Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/UByLzFhXEQUghOkoG0sccKSOrjk.roa
File: UByLzFhXEQUghOkoG0sccKSOrjk.roa (raw, json)
Hash identifier: RlYbZ60grZVD6vEoKz4S1Q96Mh+iPdCUpDh+n9s+yRs=
Subject key identifier: 50:1C:8B:CC:58:57:11:05:20:84:E9:28:1B:4B:1C:70:A4:8E:AE:39
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9F5FDB0D8C594829DFC90F8D99894
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/UByLzFhXEQUghOkoG0sccKSOrjk.roa
Signing time: Mon 02 Jan 2023 09:04:50 +0000
ROA not before: Mon 02 Jan 2023 09:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61209
IP address blocks: 80.191.172.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f5:fd:b0:d8:c5:94:82:9d:fc:90:f8:d9:98:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=501c8bcc585711052084e9281b4b1c70a48eae39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:db:f1:1d:c2:5a:03:c1:15:71:5e:c6:6b:54:
0d:14:80:34:90:86:15:04:d6:ce:e4:d6:c0:eb:b2:
25:d3:28:9e:44:a0:00:60:d8:ef:c7:e7:3c:16:94:
84:88:42:fb:67:69:31:36:ec:98:e0:ae:da:bc:4a:
05:36:8a:dd:57:d2:43:27:92:3f:ee:0c:e0:ea:26:
14:2a:62:63:10:8d:d3:98:a2:fc:4b:6a:b0:e5:e5:
72:bf:6b:90:5e:07:5f:b9:e0:0e:ed:a5:b5:03:88:
0c:52:86:18:ec:e0:7f:2c:68:2f:34:ea:84:a9:ce:
ab:bf:0c:0e:50:d7:94:7d:51:c9:ef:01:29:65:b8:
fa:52:3f:28:2d:84:e7:dd:51:5a:56:6c:18:ae:b6:
f6:23:5d:34:57:2f:2a:18:9d:33:f9:bc:97:c5:57:
41:04:62:3a:40:95:e2:bc:07:4d:2d:0b:71:75:aa:
b8:56:c8:7a:5b:e5:9b:f6:3e:25:9d:70:84:30:38:
9e:b1:0f:86:e8:04:df:88:b5:95:67:99:e7:e9:e3:
2c:78:05:f6:e3:fc:fc:6f:80:75:3e:53:3b:03:ad:
71:44:ac:2d:0b:ea:d9:55:3e:fe:14:66:46:ae:3d:
97:6a:29:0c:5c:64:64:36:40:ae:77:ed:2e:df:c5:
76:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:1C:8B:CC:58:57:11:05:20:84:E9:28:1B:4B:1C:70:A4:8E:AE:39
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/UByLzFhXEQUghOkoG0sccKSOrjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.191.172.0/23
Signature Algorithm: sha256WithRSAEncryption
70:70:16:51:ed:7c:04:52:95:7c:33:b0:6b:5d:b3:1a:f8:48:
b6:ae:64:b4:00:41:56:7d:93:7c:3c:15:41:4d:1a:96:50:7a:
0c:bc:de:f7:8e:8c:78:b6:dc:c4:66:f2:cf:79:d2:a3:23:82:
8d:94:a8:e1:88:63:e5:bf:7e:fd:55:9e:fb:f3:c7:4a:bc:8a:
46:61:c3:02:fb:d5:62:a2:42:bd:ad:ba:31:fc:f8:43:8e:16:
67:4a:65:de:01:39:1f:ac:33:40:a2:3d:4b:96:21:d0:cf:83:
0c:f8:66:1e:12:79:4d:ec:ea:91:85:3f:17:4a:ef:16:24:0e:
66:73:ac:a9:47:90:0c:89:11:78:1b:48:76:41:95:8b:78:bb:
99:8e:af:62:ba:94:51:b6:21:38:40:c3:bc:bd:3c:0e:d2:d5:
07:3a:17:17:d4:4e:c8:f4:3b:4d:95:c0:63:8c:94:45:16:f0:
02:17:2b:4c:3a:2c:38:4d:d4:94:bd:d7:a7:1d:f0:ff:e4:88:
02:ee:bf:a0:59:85:2b:39:00:75:d0:63:6d:ca:fd:97:9e:ab:
55:7e:4f:04:30:b8:0b:05:aa:ac:78:dd:d2:4a:89:03:27:30:
70:25:f3:8f:80:20:4b:50:6c:eb:83:b7:57:19:63:01:b4:6e:
b5:69:b0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:00 2025 by rpki-client