Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/iyVpTfxiV45ptumTkRGBFuaO7DA.roa
File: iyVpTfxiV45ptumTkRGBFuaO7DA.roa (raw, json)
Hash identifier: 54W2r1VcyxkY93Upejnqf1zZbJ7PLDLmfCJ8MctUZZI=
Subject key identifier: 8B:25:69:4D:FC:62:57:8E:69:B6:E9:93:91:11:81:16:E6:8E:EC:30
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 0E83019A
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/iyVpTfxiV45ptumTkRGBFuaO7DA.roa
Signing time: Sun 06 Mar 2022 23:57:57 +0000
ROA not before: Sun 06 Mar 2022 23:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2027
IP address blocks: 80.67.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243466650 (0xe83019a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Mar 6 23:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b25694dfc62578e69b6e99391118116e68eec30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:10:8a:91:21:f4:53:f6:5c:e0:aa:ca:5e:ff:
93:9c:f5:83:5e:f8:aa:fa:45:0f:88:f8:ca:99:b6:
c9:b6:4e:d9:7a:b2:53:ce:da:2c:cb:e9:e9:74:51:
9c:04:63:2a:bd:07:81:21:7f:ca:36:8d:cf:1b:60:
79:3b:4e:e4:f4:c5:36:50:4b:90:56:9e:47:2e:89:
66:b2:dc:87:31:84:9f:0a:13:bb:fe:82:b3:5c:77:
d5:2d:5b:e4:ec:0f:6e:cb:cc:18:99:66:e5:81:11:
cf:63:fc:51:b8:c3:73:ce:86:1e:90:f1:51:2f:39:
7a:69:d9:68:52:ca:13:6c:ff:10:34:7e:c3:06:d7:
5f:99:dc:db:c6:fd:4e:e1:ef:0f:e0:36:58:b6:9d:
76:54:22:74:18:0e:1f:3a:fe:65:8f:03:9c:0d:b2:
99:aa:ae:69:9a:68:33:0a:1a:d2:41:cf:85:af:fe:
23:7c:48:55:23:52:53:7c:6f:83:e5:0c:2f:1c:a8:
91:e2:42:3e:1d:ee:7e:9d:ff:34:a3:6b:94:02:f5:
61:cc:ba:17:a1:f8:24:28:c5:80:53:21:8c:34:6b:
5f:46:e2:c6:dd:a2:81:8e:88:e5:e4:cf:97:af:cd:
46:b9:fc:8d:84:7a:a1:fa:80:48:75:32:e2:8c:a3:
78:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:25:69:4D:FC:62:57:8E:69:B6:E9:93:91:11:81:16:E6:8E:EC:30
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/iyVpTfxiV45ptumTkRGBFuaO7DA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.67.167.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:90:b2:fd:f5:2d:52:1d:14:23:37:76:c5:48:97:77:90:b9:
4c:7c:3c:93:7c:ef:e5:1f:a4:2c:6f:30:4b:07:b0:bf:b8:9d:
3b:9b:a7:11:24:02:46:c2:44:2c:3b:56:c5:3e:bc:d2:cd:d3:
8f:f7:1d:50:0d:91:6b:3d:77:90:a9:87:a5:0b:7e:b1:6a:49:
22:63:e9:35:3a:72:dd:ab:e0:99:67:96:ae:7f:a5:4e:d6:1d:
41:e2:06:80:cd:fc:a2:d8:45:bc:0b:3f:d4:39:3c:f5:28:37:
43:f1:53:3f:fd:bc:d0:ce:c3:1a:10:d9:c9:e2:eb:ab:76:b3:
1b:89:3f:07:2b:18:7e:d9:c5:33:c1:9e:7d:37:1d:70:12:c7:
19:71:d5:74:44:84:05:c8:1c:28:d5:6c:fd:01:a8:22:46:71:
86:a8:50:48:32:7a:47:0d:e1:f9:15:87:c6:1b:42:c9:29:51:
dc:96:c3:07:08:8c:c8:a8:33:de:6e:4f:c4:7a:8d:e0:af:cb:
fb:35:4b:43:71:a1:e3:6d:de:ec:38:e1:4c:f7:94:83:ca:b9:
2d:d9:d0:c8:73:b0:30:69:16:61:dc:00:cf:43:ff:2e:b2:15:
8c:91:47:16:02:ef:5a:df:0d:ad:0c:ed:5a:3b:f8:ee:20:9e:
04:5e:07:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:53 2023 by rpki-client on console-fra.rpki-client.org