Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/xcwrpUok6gwGamPzxQFVy_HYhzo.roa
File: xcwrpUok6gwGamPzxQFVy_HYhzo.roa (raw, json)
Hash identifier: 0RZ3ZRqetH9J9kApLm4KLpsUU71vcxmccnS9EnQWFvA=
Subject key identifier: C5:CC:2B:A5:4A:24:EA:0C:06:6A:63:F3:C5:01:55:CB:F1:D8:87:3A
Certificate issuer: /CN=1a6a1413cc8965ee92416b6059f90b18778c8b38
Certificate serial: 01856D01B66C1514F4E34F555EC68C41B1D5
Authority key identifier: 1A:6A:14:13:CC:89:65:EE:92:41:6B:60:59:F9:0B:18:77:8C:8B:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GmoUE8yJZe6SQWtgWfkLGHeMizg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/xcwrpUok6gwGamPzxQFVy_HYhzo.roa
Signing time: Sun 01 Jan 2023 11:05:06 +0000
ROA not before: Sun 01 Jan 2023 11:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20882
IP address blocks: 80.75.224.0/24 maxlen: 24
80.75.225.0/24 maxlen: 24
80.75.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:b6:6c:15:14:f4:e3:4f:55:5e:c6:8c:41:b1:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a6a1413cc8965ee92416b6059f90b18778c8b38
Validity
Not Before: Jan 1 11:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5cc2ba54a24ea0c066a63f3c50155cbf1d8873a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5d:c8:da:a2:8a:a3:3d:5d:1a:a3:99:50:d0:
e3:7c:95:08:9a:32:f2:06:d3:21:d9:84:70:35:47:
12:97:76:eb:39:8a:fa:d7:48:d1:11:31:b4:ce:7e:
aa:89:b5:94:16:8d:00:0c:92:b3:b7:4f:30:fb:ed:
a8:cf:4b:b2:b4:28:f3:c8:af:29:1b:f4:b4:fc:0f:
38:98:10:13:72:ef:22:e6:5a:15:f4:2a:64:77:32:
8c:90:63:58:09:a7:05:f6:ea:4e:3c:85:71:88:3e:
b0:aa:2a:2d:7d:1f:c5:1b:0e:15:6b:d8:ad:db:44:
4a:f3:79:aa:86:e5:96:8a:10:94:18:d9:21:d4:db:
e5:de:73:b9:58:cb:96:75:2b:dc:fc:b8:08:ac:c4:
9f:7e:ec:46:f8:f0:63:bc:05:fa:44:be:2c:e7:42:
25:a8:d4:dd:af:11:08:16:76:bf:69:24:bb:ce:ba:
41:e4:7a:98:a4:a7:70:c1:b6:5b:bf:9b:a2:ca:85:
e5:71:88:cc:33:96:b5:53:28:0c:88:d8:39:55:f2:
cd:51:38:d5:1b:e8:f8:bb:5c:5e:b9:24:8d:ef:4b:
fb:66:c7:1b:d0:23:97:0c:32:d9:2f:67:bb:91:9a:
7a:aa:f6:65:20:08:09:28:91:a4:90:f9:81:ef:63:
01:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:CC:2B:A5:4A:24:EA:0C:06:6A:63:F3:C5:01:55:CB:F1:D8:87:3A
X509v3 Authority Key Identifier:
keyid:1A:6A:14:13:CC:89:65:EE:92:41:6B:60:59:F9:0B:18:77:8C:8B:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GmoUE8yJZe6SQWtgWfkLGHeMizg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/xcwrpUok6gwGamPzxQFVy_HYhzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/GmoUE8yJZe6SQWtgWfkLGHeMizg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.224.0/20
