Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/j5fHiVaZeFdXBeRetQbT4evfcm4.roa
File: j5fHiVaZeFdXBeRetQbT4evfcm4.roa (raw, json)
Hash identifier: bgOb+lxIUSqiY3+Q/15csgTPS8/xuCSd2WOrWr2VtpM=
Subject key identifier: 8F:97:C7:89:56:99:78:57:57:05:E4:5E:B5:06:D3:E1:EB:DF:72:6E
Certificate issuer: /CN=1319f052bc9e7284888074390c9d0bc127606692
Certificate serial: 177AC18D
Authority key identifier: 13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/j5fHiVaZeFdXBeRetQbT4evfcm4.roa
Signing time: Sat 01 Jan 2022 06:55:22 +0000
ROA not before: Sat 01 Jan 2022 06:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42580
IP address blocks: 185.224.164.0/22 maxlen: 22
80.243.88.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393920909 (0x177ac18d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1319f052bc9e7284888074390c9d0bc127606692
Validity
Not Before: Jan 1 06:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f97c789569978575705e45eb506d3e1ebdf726e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:71:c8:08:5f:5b:12:9c:f2:c0:a8:8e:d2:db:
69:84:68:91:c3:79:41:51:7b:b7:fa:ec:4c:fd:9c:
bf:31:75:2f:60:ff:94:67:40:24:51:4d:38:9e:3b:
ac:82:e5:66:71:1b:89:4c:40:34:b9:1b:15:96:1d:
aa:71:fa:dd:b6:18:90:ca:94:d5:bf:a2:7b:b1:9b:
bd:d2:19:9a:33:13:a5:f5:e2:96:3b:1c:5c:07:f9:
d9:e1:12:05:cf:be:e5:e6:3d:ae:e7:b8:10:38:66:
b8:d3:9d:c2:ba:33:06:f0:32:a3:d7:e9:1b:97:40:
e5:bc:3a:9c:5a:2c:81:54:47:1c:f9:f9:4d:b5:36:
98:92:b5:90:74:b2:0d:07:8d:1f:05:c9:19:a6:7d:
da:91:a1:25:07:6d:ca:4a:c8:8d:94:fa:ab:e8:df:
f9:61:83:10:98:46:ff:67:cd:13:dd:96:1c:bb:e0:
79:af:23:6c:d4:2e:33:d8:dc:7b:a6:6c:44:0b:78:
ea:d0:3c:01:75:a8:a4:b2:ce:74:af:82:8f:41:f9:
29:d3:7a:f6:d4:89:a0:2f:d8:4b:46:d1:a8:cd:a4:
87:2f:ee:11:c4:d7:67:fb:97:ef:68:ab:f2:75:e3:
aa:5e:b7:87:64:98:95:fb:67:84:50:38:de:7a:fb:
e5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:97:C7:89:56:99:78:57:57:05:E4:5E:B5:06:D3:E1:EB:DF:72:6E
X509v3 Authority Key Identifier:
keyid:13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/j5fHiVaZeFdXBeRetQbT4evfcm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/ExnwUryecoSIgHQ5DJ0LwSdgZpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.243.88.0/21
185.224.164.0/22
Signature Algorithm: sha256WithRSAEncryption
59:9f:a9:84:9c:65:9b:52:0f:bf:61:4b:45:96:4d:03:57:0b:
e2:1c:f3:eb:2a:b8:90:44:19:56:81:a0:1d:96:72:c7:33:cc:
9c:73:ae:c8:06:55:c4:28:34:77:df:6a:09:b6:34:5b:03:ce:
f6:ab:17:63:e8:9d:ad:24:ea:9b:17:a3:cc:2d:90:cb:b8:4c:
b9:82:21:e2:5d:65:2a:f8:7b:6b:85:c0:26:0c:b2:47:3f:d8:
48:07:f7:fe:02:e9:86:96:ca:74:df:d2:e5:61:30:38:74:e0:
2c:b3:e1:65:33:5b:04:04:c9:12:6e:82:00:54:74:04:51:4b:
64:09:18:f9:91:c0:1e:00:f5:42:3f:d1:ca:a5:32:44:42:a2:
b3:40:0a:f8:fa:56:f2:6a:16:e7:aa:2e:8c:af:84:dd:de:c0:
94:11:d1:11:8a:96:5b:d4:46:83:ab:27:39:66:13:09:50:ea:
f8:e3:eb:f1:4b:e9:9b:d9:94:d8:1a:a5:f9:9b:9b:bb:43:88:
a3:13:a9:45:e8:59:ec:30:e4:d6:ee:f9:94:ef:d5:0c:a7:8c:
e1:59:b3:e0:60:fb:8b:3e:c0:4f:ed:6c:e2:df:9b:22:3f:87:
a4:32:39:ab:e5:e4:44:23:2a:a2:db:cf:c9:31:48:59:b7:5c:
4f:c7:14:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:40 2023 by rpki-client on console-fra.rpki-client.org