Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/2VT6Yc-8DzU1sFpGhvid-qkrC2A.roa
File: 2VT6Yc-8DzU1sFpGhvid-qkrC2A.roa (raw, json)
Hash identifier: 1ZHr+nUiVemQ8EF+oTl7isIlWA1tB3fYix7m+0o89tQ=
Subject key identifier: D9:54:FA:61:CF:BC:0F:35:35:B0:5A:46:86:F8:9D:FA:A9:2B:0B:60
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 061CE194
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/2VT6Yc-8DzU1sFpGhvid-qkrC2A.roa
Signing time: Thu 09 Jun 2022 16:16:02 +0000
ROA not before: Thu 09 Jun 2022 16:16:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208091
IP address blocks: 80.66.88.0/24 maxlen: 24
87.251.67.0/24 maxlen: 24
87.251.75.0/24 maxlen: 24
80.66.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102556052 (0x61ce194)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jun 9 16:16:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d954fa61cfbc0f3535b05a4686f89dfaa92b0b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:08:d8:2f:d6:41:51:fa:1f:f6:da:1a:77:3c:
45:a7:39:9f:4c:a6:82:1b:78:70:8c:45:22:20:fd:
70:3e:a0:11:06:04:76:ba:4b:35:1e:dc:60:2f:72:
ff:11:db:8f:e1:2d:49:08:64:9e:32:49:ed:8b:47:
d2:94:87:b8:c2:05:1b:68:b6:42:a8:e7:a8:f4:56:
1c:26:db:ce:88:b5:fc:89:2e:d3:0e:6f:fe:b6:64:
9a:7c:5a:53:74:ea:03:f9:67:f2:25:e6:85:ba:49:
8f:1a:b5:c4:e3:0f:38:87:8e:96:bc:f1:d9:44:b4:
6a:fb:6f:8e:b3:c2:da:cd:0b:21:51:04:88:42:3a:
50:5f:2d:9b:a8:7b:dc:7d:d4:1e:46:23:f8:d1:d5:
4b:33:07:f8:ae:63:42:64:e5:a1:ed:4c:d3:52:6c:
54:fa:12:3a:ba:90:1f:1a:e6:77:fa:a0:39:7c:18:
bd:aa:3d:4b:db:3f:a0:3b:30:69:a9:66:56:b7:58:
73:9f:e9:64:2a:7f:aa:b1:a8:77:24:58:fd:58:19:
8d:d3:05:1f:24:bf:ff:91:59:85:b0:d6:08:cc:fe:
fc:61:d1:09:83:24:c9:a8:cf:e6:b4:93:33:e8:8d:
f6:51:db:22:99:fc:21:95:34:9e:fc:90:7e:07:6c:
71:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:54:FA:61:CF:BC:0F:35:35:B0:5A:46:86:F8:9D:FA:A9:2B:0B:60
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/2VT6Yc-8DzU1sFpGhvid-qkrC2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.76.0/24
80.66.88.0/24
87.251.67.0/24
87.251.75.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:44:37:8b:96:0a:82:5f:7e:7f:5b:48:e4:8c:90:c3:6e:89:
94:da:0f:da:81:9a:6c:9a:13:3b:4c:e4:73:38:37:5f:d1:90:
99:e0:cd:2a:08:67:29:17:be:fe:93:14:d8:06:5e:9a:c9:a3:
d5:7f:12:68:f1:71:49:41:be:c5:96:11:15:19:f9:94:c5:6f:
28:04:6e:20:cc:08:31:6c:99:31:10:eb:e6:98:d8:ba:6c:f8:
17:f7:ee:f5:ac:13:c2:77:f3:38:f1:b1:2f:a5:25:46:71:d7:
53:4a:b4:d2:d2:93:14:a8:07:85:d3:f9:24:a4:be:b5:22:33:
bd:a0:f7:90:db:7d:01:01:44:f2:a2:33:74:d2:b0:41:bd:da:
de:13:1e:2c:6c:08:49:fd:f9:f7:42:10:38:54:76:0b:3a:72:
a6:0a:b5:34:a9:59:00:1e:fc:a7:18:7b:2f:c7:72:46:5c:c4:
48:08:86:28:86:ac:4b:31:64:f0:5d:16:33:a0:22:d2:6f:17:
5a:35:ef:d8:d9:16:f7:fb:d7:7f:1f:d7:52:63:35:60:90:b9:
27:d4:cc:e4:36:d7:bc:24:90:e5:75:42:90:cb:c0:18:f9:d0:
da:f5:43:ce:79:42:c6:bf:e0:80:df:51:2e:b4:a3:ad:fd:0d:
47:00:d7:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:36 2024 by rpki-client on console-ams.rpki-client.org