Signature Algorithm: sha256WithRSAEncryption
3d:8f:ad:98:39:d5:5d:ea:ec:27:c7:80:cc:75:c7:d4:7c:a2:
77:9a:ee:4b:60:4c:47:0f:59:97:78:61:91:fd:4a:a0:66:57:
86:c1:a1:e2:e5:e9:a4:b7:ed:c8:61:d1:eb:e6:82:29:cb:3d:
a0:5e:80:df:bc:fc:fc:fd:14:b9:48:e2:06:0a:5f:bc:ff:92:
d2:9d:14:b3:95:83:29:42:26:72:b7:96:96:04:6b:3d:ac:9e:
c7:d2:de:fd:2d:0a:5f:1d:1f:4c:26:60:c0:c7:8d:f3:87:38:
b0:f7:d1:1e:e6:fe:9f:7e:ae:06:cc:b0:a2:91:b4:d0:13:aa:
23:60:fb:9f:84:43:81:a4:e5:8a:84:57:28:ba:91:f9:e9:4b:
ea:96:a4:82:fb:1d:d5:c8:80:22:8b:52:51:5b:b8:f9:0f:91:
a5:34:74:2a:a5:46:c1:04:82:e6:a7:e0:b6:26:35:f4:98:44:
e3:4a:0e:48:bd:d6:5e:d1:7b:ea:7e:6b:4b:5a:c0:31:8e:9e:
3b:e6:b5:0c:85:6d:c6:b7:31:fc:c1:19:2a:aa:0a:a0:e0:d5:
8d:1e:67:b7:82:02:86:12:36:6b:be:f2:a9:99:f1:91:43:a3:
6a:51:0f:7e:4a:00:49:dc:2a:3c:33:c2:f7:0a:b7:b0:04:ea:
b9:9e:e7:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtAbZsFRT0409VXsaMQbHVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhNmExNDEzY2M4OTY1ZWU5MjQxNmI2MDU5ZjkwYjE4Nzc4
YzhiMzgwHhcNMjMwMTAxMTEwNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNWNjMmJhNTRhMjRlYTBjMDY2YTYzZjNjNTAxNTVjYmYxZDg4NzNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg13I2qKKoz1dGqOZUNDjfJUImjLy
BtMh2YRwNUcSl3brOYr610jRETG0zn6qibWUFo0ADJKzt08w++2oz0uytCjzyK8p
G/S0/A84mBATcu8i5loV9CpkdzKMkGNYCacF9upOPIVxiD6wqiotfR/FGw4Va9it
20RK83mqhuWWihCUGNkh1Nvl3nO5WMuWdSvc/LgIrMSffuxG+PBjvAX6RL4s50Il
qNTdrxEIFna/aSS7zrpB5HqYpKdwwbZbv5uiyoXlcYjMM5a1UygMiNg5VfLNUTjV
G+j4u1xeuSSN70v7Zscb0COXDDLZL2e7kZp6qvZlIAgJKJGkkPmB72MBhwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMXMK6VKJOoMBmpj88UBVcvx2Ic6MB8GA1UdIwQY
MBaAFBpqFBPMiWXukkFrYFn5Cxh3jIs4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR21vVUU4eUpaZTZTUVd0Z1dma0xHSGVNaXpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC81OWE0M2YtODgxYS00OGVkLTljM2Ut
ODJjMDg1YTkyNzc3LzEveGN3cnBVb2s2Z3dHYW1QenhRRlZ5X0hZaHpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC81OWE0M2YtODgxYS00OGVkLTljM2UtODJjMDg1YTkyNzc3
LzEvR21vVUU4eUpaZTZTUVd0Z1dma0xHSGVNaXpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUEvgMA0G
CSqGSIb3DQEBCwUAA4IBAQA9j62YOdVd6uwnx4DMdcfUfKJ3mu5LYExHD1mXeGGR
/UqgZleGwaHi5emkt+3IYdHr5oIpyz2gXoDfvPz8/RS5SOIGCl+8/5LSnRSzlYMp
QiZyt5aWBGs9rJ7H0t79LQpfHR9MJmDAx43zhziw99Ee5v6ffq4GzLCikbTQE6oj
YPufhEOBpOWKhFcoupH56UvqlqSC+x3VyIAii1JRW7j5D5GlNHQqpUbBBILmp+C2
JjX0mETjSg5IvdZe0XvqfmtLWsAxjp475rUMhW3GtzH8wRkqqgqg4NWNHme3ggKG
EjZrvvKpmfGRQ6NqUQ9+SgBJ3Co8M8L3CrewBOq5nuev
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:06 2025 by rpki-client