Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/1ae7be-3484-4b12-8bf4-c100a986bc5c/1/VIoisrbxW5Z1iY9c85-u-_aPyxk.roa
File: VIoisrbxW5Z1iY9c85-u-_aPyxk.roa (raw, json)
Hash identifier: YxoLRec6bb74Bb+XiuUSPzr8UZt2AR8PFF+5SS6ZsIw=
Subject key identifier: 54:8A:22:B2:B6:F1:5B:96:75:89:8F:5C:F3:9F:AE:FB:F6:8F:CB:19
Certificate issuer: /CN=08fcbc341c87433d03e4dd615b7f3453164344b3
Certificate serial: 08105D8B
Authority key identifier: 08:FC:BC:34:1C:87:43:3D:03:E4:DD:61:5B:7F:34:53:16:43:44:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPy8NByHQz0D5N1hW380UxZDRLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/1ae7be-3484-4b12-8bf4-c100a986bc5c/1/VIoisrbxW5Z1iY9c85-u-_aPyxk.roa
Signing time: Sat 01 Jan 2022 10:05:33 +0000
ROA not before: Sat 01 Jan 2022 10:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39046
IP address blocks: 80.254.48.0/20 maxlen: 20
80.254.56.0/24 maxlen: 24
80.254.52.0/24 maxlen: 24
80.254.54.0/24 maxlen: 24
80.254.58.0/24 maxlen: 24
80.254.63.0/24 maxlen: 24
80.254.61.0/24 maxlen: 24
185.77.8.0/22 maxlen: 22
2a03:51a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135290251 (0x8105d8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fcbc341c87433d03e4dd615b7f3453164344b3
Validity
Not Before: Jan 1 10:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=548a22b2b6f15b9675898f5cf39faefbf68fcb19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:64:f6:2c:3c:19:53:2a:6f:bb:2f:30:75:31:
4e:77:0d:84:4c:f1:1d:30:9a:49:d3:fb:aa:84:7b:
c1:3c:b4:d5:df:6c:a9:04:50:9e:91:31:3b:18:f6:
5e:3c:df:02:20:a2:5c:de:b8:06:55:c1:89:e2:c1:
e7:aa:e4:b8:42:4e:22:ce:e4:76:39:ea:60:08:0c:
6e:2b:f5:f0:04:42:0b:b0:ab:7b:4b:8c:53:70:c4:
4a:cf:63:2c:f1:12:d1:43:24:4c:b2:3f:86:e4:94:
c2:f1:a8:3a:09:56:a4:dc:1a:8d:8f:27:4b:1e:cd:
2f:3b:a7:34:66:00:a2:1c:00:49:1f:8c:69:a9:32:
aa:8b:15:46:84:b6:f4:e7:7a:7e:92:f4:21:a0:58:
85:f8:7b:15:25:79:5b:21:67:e3:08:ae:91:66:30:
72:e1:ca:5d:4f:de:50:63:b0:06:93:7c:cf:5f:d0:
36:4d:15:1a:c2:65:5f:0f:4d:a0:ac:02:f0:f2:17:
2c:c4:4d:8f:5f:2c:b4:52:db:ea:c2:40:95:7f:41:
b7:06:68:d7:e6:22:fc:70:9e:f6:9c:a9:b5:15:1b:
42:1a:6a:d2:97:fd:44:58:7d:48:c9:96:52:bb:bf:
fc:c6:b5:f5:2b:44:9a:b3:12:4b:33:1f:ce:fc:47:
80:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8A:22:B2:B6:F1:5B:96:75:89:8F:5C:F3:9F:AE:FB:F6:8F:CB:19
X509v3 Authority Key Identifier:
keyid:08:FC:BC:34:1C:87:43:3D:03:E4:DD:61:5B:7F:34:53:16:43:44:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPy8NByHQz0D5N1hW380UxZDRLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1ae7be-3484-4b12-8bf4-c100a986bc5c/1/VIoisrbxW5Z1iY9c85-u-_aPyxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1ae7be-3484-4b12-8bf4-c100a986bc5c/1/CPy8NByHQz0D5N1hW380UxZDRLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.254.48.0/20
185.77.8.0/22
IPv6:
2a03:51a0::/32
Signature Algorithm: sha256WithRSAEncryption
96:62:6a:21:6a:b6:a2:7f:67:d4:88:75:a4:46:55:20:a5:7a:
77:f4:d7:5f:b6:e1:8d:f5:3f:ff:51:cf:3e:5e:bc:a6:8c:66:
cd:0f:51:43:d9:f7:60:f1:28:8d:71:8a:69:28:02:bc:e9:8f:
b9:1e:9a:21:a3:c2:af:9d:99:cf:81:86:ad:74:e5:00:db:98:
1b:48:6d:54:a3:0a:44:b5:1a:ea:44:cd:d3:48:56:49:95:d6:
6e:e1:f4:10:7c:5c:32:14:9b:27:28:0e:ab:46:d9:43:97:d8:
14:c1:aa:e5:9b:a3:88:b1:17:b8:92:a2:3e:da:02:3a:a4:85:
00:e5:15:36:0a:b6:fc:57:60:21:2a:84:23:32:f7:5c:d5:c3:
20:ed:a1:ea:42:c0:59:9c:c4:9b:fd:f7:fd:44:3b:99:3f:a5:
46:5e:d8:e8:cb:c8:72:dc:7a:f7:a2:83:b7:07:8d:c8:2a:17:
47:ee:fd:7e:5b:c3:10:5e:69:3c:3a:13:ef:ad:fa:6e:55:fc:
5c:71:00:9c:8b:c2:d6:06:7b:9c:a9:04:94:7f:56:c0:2a:64:
3b:56:62:8d:c3:80:71:b6:30:fd:16:65:d5:69:a7:8b:5e:c2:
eb:40:7e:ad:aa:9c:b2:62:8f:a6:ce:07:3a:77:6d:f4:38:1e:
66:72:52:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:53 2023 by rpki-client on console-fra.rpki-client.org