Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/1ef6zY8_chlvVe66NGAZ4c_KLSg.roa
File: 1ef6zY8_chlvVe66NGAZ4c_KLSg.roa (raw, json)
Hash identifier: BEzBtJS4EuWh8iKnB7LkE3IfX1LVzQtXr4oonzuSusQ=
Subject key identifier: D5:E7:FA:CD:8F:3F:72:19:6F:55:EE:BA:34:60:19:E1:CF:CA:2D:28
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 0DEAD2AC
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/1ef6zY8_chlvVe66NGAZ4c_KLSg.roa
Signing time: Sat 01 Jan 2022 08:00:51 +0000
ROA not before: Sat 01 Jan 2022 08:00:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60197
IP address blocks: 80.67.188.0/24 maxlen: 24
2001:913::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233493164 (0xdead2ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Jan 1 08:00:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5e7facd8f3f72196f55eeba346019e1cfca2d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:86:2a:e6:3d:20:6b:37:3f:d1:53:cd:e3:f0:
0c:79:5d:23:a5:5d:fc:28:d2:8f:d9:55:1b:20:73:
d4:f8:cc:62:cb:53:14:c6:c4:b1:7c:c2:e4:1f:3e:
6b:66:03:66:31:7d:85:20:c6:56:16:1b:04:00:59:
b7:de:c2:14:53:dc:63:98:7c:39:bf:85:9c:80:26:
3d:13:f2:84:b3:07:84:a6:11:6b:16:96:1a:64:c6:
88:a4:82:93:f8:b5:7a:06:17:98:48:5a:77:4a:6e:
8a:37:54:6f:59:bb:f9:db:f6:d1:f4:1e:74:8d:c8:
32:36:ca:52:29:a6:7f:3f:a6:df:97:d3:14:36:a9:
12:73:fb:15:24:2f:d7:6b:1d:02:92:ad:6f:29:d4:
ec:a5:55:fa:9b:9f:ee:51:fd:13:b8:58:7f:b9:8e:
2f:a0:57:08:8d:45:a8:06:bc:1d:37:80:56:46:b3:
43:d7:35:90:c3:db:b3:bd:13:8e:f9:be:ee:17:5d:
93:03:22:77:81:ef:7d:53:10:93:9b:39:96:31:fa:
58:93:29:4f:99:cf:e3:c4:57:2b:0c:22:2f:a9:07:
bc:53:18:a2:d1:ee:20:89:41:85:0b:c1:a7:ef:a0:
20:7e:dc:84:84:8a:b5:f9:08:e5:6c:3b:6e:a5:4d:
74:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E7:FA:CD:8F:3F:72:19:6F:55:EE:BA:34:60:19:E1:CF:CA:2D:28
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/1ef6zY8_chlvVe66NGAZ4c_KLSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.67.188.0/24
IPv6:
2001:913::/36
Signature Algorithm: sha256WithRSAEncryption
74:31:c9:ca:f8:de:28:5f:c5:e3:97:4d:04:2f:b4:09:3b:f9:
7d:e1:c7:01:8d:d0:5f:9a:ce:80:e7:ef:77:bf:b3:e6:0f:62:
0e:44:ce:ba:b0:d4:e0:7c:27:0e:a2:28:fd:84:37:73:7c:fd:
cb:52:fd:a5:2f:07:bb:3e:ac:cb:63:7c:78:72:db:d3:89:4f:
8d:95:27:4b:e1:a0:e5:e0:65:e6:08:3e:e7:6a:02:45:e4:01:
03:4c:f5:8d:c5:b2:89:6a:48:94:f5:00:bf:4b:62:55:ac:13:
03:77:5d:f9:4d:ef:24:52:91:58:9b:50:80:2d:de:71:8b:10:
e9:11:4d:20:0d:6f:3a:f9:fc:3c:fe:66:c2:ee:c1:97:e7:9d:
6b:a9:e8:ef:3c:0b:f2:dc:86:37:69:f1:13:cc:79:0e:20:b6:
28:8e:19:9f:7d:43:d4:1f:d7:9e:0a:96:42:42:da:51:eb:a4:
65:ae:55:4b:dc:76:a5:cc:e5:59:0a:47:2b:95:3a:04:2a:1c:
35:25:13:20:5e:50:51:4a:54:b6:be:68:67:e9:2c:b9:f4:4f:
7d:aa:09:2c:2e:23:53:86:90:8c:58:1e:31:7a:c3:ab:a3:2a:
49:8c:13:63:43:77:de:09:e9:7c:e5:5d:bc:68:0b:bd:14:23:
01:0c:7d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:37 2023 by rpki-client on console-ams.rpki-client.org