Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/C3KkL-nsYGTwW5N2yl24DF9RC7U.roa
File: C3KkL-nsYGTwW5N2yl24DF9RC7U.roa (raw, json)
Hash identifier: MjgbjUz7jCKC1LOppeDPXKN/SUKYcmfUbqkYKNUOcVU=
Subject key identifier: 0B:72:A4:2F:E9:EC:60:64:F0:5B:93:76:CA:5D:B8:0C:5F:51:0B:B5
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 0187DFDE563F5284209AF70C2E789358E36F
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/C3KkL-nsYGTwW5N2yl24DF9RC7U.roa
Signing time: Wed 03 May 2023 04:28:22 +0000
ROA not before: Wed 03 May 2023 04:28:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207957
IP address blocks: 80.66.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:df:de:56:3f:52:84:20:9a:f7:0c:2e:78:93:58:e3:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: May 3 04:28:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b72a42fe9ec6064f05b9376ca5db80c5f510bb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:7f:bb:84:80:0b:8b:c3:9b:83:b2:5c:e1:e6:
17:db:05:f0:43:f9:eb:db:2d:3f:eb:88:a0:3b:81:
64:d5:cf:83:55:75:96:ad:db:0b:f0:ca:1a:04:f8:
52:9a:36:34:4c:0c:8e:70:44:92:72:fe:4e:91:5c:
15:d4:d9:a7:d9:8d:7a:14:63:c0:cd:3f:cd:b9:2e:
16:b8:77:1b:79:fa:32:9d:60:1e:a3:86:92:d9:fe:
ee:9a:bc:a2:32:84:f8:d1:45:e7:1f:3c:b8:31:41:
d4:32:05:4f:35:8e:f8:a8:ba:37:6c:39:ee:16:9a:
e0:b1:e2:09:1d:e6:e0:66:79:43:dc:07:85:91:fe:
d9:29:e6:d4:5e:63:ca:3b:af:81:08:86:51:85:97:
49:de:d9:2c:3f:75:a1:ef:03:0f:9f:6a:f6:82:11:
e3:c6:12:e5:b3:2f:9d:37:53:5e:88:a5:c1:e8:fb:
0c:f1:b4:b7:63:81:01:d9:77:2f:3c:c5:d1:6e:79:
62:b2:1c:5e:ba:53:e3:d4:64:b6:f8:59:eb:cc:4f:
c7:a0:ae:d4:1c:72:49:43:93:dd:02:2c:ca:bc:29:
70:b8:c7:91:0a:5e:3f:68:78:b7:c4:9d:97:ff:0c:
af:4a:c2:b7:71:48:d1:8e:3e:cb:d1:87:74:bc:ee:
9e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:72:A4:2F:E9:EC:60:64:F0:5B:93:76:CA:5D:B8:0C:5F:51:0B:B5
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/C3KkL-nsYGTwW5N2yl24DF9RC7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.89.0/24
Signature Algorithm: sha256WithRSAEncryption
52:4e:f1:37:1e:7a:60:8f:4c:ff:05:21:58:62:c4:ae:63:27:
f7:e7:0f:f7:a6:e2:aa:dc:03:81:da:2a:4b:96:7d:50:ee:91:
5c:9d:05:90:cf:b3:0a:79:0d:ab:83:21:ce:c7:b5:b9:81:93:
08:81:0a:38:f8:fa:9d:69:f3:95:c1:f1:95:a8:2e:39:f8:6e:
3c:db:cc:67:b8:9b:5b:4f:3e:60:c0:4c:00:d9:6a:84:a5:24:
a1:6d:46:aa:f2:e5:ac:8b:41:d9:67:76:ff:73:0b:c4:54:54:
ab:4a:0c:13:27:9b:2e:58:5d:ff:bd:8e:a1:6d:b3:08:3d:8a:
e0:ae:ad:9e:f4:cb:f8:f7:e7:8b:08:e6:37:f7:85:44:91:ed:
c0:e2:d2:dc:82:42:33:2d:86:20:1a:17:94:7d:13:8f:ab:69:
06:90:df:a7:b2:54:c5:3d:23:c3:2c:88:3b:2f:e0:c7:1f:96:
50:23:8a:c7:87:29:9b:70:34:f0:42:cc:c7:1e:3a:66:5a:3f:
0b:1c:15:39:7d:f7:77:d6:c3:b9:77:1b:53:e0:4b:16:28:3d:
f8:e4:45:da:13:01:5d:ba:a7:36:40:74:60:5b:58:2d:d1:46:
bc:b7:df:6b:ae:0e:f5:27:3b:3c:f4:2b:ae:67:66:92:7f:27:
ef:67:8a:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:01:01 2025 by rpki-client