Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/RlwSvozdNOrCaUiGD_wUty3g0M8.roa
File: RlwSvozdNOrCaUiGD_wUty3g0M8.roa (raw, json)
Hash identifier: bJy6S0S9xl0ilTBETcehownAQuc2+SVkvZ4+5EOAFzU=
Subject key identifier: 46:5C:12:BE:8C:DD:34:EA:C2:69:48:86:0F:FC:14:B7:2D:E0:D0:CF
Certificate issuer: /CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Certificate serial: 01849B453A315D1BB11785F1580FFF0FFE4A
Authority key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/RlwSvozdNOrCaUiGD_wUty3g0M8.roa
Signing time: Mon 21 Nov 2022 17:38:36 +0000
ROA not before: Mon 21 Nov 2022 17:38:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25400
IP address blocks: 80.239.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9b:45:3a:31:5d:1b:b1:17:85:f1:58:0f:ff:0f:fe:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Validity
Not Before: Nov 21 17:38:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=465c12be8cdd34eac26948860ffc14b72de0d0cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:55:49:79:1e:80:2c:28:3a:c2:47:d6:ee:27:
94:63:31:a2:b9:ed:d8:d2:4a:44:a6:56:8f:97:94:
e2:25:8c:7a:49:b0:80:9f:a6:33:10:d4:7a:9c:9c:
fa:ee:c9:7b:c9:0c:47:45:3b:3b:ee:77:37:4a:87:
c1:fb:21:88:b1:90:fc:5e:e4:82:67:87:8e:b1:c5:
48:44:27:93:2f:49:ec:30:c0:06:1c:ed:0e:bc:a3:
a0:8b:0b:15:b1:6a:f1:86:a6:6f:b9:b6:61:f9:d4:
07:c7:7c:f3:5a:a3:11:b7:05:0d:a9:d3:a0:21:ef:
2d:b8:59:c0:0c:43:79:05:55:60:33:e3:ac:98:59:
46:a7:b8:17:f5:69:7d:3a:5b:9b:66:c1:61:ee:15:
3c:5a:b8:a5:44:cb:7e:23:1f:36:17:6e:ad:57:25:
ad:7f:1f:16:b5:a4:a7:48:ab:37:35:e0:44:dd:bf:
98:e8:9d:00:18:3a:30:2b:be:af:ec:48:d0:16:e9:
6e:b9:d0:50:08:bf:e5:5e:83:38:31:ca:41:d2:48:
43:52:23:4d:84:e2:c8:2d:56:ff:c0:4a:09:a1:54:
35:94:a7:15:1d:11:48:53:7c:ab:c2:71:2a:e9:dc:
2e:62:6f:e9:b8:5d:ec:b3:56:91:17:9b:ee:4e:4a:
bd:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:5C:12:BE:8C:DD:34:EA:C2:69:48:86:0F:FC:14:B7:2D:E0:D0:CF
X509v3 Authority Key Identifier:
keyid:AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/RlwSvozdNOrCaUiGD_wUty3g0M8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.239.0.0/17
Signature Algorithm: sha256WithRSAEncryption
18:7b:38:18:45:c6:e5:ea:dd:d0:41:98:62:23:9c:c1:56:9d:
c2:2f:dd:96:73:c9:a1:d8:7f:dc:dc:d7:c3:7b:86:8a:4b:c5:
67:e4:1e:77:40:74:3e:7d:5d:11:c9:ed:1c:ea:b1:d3:c0:29:
7e:99:3f:49:07:4b:11:43:97:f1:78:69:fb:e4:72:fa:44:88:
da:4b:5c:26:02:36:7b:bb:68:cf:a9:b5:b8:3f:e8:b9:57:28:
94:cf:d9:e5:1e:18:0f:1f:5e:9e:ea:5d:6a:e2:6f:ac:e5:4d:
08:e1:36:06:69:fd:38:9c:2d:b6:b0:f1:49:77:4d:21:26:4d:
ea:92:e8:6a:eb:27:8e:cf:b2:04:5c:0e:b0:6f:a1:95:b6:d9:
27:6d:1e:d0:b6:de:a4:46:c4:0a:79:76:11:85:9b:5a:9b:1f:
95:1f:dc:f4:68:b6:9f:48:db:fe:fa:d8:c0:8b:3f:ed:fd:b7:
29:65:65:d4:9a:da:f2:7f:10:b8:11:b7:b8:32:15:22:02:6a:
a0:39:5c:dd:01:c8:d5:e0:7e:0b:e2:6a:00:d6:fe:0e:02:90:
22:b7:2c:3c:28:da:77:5c:31:e6:d4:37:2f:75:9e:c9:f5:aa:
be:42:d6:fa:60:c7:40:47:f3:f6:ff:a0:7d:94:38:98:23:a3:
95:cc:04:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:36 2024 by rpki-client on console-ams.rpki-client.org