Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Bd5HfQ7JJXqY8ofuroeMHeYGuC8.roa
File: Bd5HfQ7JJXqY8ofuroeMHeYGuC8.roa (raw, json)
Hash identifier: eHC3/7DdpYC3MJvhJ7fxbG8NiwUmAler8T/g0x1bjso=
Subject key identifier: 05:DE:47:7D:0E:C9:25:7A:98:F2:87:EE:AE:87:8C:1D:E6:06:B8:2F
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 139CC31C
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Bd5HfQ7JJXqY8ofuroeMHeYGuC8.roa
Signing time: Tue 04 Jan 2022 16:54:42 +0000
ROA not before: Tue 04 Jan 2022 16:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49443
IP address blocks: 80.94.80.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329040668 (0x139cc31c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 4 16:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05de477d0ec9257a98f287eeae878c1de606b82f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3a:ba:42:cf:43:dd:b2:f4:60:fe:b4:fd:7a:
14:49:12:b5:84:e2:5f:89:9e:fa:2b:95:b1:c6:97:
56:a1:b7:0d:69:62:2b:3d:37:3b:57:01:cb:40:9b:
5b:82:53:4e:32:b7:ab:04:d0:35:fd:08:b8:ea:e7:
a6:c4:9d:a1:89:ee:a2:90:0f:ad:2c:4a:2a:1b:9b:
56:4c:7d:0e:ec:53:b6:2e:cb:af:49:5c:53:ad:aa:
8a:e2:29:4d:ea:7f:ab:ac:01:c0:eb:a1:9a:d1:ae:
ce:f7:99:15:4e:bb:38:b5:01:cb:0e:fa:a8:bf:de:
b9:7c:05:56:b7:1f:4a:d1:25:90:d0:bd:73:66:81:
9f:d6:20:30:99:df:b5:c5:23:42:89:d8:cd:db:4f:
d2:e4:04:f9:0e:d1:58:9b:45:3d:05:f2:b2:bd:93:
66:4f:90:c8:34:a3:a4:65:7f:00:1e:f3:b5:a0:f2:
74:24:bc:76:30:45:9d:7c:ac:20:66:d3:6f:f6:a0:
a5:8a:2a:08:44:a8:c7:7f:35:9a:1b:85:76:34:6a:
15:ac:19:c8:cf:ec:c5:98:57:86:7a:03:f7:d3:45:
72:90:34:2a:1b:6c:eb:30:4b:2b:12:8f:bf:ca:7b:
62:72:15:79:62:e0:df:b9:d1:33:5e:92:b2:d3:ee:
72:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:DE:47:7D:0E:C9:25:7A:98:F2:87:EE:AE:87:8C:1D:E6:06:B8:2F
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Bd5HfQ7JJXqY8ofuroeMHeYGuC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.94.80.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:89:cf:79:22:8e:d7:35:8e:de:ac:44:68:19:fa:2f:00:59:
36:2a:45:24:4f:a1:d7:17:21:14:7f:17:ee:d4:fb:3d:b7:93:
1f:03:eb:b8:1a:36:ea:15:7b:4c:8a:2e:80:81:db:5e:d9:e2:
7d:d5:55:0b:e1:bb:8a:a7:d9:96:31:c1:b2:27:06:72:26:97:
15:8a:72:55:eb:c4:5d:c2:31:b8:50:c5:fd:ae:44:11:0d:c5:
6a:60:7f:0e:5a:32:a7:b7:e4:02:b1:bf:76:0a:a3:ac:16:b8:
0c:41:60:fa:ac:27:e6:69:60:e0:b2:3a:d1:28:c6:03:ba:21:
46:70:88:1e:0c:9c:b4:64:8b:f3:aa:79:53:9f:cc:de:39:35:
19:91:d2:5c:f4:a3:8e:37:3e:c4:7a:6c:a4:5a:e4:a4:1c:0b:
f5:84:ce:66:6b:75:86:ab:ec:68:bf:6e:3b:fb:62:ee:1a:9a:
f9:3b:6f:0a:a7:3e:f6:5d:95:c5:52:2b:50:b4:6c:39:c6:66:
3f:85:37:a6:9d:43:5f:93:22:f2:29:d2:76:e7:fc:b0:15:63:
6a:37:42:51:0c:36:d6:7e:e0:ad:a4:27:a4:70:c7:a6:39:d0:
ce:eb:b7:96:f0:ed:40:a2:c9:f1:4e:22:b1:75:08:76:bb:fe:
e0:60:9f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org