Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/LdR1WExxbaDudYsshIb4vR11alQ.roa
File: LdR1WExxbaDudYsshIb4vR11alQ.roa (raw, json)
Hash identifier: 9hHkHYU1sy9RMxXq/6cUvX/il5tCoQ3gBfQYsG2s3uQ=
Subject key identifier: 2D:D4:75:58:4C:71:6D:A0:EE:75:8B:2C:84:86:F8:BD:1D:75:6A:54
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 369767F6
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/LdR1WExxbaDudYsshIb4vR11alQ.roa
Signing time: Sat 01 Jan 2022 01:01:08 +0000
ROA not before: Sat 01 Jan 2022 01:01:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59605
IP address blocks: 80.231.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915892214 (0x369767f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 01:01:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2dd475584c716da0ee758b2c8486f8bd1d756a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:05:bd:d5:38:9f:7b:79:33:e8:0f:5f:b6:ea:
2b:6d:60:c1:c9:0a:7a:24:ad:66:56:c2:2c:a3:92:
a8:70:1a:e4:f5:f5:6d:7f:c7:11:df:1f:20:5b:6d:
70:77:72:e9:08:9d:4e:af:e0:a3:4a:33:b2:c8:eb:
a6:c0:69:fd:7c:2e:80:34:f7:3b:2f:bb:8c:e9:4d:
b7:ec:fe:45:d3:a7:7d:aa:a5:8a:eb:a3:54:2c:2e:
0e:6e:88:13:4e:02:ef:b4:9d:bb:26:53:63:5a:59:
2c:30:52:70:50:ec:bc:df:2b:4d:d2:cc:22:c7:62:
e4:a1:88:ba:24:82:f9:1b:17:42:e9:77:5e:9b:0b:
c9:54:6c:ba:d5:d2:ee:bc:94:e7:01:66:ab:50:ca:
96:2c:4b:13:82:17:0e:d0:88:6b:7e:f1:f9:ed:3f:
87:99:29:37:e0:db:71:d0:40:33:1b:98:c0:a7:13:
60:05:03:b7:9c:7d:9f:9e:ee:16:5a:30:71:8b:8d:
da:d2:bd:76:ef:1b:b4:a9:21:89:50:fc:09:3a:87:
96:a9:68:33:c2:11:3c:d7:d3:42:74:7a:af:54:16:
91:6a:0d:d3:3c:1b:00:35:a4:ab:35:d7:24:d7:87:
55:dc:1f:18:2e:38:e3:51:5c:a4:f7:dd:b7:79:93:
1c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D4:75:58:4C:71:6D:A0:EE:75:8B:2C:84:86:F8:BD:1D:75:6A:54
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/LdR1WExxbaDudYsshIb4vR11alQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.231.213.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:75:24:e0:0d:ad:ca:48:c7:10:d5:b4:08:93:8a:02:47:9f:
94:47:ed:05:ba:92:5a:a4:3e:fa:e7:6f:fa:92:7d:d5:d2:77:
1e:51:d7:b4:1e:4e:94:65:a2:36:2e:92:06:40:a8:a9:ad:84:
c0:d6:94:7b:d0:b1:16:99:19:db:78:23:d0:a3:0c:79:e4:cd:
14:fc:bb:9d:f4:74:95:50:6c:3d:95:02:02:1c:8c:b3:14:be:
79:67:70:09:8d:94:56:98:fc:11:cb:e1:68:24:c1:45:31:0d:
47:89:68:58:b1:96:b7:d2:c4:8b:34:c1:10:fe:02:ae:e3:a4:
c5:9a:88:69:fd:13:97:8a:4f:1a:d3:bb:e5:07:8f:87:6f:61:
98:ea:13:27:d2:c1:6d:97:78:ac:c2:fa:a0:bb:40:56:45:69:
9d:9c:0e:fb:11:d9:5f:55:e5:9d:54:94:97:78:0d:11:21:31:
90:f8:55:5e:f8:59:d2:8c:9e:0b:e3:78:c3:e6:c0:ad:6f:bb:
43:ae:6a:9d:8d:27:74:de:6b:af:c4:48:58:c7:a7:b9:f1:d9:
0e:d1:93:a1:d6:a2:65:e1:69:c9:0a:74:3f:1d:10:fa:8a:3d:
68:38:c0:b9:57:6e:9c:d1:76:b2:07:94:15:1a:af:df:10:3d:
ea:cc:33:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org