Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8750f2-62b8-4058-a9f1-87e45c15e05c/1/lKtLduuhB6VgIs0S697sfKStxqk.roa
File: lKtLduuhB6VgIs0S697sfKStxqk.roa (raw, json)
Hash identifier: juLN0v/E3GzFCGN3i8a1wvSGODF3qUX3RJ3in74Nqqc=
Subject key identifier: 94:AB:4B:76:EB:A1:07:A5:60:22:CD:12:EB:DE:EC:7C:A4:AD:C6:A9
Certificate issuer: /CN=e628ea452fcb72a04cb696fb4ca25e95c26e49c6
Certificate serial: EFBA
Authority key identifier: E6:28:EA:45:2F:CB:72:A0:4C:B6:96:FB:4C:A2:5E:95:C2:6E:49:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ijqRS_LcqBMtpb7TKJelcJuScY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8750f2-62b8-4058-a9f1-87e45c15e05c/1/lKtLduuhB6VgIs0S697sfKStxqk.roa
Signing time: Tue 25 Jan 2022 13:41:33 +0000
ROA not before: Tue 25 Jan 2022 13:41:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57878
IP address blocks: 80.68.149.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61370 (0xefba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e628ea452fcb72a04cb696fb4ca25e95c26e49c6
Validity
Not Before: Jan 25 13:41:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94ab4b76eba107a56022cd12ebdeec7ca4adc6a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f5:ec:61:42:56:a5:88:a3:cd:12:a2:15:6c:
a1:3a:31:23:06:63:88:97:b0:57:f3:9e:bc:db:c0:
60:0f:ca:30:85:52:05:42:b8:89:ba:91:7f:88:00:
9a:14:b8:01:26:9c:58:bf:b4:8b:eb:5d:f5:30:14:
d2:b0:f4:1f:e1:bc:5d:88:d4:58:23:e4:f7:f1:bc:
33:b0:28:be:b7:c2:a3:58:26:6a:f0:2c:96:9a:10:
65:b5:b9:17:20:05:aa:5e:bd:14:04:79:53:47:5e:
e7:a7:90:cb:53:26:06:a9:b4:2b:87:31:ac:32:15:
c7:62:10:60:15:ea:1e:15:c5:c3:a2:f9:c5:fc:7e:
b4:c7:5f:12:4f:61:18:e2:7e:d5:dd:60:5f:f6:22:
93:db:0c:01:e6:c1:10:0a:97:c3:b1:59:2d:c2:14:
74:17:be:39:a1:fe:df:4a:50:25:f0:ad:c9:69:b0:
46:ec:2a:bd:7f:25:78:d5:a3:18:e7:e6:d2:07:2b:
ff:b2:2d:64:fa:9e:73:9b:aa:06:e1:cf:50:32:67:
c7:94:23:d5:62:10:2e:13:71:28:c4:79:12:a9:7a:
aa:a7:80:77:bb:59:96:b7:39:ab:9a:e4:dc:fb:f8:
11:45:62:d9:fa:3d:dc:20:73:8a:12:9a:c1:94:c9:
48:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AB:4B:76:EB:A1:07:A5:60:22:CD:12:EB:DE:EC:7C:A4:AD:C6:A9
X509v3 Authority Key Identifier:
keyid:E6:28:EA:45:2F:CB:72:A0:4C:B6:96:FB:4C:A2:5E:95:C2:6E:49:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ijqRS_LcqBMtpb7TKJelcJuScY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8750f2-62b8-4058-a9f1-87e45c15e05c/1/lKtLduuhB6VgIs0S697sfKStxqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8750f2-62b8-4058-a9f1-87e45c15e05c/1/5ijqRS_LcqBMtpb7TKJelcJuScY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.68.149.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b8:58:27:67:e3:cb:03:b1:7a:35:b9:b6:25:9d:b2:5c:7b:
9f:73:e2:33:4e:0f:f8:4d:7c:d8:d8:70:6c:cd:9a:5e:fe:03:
c6:38:0f:90:39:7d:62:7c:c2:0c:bd:05:ca:04:bc:24:fa:21:
95:50:4e:38:7a:cd:7d:08:7a:25:c4:96:4b:c2:27:49:65:0c:
bb:e4:f7:a6:05:a3:90:35:ef:c9:6c:c7:95:c0:1b:8d:39:78:
bc:71:ab:32:e4:f6:2a:bf:84:b6:a5:db:eb:82:73:40:6d:3a:
6a:b1:43:c1:2a:6b:e0:fe:f8:12:8b:0e:28:26:ad:af:65:00:
ac:2b:e0:38:33:2a:17:89:56:83:59:bc:d4:a9:c3:48:de:61:
17:61:e7:e3:8d:8c:cc:80:7b:dc:64:59:7f:5a:10:05:85:7b:
19:ab:02:ad:09:2a:35:7c:6a:b2:b0:8f:dc:ac:4f:a7:ae:51:
34:54:f6:19:2d:cd:b5:87:57:01:25:48:09:bd:da:2a:5e:fd:
4a:1c:66:26:a8:11:e4:e6:59:58:b7:d5:65:ad:b3:ce:7e:25:
dd:04:1e:08:70:80:5e:63:cd:1b:d3:fc:f5:46:93:67:76:d2:
67:ad:f1:0e:6f:65:b3:b3:c4:c0:05:c8:db:66:2e:73:8a:b8:
19:55:fb:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:45 2023 by rpki-client on console-ams.rpki-client.org