Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/b__IJKTdeAno5wcUUy0G-VxEAs8.roa
File: b__IJKTdeAno5wcUUy0G-VxEAs8.roa (raw, json)
Hash identifier: ugAtbOoiXP+KBe1U07Gb7CQRKz4rC9wC55c48n8kX5c=
Subject key identifier: 6F:FF:C8:24:A4:DD:78:09:E8:E7:07:14:53:2D:06:F9:5C:44:02:CF
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 05595C33
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/b__IJKTdeAno5wcUUy0G-VxEAs8.roa
Signing time: Mon 21 Mar 2022 07:53:35 +0000
ROA not before: Mon 21 Mar 2022 07:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8711
IP address blocks: 80.66.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89742387 (0x5595c33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Mar 21 07:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fffc824a4dd7809e8e70714532d06f95c4402cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:3f:74:9f:36:19:18:ba:46:b9:e8:64:d7:8b:
61:96:50:6e:18:9b:3f:c6:39:05:4e:99:9d:62:f2:
af:2f:d8:ae:ad:8c:c7:e4:24:7f:52:af:79:01:69:
a1:73:db:08:9f:5e:fc:fc:f0:ad:6b:d5:da:c8:ea:
6e:9a:b2:d2:7d:2c:54:7c:28:bb:2f:c6:1f:fa:b2:
30:6d:94:90:1a:5b:b7:dc:22:ea:3e:0e:20:a1:20:
a2:64:42:25:91:d9:01:51:24:07:7c:5e:ec:d2:f5:
91:e1:39:61:16:f8:8e:4c:2a:33:f3:30:9d:45:28:
a3:fa:ce:ee:00:4a:1d:48:ed:b6:5d:24:4f:5d:22:
63:d1:0d:0d:aa:41:29:ad:15:b4:d3:69:a0:6a:ba:
5b:d2:bb:dd:eb:d5:7c:d6:3d:45:4d:1d:40:ba:49:
5b:2c:14:2d:5d:3e:be:8d:f5:9e:26:93:01:50:17:
c7:07:5f:0e:17:4e:cd:e6:93:c0:62:1b:4d:51:1c:
83:d8:4d:f1:7d:7b:cd:c6:ae:86:15:8e:d1:ff:5d:
be:e4:a6:e1:a8:a1:a2:19:1d:2b:b0:a8:24:94:75:
a5:1d:a1:01:38:9b:82:a6:8b:34:8b:3d:b9:b8:91:
af:94:0e:cf:9c:8b:f0:c6:a5:98:1a:0c:fd:d9:0a:
cc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FF:C8:24:A4:DD:78:09:E8:E7:07:14:53:2D:06:F9:5C:44:02:CF
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/b__IJKTdeAno5wcUUy0G-VxEAs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.67.0/24
Signature Algorithm: sha256WithRSAEncryption
16:9a:4a:1b:d2:22:32:33:27:a9:ce:e1:8d:6a:fc:d6:98:46:
35:89:27:95:81:99:0e:00:a4:68:94:b0:21:24:36:c0:20:58:
94:68:ef:0d:b0:8e:77:ea:80:b9:d2:f8:e9:27:05:ee:13:19:
d3:f7:3e:f3:42:41:55:85:09:ee:61:12:e0:91:bf:8b:81:bc:
e9:15:2e:33:10:7f:96:2e:21:e5:34:4a:15:92:55:35:ae:49:
cb:47:8e:5d:28:07:94:ab:60:90:4f:57:a4:c9:14:47:ac:9d:
23:91:02:1f:a4:74:8b:15:83:07:12:ec:c9:f2:c2:d7:cc:9c:
b6:cf:6a:21:4d:64:f2:8d:62:6a:c4:2b:f9:a3:96:b3:c1:af:
6c:4b:28:17:e3:c9:3f:4e:1f:96:44:ef:06:78:df:2a:1a:4e:
39:e7:9f:45:fc:50:20:38:b9:39:3c:15:00:76:1b:13:42:40:
11:d1:09:43:e2:ca:62:a3:15:38:cc:16:8a:d7:f8:08:b3:0b:
bf:a2:25:83:71:18:74:fd:70:c5:89:3e:31:50:30:e5:3c:ac:
82:dd:93:06:f0:25:e4:f0:1b:60:05:9f:42:12:0f:08:99:09:
c6:34:59:af:ef:af:cf:7b:33:27:d5:77:67:dd:4d:ad:07:ee:
dd:09:3b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:53 2023 by rpki-client on console-fra.rpki-client.org