Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/2hbBS-0jmKrYmsEC8BD8rGnW0s0.roa
File: 2hbBS-0jmKrYmsEC8BD8rGnW0s0.roa (raw, json)
Hash identifier: A9ZiLu0KMUWyXO9o7k5YQTc21XWkYEJQTmW3YNpMT38=
Subject key identifier: DA:16:C1:4B:ED:23:98:AA:D8:9A:C1:02:F0:10:FC:AC:69:D6:D2:CD
Certificate issuer: /CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Certificate serial: 0183D678ADEB217DF6016C6595DE9514604A
Authority key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/2hbBS-0jmKrYmsEC8BD8rGnW0s0.roa
Signing time: Fri 14 Oct 2022 12:29:36 +0000
ROA not before: Fri 14 Oct 2022 12:29:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25400
IP address blocks: 80.239.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d6:78:ad:eb:21:7d:f6:01:6c:65:95:de:95:14:60:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Validity
Not Before: Oct 14 12:29:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da16c14bed2398aad89ac102f010fcac69d6d2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bd:cc:ab:a5:62:22:11:6b:a3:d4:f1:10:c3:
50:34:71:89:7c:c2:fe:37:39:22:a4:ed:a2:2f:07:
18:b0:24:28:ad:94:32:c5:45:16:92:63:1a:12:a1:
4d:b2:da:6e:fe:b3:32:ac:5b:71:12:d8:0a:96:bc:
79:d2:0d:07:f6:5d:41:0c:da:8c:c6:2d:ab:b7:7d:
34:7f:00:ea:0b:48:6d:f9:43:9b:0e:ab:9d:2d:ee:
ea:de:61:4f:02:d6:fd:de:b4:f7:1a:dd:b0:9f:66:
a3:b4:a2:a4:2b:87:02:e5:f2:ba:d0:e4:f5:64:66:
ed:8f:8f:18:5c:c5:e9:c3:78:4c:61:c6:5c:db:8c:
85:b3:02:ef:6c:2c:73:52:48:4d:31:9b:bb:18:75:
be:c4:fc:8a:57:ce:c5:50:6d:8c:e9:d8:ce:27:56:
54:32:ca:bf:7c:e1:63:f6:7e:e4:23:85:9c:7a:ea:
5a:59:17:c9:b3:4e:f3:25:0b:08:a9:e7:2b:de:b0:
50:19:c9:60:f5:bf:fa:08:82:fa:68:58:15:02:b0:
2d:4c:ca:a9:55:56:4f:b5:66:c4:39:80:8b:05:c9:
ae:75:5b:b5:4c:b2:1a:55:4c:7e:8b:57:7d:26:62:
d2:ee:e3:91:6c:da:91:5b:d9:9a:f0:e9:36:e0:60:
9e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:16:C1:4B:ED:23:98:AA:D8:9A:C1:02:F0:10:FC:AC:69:D6:D2:CD
X509v3 Authority Key Identifier:
keyid:AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/2hbBS-0jmKrYmsEC8BD8rGnW0s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.239.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b7:b0:53:44:a0:4b:c1:ee:0c:21:b2:18:c4:61:04:65:7b:20:
2e:fa:9e:39:7a:98:1b:b8:6b:d7:d8:eb:d4:f4:f0:95:72:4a:
0c:d5:3b:75:fb:85:d2:12:36:d9:08:db:7d:6c:16:64:85:b3:
8a:a1:4c:dc:85:37:6d:d5:5b:c5:21:41:e8:0b:ab:41:09:57:
32:09:89:dd:cd:87:ff:44:91:9a:33:ee:35:8c:88:9c:d5:19:
8c:33:84:62:15:5b:bc:af:b8:61:4e:dc:6f:09:d3:76:29:f7:
f9:57:5a:73:a6:af:95:14:02:09:b3:a9:07:96:86:cb:22:5d:
82:c3:e4:23:53:e2:50:60:cb:28:56:62:b3:7c:17:b2:56:17:
7d:17:f1:54:e4:72:32:ec:e9:08:d1:46:62:c2:29:e8:42:15:
26:4e:cf:65:00:af:a1:29:9e:04:aa:1a:50:b1:d1:57:e2:d4:
bd:fd:e3:bc:26:88:cd:67:61:21:a0:09:77:c6:c4:15:cd:81:
b7:d4:7f:67:17:5f:2a:1b:50:a1:f5:23:2d:f0:a4:43:8b:f2:
27:85:a9:6f:78:49:ef:d8:a1:17:6a:6b:88:38:36:ca:e6:68:
f0:28:1b:cc:2b:5a:f4:74:56:18:be:3a:2a:0f:b4:eb:2c:d5:
6a:ec:e9:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:36 2024 by rpki-client on console-ams.rpki-client.org