Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/2LGhcSEQ6QbjsGNa5jkbsiS0YcA.roa
File: 2LGhcSEQ6QbjsGNa5jkbsiS0YcA.roa (raw, json)
Hash identifier: k47alTwtFdoc4kJYPNyK87s3pMhvsOpwcd/2QBJlKR8=
Subject key identifier: D8:B1:A1:71:21:10:E9:06:E3:B0:63:5A:E6:39:1B:B2:24:B4:61:C0
Certificate issuer: /CN=ec3543aa00373e9e4d10e64c83d3779b378888c1
Certificate serial: 030F42EB
Authority key identifier: EC:35:43:AA:00:37:3E:9E:4D:10:E6:4C:83:D3:77:9B:37:88:88:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7DVDqgA3Pp5NEOZMg9N3mzeIiME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/2LGhcSEQ6QbjsGNa5jkbsiS0YcA.roa
Signing time: Sat 01 Jan 2022 07:57:31 +0000
ROA not before: Sat 01 Jan 2022 07:57:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60845
IP address blocks: 80.190.115.0/24 maxlen: 24
80.190.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51331819 (0x30f42eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec3543aa00373e9e4d10e64c83d3779b378888c1
Validity
Not Before: Jan 1 07:57:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8b1a1712110e906e3b0635ae6391bb224b461c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ea:e2:b2:9c:cf:16:ca:e8:87:81:d4:c6:3a:
aa:eb:61:bb:42:d6:5e:1a:44:5d:a1:ac:6f:60:dd:
dc:74:af:2b:fc:de:e0:2a:9f:c6:a0:fa:65:c0:c4:
d0:bb:a0:44:3d:c7:d6:dd:b8:b4:70:f9:76:0a:4c:
84:55:c2:83:6a:28:15:90:8a:bf:f2:54:44:4a:85:
d5:5b:2c:06:7a:5e:bc:fb:1b:5c:f8:5d:7e:62:ca:
c5:b9:95:48:3f:3c:de:ea:62:0a:d1:3b:37:3b:dd:
03:19:0f:14:43:eb:b4:ce:38:b1:68:f7:b8:82:b9:
f4:c8:56:82:5c:38:e4:fa:91:c7:48:36:07:93:0b:
aa:33:6e:69:82:1b:32:f4:2d:29:c1:48:e1:b6:08:
44:d9:05:71:4d:49:f4:bf:8b:0b:fa:17:00:61:9e:
e9:1a:2a:ac:04:94:eb:ff:a1:a8:67:7b:85:81:dd:
e4:65:df:63:56:67:ad:c6:47:42:5a:0e:18:40:f1:
e3:08:4e:68:96:fc:b3:6c:7f:cc:c5:9f:a5:7a:e1:
6e:3b:67:68:d5:a1:32:8a:95:07:1d:8a:80:95:0c:
54:91:15:ae:2d:61:d0:5b:70:75:b6:d9:af:34:a5:
31:9f:3f:95:52:ec:1c:2d:9e:7e:f3:57:df:3e:b9:
32:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B1:A1:71:21:10:E9:06:E3:B0:63:5A:E6:39:1B:B2:24:B4:61:C0
X509v3 Authority Key Identifier:
keyid:EC:35:43:AA:00:37:3E:9E:4D:10:E6:4C:83:D3:77:9B:37:88:88:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7DVDqgA3Pp5NEOZMg9N3mzeIiME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/2LGhcSEQ6QbjsGNa5jkbsiS0YcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/7DVDqgA3Pp5NEOZMg9N3mzeIiME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.190.115.0/24
80.190.122.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:23:a0:52:ef:2b:99:36:bb:70:ba:bf:17:3a:4b:bf:40:b0:
bb:c5:3d:7e:d9:8f:22:c6:4f:70:03:90:bc:96:bc:64:51:c9:
99:e2:89:05:ca:16:bb:b8:32:55:e4:05:4a:e5:4d:38:f9:12:
7b:5d:fc:60:de:b2:2e:ef:91:78:2d:2c:93:b0:8c:77:21:0c:
cc:55:90:76:ef:1b:f4:6b:df:7e:bf:b1:0c:79:73:e4:4d:15:
fd:04:9b:e1:97:3c:4b:3e:d2:d8:d5:c3:13:57:99:51:8d:52:
e6:98:b2:5c:d8:4c:fb:e6:2d:2f:37:c3:4b:0d:20:4d:e3:16:
13:6c:c7:15:96:8f:1e:f4:89:6d:bd:04:89:62:a8:9c:33:8a:
38:a8:4d:be:d3:a5:1b:57:b1:ea:4e:fe:a5:9e:ed:e6:72:4b:
94:8a:c3:49:be:50:85:fc:7d:e1:b4:ba:eb:86:cf:34:2f:de:
d8:4d:43:00:af:36:a3:da:64:ce:9d:3b:62:b1:80:da:ff:f5:
74:29:51:e7:e1:81:48:86:bc:55:57:90:98:f7:2a:6e:08:87:
e6:6b:b5:95:d3:a4:74:83:7d:09:d2:e1:1d:cd:65:e2:4c:12:
64:b9:61:74:29:c4:12:00:5d:18:54:f7:28:f3:38:98:84:ca:
a5:e7:2d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:38 2023 by rpki-client on console-ams.rpki-client.org