Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/kJCy-qVncQfbudyYJSw0yKjiAzY.roa
File: kJCy-qVncQfbudyYJSw0yKjiAzY.roa (raw, json)
Hash identifier: qYBZkXC0ZoPZ7+xy8ji9zQLJ/2JODSuA0n9jrVY4kbU=
Subject key identifier: 90:90:B2:FA:A5:67:71:07:DB:B9:DC:98:25:2C:34:C8:A8:E2:03:36
Certificate issuer: /CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Certificate serial: 07246656
Authority key identifier: 11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/kJCy-qVncQfbudyYJSw0yKjiAzY.roa
Signing time: Sat 01 Jan 2022 16:05:55 +0000
ROA not before: Sat 01 Jan 2022 16:05:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203066
IP address blocks: 94.124.1.0/24 maxlen: 24
80.82.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119826006 (0x7246656)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11bfa2961fa0e0b07041293ddc0c3693a9e0a238
Validity
Not Before: Jan 1 16:05:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9090b2faa5677107dbb9dc98252c34c8a8e20336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:40:a2:7d:cb:c5:7a:7d:1a:b9:85:c4:48:1d:
31:73:5a:04:2f:43:07:1d:94:d1:19:bb:1b:78:f6:
e2:ae:47:bb:f0:62:a8:d9:bf:63:b4:3f:66:85:7c:
4b:11:7f:b9:79:2a:fd:67:16:c2:85:b5:7c:62:a5:
13:08:3c:86:b6:20:9d:c2:c3:88:41:9d:39:71:68:
fc:9d:d8:c5:98:f4:a9:31:e5:ae:2a:7a:29:3a:fa:
70:43:ef:1b:6b:c6:26:87:9d:2c:b0:d8:92:e7:2b:
ef:f1:57:7d:de:dd:0c:7d:cc:b4:bd:5c:7e:69:de:
e2:07:4c:05:05:23:7a:b2:f7:a3:1d:90:35:3d:f3:
a2:cf:2b:ba:ac:18:ed:c7:da:c6:f3:67:f2:0c:d6:
8e:ba:70:d2:47:41:2b:f7:70:61:9c:8b:89:29:af:
5a:a0:db:57:a8:79:fa:f3:6e:e6:13:36:f5:31:45:
22:b6:c8:26:11:69:21:8e:95:69:af:e5:95:1a:1a:
7e:d3:91:41:a9:ca:60:74:d5:d4:05:84:e7:c5:01:
d1:38:1a:cc:d0:79:95:49:9d:b6:18:d5:21:d4:bc:
30:25:19:6d:ef:07:93:de:0a:e3:29:3a:96:0c:31:
2b:80:32:67:6d:40:a4:b6:49:be:d1:79:a5:ef:ba:
50:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:90:B2:FA:A5:67:71:07:DB:B9:DC:98:25:2C:34:C8:A8:E2:03:36
X509v3 Authority Key Identifier:
keyid:11:BF:A2:96:1F:A0:E0:B0:70:41:29:3D:DC:0C:36:93:A9:E0:A2:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eb-ilh-g4LBwQSk93Aw2k6ngojg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/kJCy-qVncQfbudyYJSw0yKjiAzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/173173-819f-4bc9-92d8-78791c9356a3/1/Eb-ilh-g4LBwQSk93Aw2k6ngojg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.82.26.0/24
94.124.1.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:61:7d:b4:f8:2f:58:07:b0:70:62:c3:a7:86:68:ed:43:93:
53:1b:44:a0:27:52:0b:ab:b0:e6:c4:7e:06:a5:f7:ec:ea:14:
b6:77:b4:af:a6:51:6b:d2:7e:09:f8:25:2b:02:61:91:ca:e9:
ae:f2:85:b7:c4:40:98:ae:dc:25:b6:38:11:8c:3b:c4:09:23:
5f:1b:62:d3:2f:5e:04:9e:cb:5b:2b:25:fb:c8:84:35:3a:9b:
e2:f8:3e:6d:8d:fb:97:7a:aa:a4:cf:2a:32:f1:74:47:81:9d:
9a:5f:62:55:df:0f:cb:59:2c:c5:df:b3:ea:ee:37:c9:c6:2a:
04:53:c0:d9:4c:31:55:32:86:59:70:28:f4:f2:0a:cc:77:9f:
50:b7:a8:db:74:50:10:73:d5:e5:8e:f6:e8:ca:16:82:a3:df:
95:72:1f:cd:e0:b1:5d:37:26:4c:63:6a:08:49:7c:68:c3:61:
9d:46:20:e2:36:58:55:d5:f6:fd:57:d5:ef:99:9a:26:5d:e2:
42:df:71:a6:b0:3c:16:18:d9:ee:58:44:24:ec:17:c0:d5:fb:
ab:d0:92:b1:b1:41:72:f2:41:eb:a3:33:9d:62:90:29:c8:28:
97:e3:4c:35:b5:bd:af:3e:7f:21:02:ba:e1:f6:33:c7:87:18:
99:27:53:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:06 2023 by rpki-client on console-fra.rpki-client.org