Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/iy8RCXTxFA-ga-YySYb65fwHaGY.roa
File: iy8RCXTxFA-ga-YySYb65fwHaGY.roa (raw, json)
Hash identifier: TxQN/QtaYRHdbb1WM8tRAk+qTQvBoOdel8AEDWKVR64=
Subject key identifier: 8B:2F:11:09:74:F1:14:0F:A0:6B:E6:32:49:86:FA:E5:FC:07:68:66
Certificate issuer: /CN=f08710e6e24e6d69bd5c44afeaf0ee9c67ed3a06
Certificate serial: 346165A7
Authority key identifier: F0:87:10:E6:E2:4E:6D:69:BD:5C:44:AF:EA:F0:EE:9C:67:ED:3A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8IcQ5uJObWm9XESv6vDunGftOgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/iy8RCXTxFA-ga-YySYb65fwHaGY.roa
Signing time: Sat 01 Jan 2022 10:58:34 +0000
ROA not before: Sat 01 Jan 2022 10:58:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21231
IP address blocks: 80.92.32.0/23 maxlen: 23
80.92.34.0/23 maxlen: 23
80.92.36.0/23 maxlen: 23
80.92.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 878798247 (0x346165a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f08710e6e24e6d69bd5c44afeaf0ee9c67ed3a06
Validity
Not Before: Jan 1 10:58:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b2f110974f1140fa06be6324986fae5fc076866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:96:fa:c9:2f:1a:e7:e4:fd:f3:5d:1b:87:22:
ad:f6:32:a6:d0:bf:ed:fe:0a:ed:09:fc:b2:b1:92:
95:22:9e:16:49:0f:3b:2d:e6:36:b8:33:42:a1:94:
ec:da:91:73:42:1f:b9:5d:ce:2a:ad:eb:76:c1:d2:
70:aa:d5:07:73:3d:d9:ea:a4:da:29:e2:99:6c:28:
21:c4:7f:d9:34:cc:84:34:56:a6:80:c4:6c:d1:ad:
60:39:2e:6b:89:c8:e6:c1:46:33:54:12:a9:4a:91:
1e:19:65:c9:d6:f2:45:ba:2d:69:22:db:c3:b0:e4:
ce:44:e6:bb:3d:6f:d7:eb:73:92:dd:cb:f9:09:22:
1e:15:b6:12:e6:a1:41:3a:98:f4:d4:97:ad:ae:ea:
a1:19:ac:54:30:aa:dd:91:30:4e:81:40:0b:2c:04:
fc:02:96:54:44:72:08:7e:41:ea:43:f2:e4:60:74:
ab:07:db:7c:b5:d0:b1:12:47:f1:72:31:3d:fe:3c:
dd:66:42:e5:43:dc:7f:f1:50:eb:3a:ef:16:fd:38:
4f:f9:06:15:24:f3:1b:13:b0:50:10:c5:a3:95:10:
36:71:18:74:ac:78:61:f1:92:ee:46:8d:4c:68:a5:
f8:75:e9:05:1f:46:22:0b:67:c4:08:e9:fe:63:2f:
8d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:2F:11:09:74:F1:14:0F:A0:6B:E6:32:49:86:FA:E5:FC:07:68:66
X509v3 Authority Key Identifier:
keyid:F0:87:10:E6:E2:4E:6D:69:BD:5C:44:AF:EA:F0:EE:9C:67:ED:3A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8IcQ5uJObWm9XESv6vDunGftOgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/iy8RCXTxFA-ga-YySYb65fwHaGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.92.32.0-80.92.37.255
80.92.39.0/24
Signature Algorithm: sha256WithRSAEncryption
68:f9:28:6f:27:6e:14:22:ab:79:3b:10:eb:be:43:53:e5:14:
0a:b1:d9:d8:f7:f0:ba:96:de:90:a8:a4:80:98:24:18:b1:ca:
7b:6e:b9:7e:6a:bf:7b:7d:32:8a:16:1e:ce:a7:f8:d7:c2:39:
86:aa:9c:44:1f:64:0b:c4:f7:e2:f0:64:bd:9f:70:52:15:5e:
8e:93:6a:01:d1:58:f3:5a:45:2b:dd:c8:b7:f1:4e:26:13:f9:
6b:91:5d:39:b4:80:e1:ff:8a:30:56:4e:6a:b9:03:47:ed:0e:
a6:ab:85:3d:a7:76:33:64:34:10:88:d8:4f:7f:e6:16:83:96:
7e:fa:b7:cd:af:41:7c:5e:33:00:c6:59:0d:e9:3e:46:ba:69:
3d:cb:49:2d:98:1f:c8:b6:35:ca:0b:29:f1:e2:3c:f5:72:67:
fe:4d:ce:da:e7:b5:4b:62:14:f4:69:7e:3a:70:86:e3:d2:b6:
66:22:3f:22:62:37:f0:b6:0d:e2:5d:10:7b:92:3b:7d:20:c9:
30:ea:81:73:08:a6:3f:b3:ea:11:a5:25:26:06:7a:9d:b9:7a:
8b:31:67:75:f1:45:da:b7:91:43:f8:10:56:07:66:52:66:66:
59:4c:4a:da:30:51:44:ec:27:4e:1e:a5:c6:03:7a:9f:19:2c:
7c:ae:27:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:13 2025 by rpki-client