47:30:5e:
6e:4a:9a:81:af:a9:f6:00:78:b4:23:50:82:10:35:
af:3d:3b:1c:cc:a0:23:d0:c0:fe:28:c8:63:d0:13:
c5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:76:20:26:24:3B:BE:1A:DB:29:0B:0D:B5:91:6F:2B:86:44:C7:96
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/qXYgJiQ7vhrbKQsNtZFvK4ZEx5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.10.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:7a:b8:53:60:6b:82:6c:5b:c7:d4:5f:3e:4c:dc:d9:df:4f:
1d:21:4b:55:74:b9:c0:0d:c0:af:47:b3:df:33:43:dd:15:e6:
70:a6:72:5f:f2:4b:09:e5:04:63:cd:b6:69:bd:3a:45:4d:53:
29:61:ac:e7:09:69:1c:34:50:aa:d3:a6:66:e5:05:9a:ca:fb:
1f:b6:6e:04:cc:9a:90:fa:28:88:85:e4:fc:4b:b2:d7:b1:70:
43:18:83:f8:b0:8b:0f:9f:ee:64:03:16:9e:7e:18:56:c7:33:
44:c8:1e:5c:57:be:f5:0b:f9:9c:b6:49:4c:3f:81:0e:a8:14:
b8:ac:ce:8e:fb:5a:f8:83:34:cc:4a:5a:bd:90:e6:58:c3:1d:
ed:67:1b:fa:d9:e4:1b:81:75:ec:43:40:dd:37:c9:e4:11:c5:
b2:c9:24:c3:21:09:be:12:0f:ed:06:c0:d1:2e:ef:d6:67:d8:
61:8a:fa:5d:6a:14:df:59:8b:97:d5:6b:f3:0f:ab:94:d7:59:
47:6f:dd:45:79:6a:f3:9d:c1:ef:4a:09:8c:ac:85:f1:37:db:
c4:7e:01:95:d1:f8:3e:71:6a:1c:c6:6b:4e:ad:d5:3f:96:02:
e7:19:15:f7:9a:87:95:c3:c5:46:0a:59:ec:3c:aa:11:49:4f:
e5:cb:39:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-ams.rpki-client.org