Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/b66a33-92ff-4bc5-849e-8ba6f92434de/1/ybA6o0O-mtuV9iY7XGDi_8yGmw4.roa
File: ybA6o0O-mtuV9iY7XGDi_8yGmw4.roa (raw, json)
Hash identifier: sfztvryjhTehZc8x75LpC26VnjkbYuDy23ZQsvyMEbo=
Subject key identifier: C9:B0:3A:A3:43:BE:9A:DB:95:F6:26:3B:5C:60:E2:FF:CC:86:9B:0E
Certificate issuer: /CN=84393e987d67c3dba9094837ec8829ff176c1090
Certificate serial: 0181F299F8D74BFA1D17B0A756A51595182E
Authority key identifier: 84:39:3E:98:7D:67:C3:DB:A9:09:48:37:EC:88:29:FF:17:6C:10:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDk-mH1nw9upCUg37Igp_xdsEJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/b66a33-92ff-4bc5-849e-8ba6f92434de/1/ybA6o0O-mtuV9iY7XGDi_8yGmw4.roa
Signing time: Tue 12 Jul 2022 13:29:45 +0000
ROA not before: Tue 12 Jul 2022 13:29:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197883
IP address blocks: 80.73.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f2:99:f8:d7:4b:fa:1d:17:b0:a7:56:a5:15:95:18:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84393e987d67c3dba9094837ec8829ff176c1090
Validity
Not Before: Jul 12 13:29:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9b03aa343be9adb95f6263b5c60e2ffcc869b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:15:ba:b7:8f:b3:b6:c1:29:0e:44:14:e0:29:
e3:96:05:a6:c8:db:bf:25:b8:9c:ea:77:84:30:93:
c6:01:86:b6:e6:f8:3e:b5:3a:d5:c6:2d:23:71:5e:
a4:f2:3a:b4:92:9c:e4:b4:4b:42:80:15:02:23:dd:
ba:0b:0a:03:03:7f:cd:d1:79:c2:81:de:9f:bf:4f:
55:1e:ba:6f:f5:2b:1b:80:14:c1:78:67:79:c0:b1:
7e:9b:e1:d9:db:14:ca:bf:fb:64:9f:10:af:29:7f:
d7:e5:7f:30:1b:ca:4e:5a:0e:be:bf:cc:76:8e:67:
fb:c3:fd:09:31:38:2d:f1:17:ef:09:6a:98:ee:cf:
6c:cb:cf:dc:0d:bb:1e:c7:bd:a6:36:45:db:8d:6d:
05:a4:2d:b7:f9:69:e5:d4:98:40:68:aa:75:34:e1:
b1:ff:41:b7:c3:af:a0:f2:18:9c:bc:4f:ee:a0:d5:
bb:02:4f:29:3a:48:b5:f1:9a:30:89:68:24:a6:c1:
87:86:90:86:e5:98:bb:6d:9d:8a:af:77:e8:3d:e2:
fd:34:9a:a8:a8:89:9a:40:19:11:66:15:aa:3d:26:
79:4e:c5:50:9c:6b:4b:d7:cb:e1:11:80:e2:3b:79:
a0:fc:6b:e8:50:be:5a:d6:4b:70:1f:3a:8b:bd:61:
ab:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B0:3A:A3:43:BE:9A:DB:95:F6:26:3B:5C:60:E2:FF:CC:86:9B:0E
X509v3 Authority Key Identifier:
keyid:84:39:3E:98:7D:67:C3:DB:A9:09:48:37:EC:88:29:FF:17:6C:10:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDk-mH1nw9upCUg37Igp_xdsEJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b66a33-92ff-4bc5-849e-8ba6f92434de/1/ybA6o0O-mtuV9iY7XGDi_8yGmw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b66a33-92ff-4bc5-849e-8ba6f92434de/1/hDk-mH1nw9upCUg37Igp_xdsEJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.241.0/24
Signature Algorithm: sha256WithRSAEncryption
96:35:42:73:f9:dd:80:0a:93:6f:a9:68:32:b0:e1:bc:83:b8:
88:af:9a:ef:67:71:dd:d2:9a:38:6e:a9:de:34:39:e8:7e:00:
41:22:40:07:fa:5d:0f:2d:77:f4:13:02:f4:03:48:a9:8b:16:
7f:ed:c3:c0:02:b2:db:5d:19:f8:f2:b4:d0:47:32:e5:a6:89:
d0:73:97:bf:e0:fd:bf:01:02:06:47:7c:2f:08:41:84:bf:da:
f5:9a:fa:70:3e:7b:20:af:c9:45:ea:2a:dc:c4:36:cd:4c:f1:
ea:05:64:19:6d:50:ec:34:81:9b:f9:fa:30:63:6a:ed:18:46:
7e:90:6d:3c:60:bc:5c:2b:8e:1a:f1:9c:ee:58:3c:bc:b6:4c:
34:0f:56:cc:54:a9:3a:7b:6b:e5:be:ea:27:a6:b0:ef:2d:b7:
4a:97:3d:ce:98:31:cb:21:1a:e5:2e:78:2e:5d:82:c7:a4:93:
71:d9:aa:ef:a4:ba:ec:7d:aa:f5:7d:48:22:46:1a:98:62:0c:
29:19:68:d8:65:67:09:2b:ba:32:73:3c:8d:76:33:7a:08:9d:
54:60:24:3a:2f:ac:18:31:d2:25:d7:9e:d5:ea:39:9c:8f:04:
25:bb:34:b4:db:35:c3:a6:32:d1:2d:eb:86:a2:b9:39:45:26:
27:57:78:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:46 2023 by rpki-client on console-ams.rpki-client.org