Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/J2ZeOFUcR1ybNzxQLaWXgngnGs8.roa
File: J2ZeOFUcR1ybNzxQLaWXgngnGs8.roa (raw, json)
Hash identifier: VQ/yuGkUywdoTK357Tqvzl7M5EvgWvl0L/NxhrIsJoo=
Subject key identifier: 27:66:5E:38:55:1C:47:5C:9B:37:3C:50:2D:A5:97:82:78:27:1A:CF
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 0567B054
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/J2ZeOFUcR1ybNzxQLaWXgngnGs8.roa
Signing time: Fri 25 Mar 2022 12:08:48 +0000
ROA not before: Fri 25 Mar 2022 12:08:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207883
IP address blocks: 80.66.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90681428 (0x567b054)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Mar 25 12:08:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27665e38551c475c9b373c502da5978278271acf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2c:32:9a:10:a6:76:af:20:3b:e8:71:28:36:
ec:1c:44:d6:58:91:1f:31:39:ce:07:9f:5c:1d:ed:
f3:88:b7:47:35:bc:63:7b:04:00:24:29:2b:5d:a7:
12:58:29:40:cd:ff:e0:6e:16:8d:40:58:66:93:1b:
19:08:cb:59:88:28:93:cf:00:5a:dd:22:2e:34:30:
35:36:d9:3a:d4:36:37:e7:a4:d0:82:39:14:8f:bb:
c8:d4:da:ed:13:51:ab:66:36:3e:77:9a:08:45:11:
40:63:aa:d6:3c:6b:12:23:ff:bf:0b:58:a0:df:07:
ab:05:47:be:46:ff:78:87:e0:46:97:b3:3d:ef:39:
da:8c:36:bc:4b:68:99:be:90:3f:0c:0f:68:31:66:
27:d8:15:68:ab:3f:9a:e5:06:0f:4f:80:7c:eb:b2:
8e:ec:4d:96:90:b7:28:78:59:f1:64:cd:55:e7:d4:
9c:b8:18:c0:56:36:10:b0:41:71:35:51:49:80:ec:
ff:2b:c4:20:3e:16:cb:54:f4:c3:8f:a1:2a:62:c3:
e2:c3:a3:af:b6:e4:3e:bf:61:cc:c5:3e:d1:f7:72:
81:1b:28:9e:a4:a8:03:71:78:3d:7d:47:68:4a:b5:
38:2d:ee:ff:c0:d9:77:43:33:61:60:cf:89:6e:81:
1e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:66:5E:38:55:1C:47:5C:9B:37:3C:50:2D:A5:97:82:78:27:1A:CF
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/J2ZeOFUcR1ybNzxQLaWXgngnGs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.68.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:04:65:36:a3:23:8d:11:b9:5e:e4:b7:55:6f:8e:a6:79:b6:
05:2d:fd:8e:ad:b2:35:cf:d3:15:1a:1a:bf:cf:88:e5:ed:bb:
a6:39:c9:e3:76:71:5e:ab:8b:1d:43:85:a4:d0:3e:7b:ab:7d:
7b:e2:c0:ba:dd:f4:e9:6f:8b:df:a6:4f:b5:30:6d:da:de:a6:
e7:4d:c8:d2:76:ce:35:55:18:c0:51:78:63:fd:4c:18:9a:59:
a1:97:9a:64:83:f2:41:36:3b:a7:d3:95:4c:66:ed:a8:bc:9a:
1f:3a:c0:11:68:3b:46:3f:a1:03:b2:a3:bc:ca:ba:e7:f4:75:
64:2d:67:04:37:0e:35:5f:ba:d8:7a:f3:7e:91:96:98:5a:69:
a1:44:00:49:59:da:66:59:80:a2:6b:c2:00:45:e3:cc:6e:76:
12:d4:5f:ed:88:6f:df:6d:d3:4a:16:da:74:72:a0:a6:44:57:
96:06:46:84:3a:d9:8b:d9:a1:7a:39:50:35:d9:8a:7c:33:aa:
11:fe:7a:a8:ba:3d:15:b3:99:d6:ef:60:2b:02:70:d0:18:e3:
b1:1d:b6:b7:4e:f4:41:9e:8b:e4:8c:b9:fa:43:71:57:05:ab:
b7:a8:c1:46:50:05:0d:7e:3f:c7:c8:30:ff:16:c1:b7:37:50:
01:ca:2d:bf
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBWewVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NzNiNGMxMjQ4YzRiY2YyMmIwNTc3ZGZjYTliMTRkOTA2M2MyOGMwMB4XDTIyMDMy
NTEyMDg0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjc2NjVlMzg1NTFj
NDc1YzliMzczYzUwMmRhNTk3ODI3ODI3MWFjZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKssMpoQpnavIDvocSg27BxE1liRHzE5zgefXB3t84i3RzW8
Y3sEACQpK12nElgpQM3/4G4WjUBYZpMbGQjLWYgok88AWt0iLjQwNTbZOtQ2N+ek
0II5FI+7yNTa7RNRq2Y2PneaCEURQGOq1jxrEiP/vwtYoN8HqwVHvkb/eIfgRpez
Pe852ow2vEtomb6QPwwPaDFmJ9gVaKs/muUGD0+AfOuyjuxNlpC3KHhZ8WTNVefU
nLgYwFY2ELBBcTVRSYDs/yvEID4Wy1T0w4+hKmLD4sOjr7bkPr9hzMU+0fdygRso
nqSoA3F4PX1HaEq1OC3u/8DZd0MzYWDPiW6BHr0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQnZl44VRxHXJs3PFAtpZeCeCcazzAfBgNVHSMEGDAWgBQHO0wSSMS88isF
d9/KmxTZBjwowDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0J6dE1Fa2pFdlBJckJYZmZ5cHNVMlFZOEtNQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvNjNkYmU1LTVhYTMtNGYxOS04ZGE0LWE4ZDM2MWNlNjRhYS8x
L0oyWmVPRlVjUjF5Yk56eFFMYVdYZ25nbkdzOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
NjNkYmU1LTVhYTMtNGYxOS04ZGE0LWE4ZDM2MWNlNjRhYS8xL0J6dE1Fa2pFdlBJ
ckJYZmZ5cHNVMlFZOEtNQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFBCRDANBgkqhkiG9w0BAQsFAAOC
AQEASgRlNqMjjRG5XuS3VW+Opnm2BS39jq2yNc/TFRoav8+I5e27pjnJ43ZxXquL
HUOFpNA+e6t9e+LAut306W+L36ZPtTBt2t6m503I0nbONVUYwFF4Y/1MGJpZoZea
ZIPyQTY7p9OVTGbtqLyaHzrAEWg7Rj+hA7KjvMq65/R1ZC1nBDcONV+62HrzfpGW
mFppoUQASVnaZlmAomvCAEXjzG52EtRf7Yhv323TShbadHKgpkRXlgZGhDrZi9mh
ejlQNdmKfDOqEf56qLo9FbOZ1u9gKwJw0BjjsR22t070QZ6L5Iy5+kNxVwWrt6jB
RlAFDX4/x8gw/xbBtzdQAcotvw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:53 2023 by rpki-client on console-fra.rpki-client.org