Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/doQjEeg8CGCngIslpETTSlhna54.roa
File: doQjEeg8CGCngIslpETTSlhna54.roa (raw, json)
Hash identifier: P7AnAVQRiszhzFLnpmPWRrXa3FGTVmM/kE03YLxTukw=
Subject key identifier: 76:84:23:11:E8:3C:08:60:A7:80:8B:25:A4:44:D3:4A:58:67:6B:9E
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 049CC27A
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/doQjEeg8CGCngIslpETTSlhna54.roa
Signing time: Sat 01 Jan 2022 15:04:30 +0000
ROA not before: Sat 01 Jan 2022 15:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210512
IP address blocks: 87.251.69.0/24 maxlen: 24
80.66.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77382266 (0x49cc27a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 1 15:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76842311e83c0860a7808b25a444d34a58676b9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:8e:bb:88:a7:eb:15:01:68:06:86:d1:85:
21:e5:18:44:da:b1:2e:53:0b:e9:ff:49:3c:11:08:
39:09:d8:f6:da:8e:84:c5:a0:13:3a:15:4e:90:bf:
3f:ea:f1:30:c0:52:0a:41:e0:3b:de:a8:de:b4:13:
5a:53:ee:c2:8c:ba:62:ab:66:3a:f2:d0:8e:8c:83:
f6:7d:4b:6b:e3:50:48:0e:4a:ad:ee:0c:5f:c9:69:
45:cc:f5:eb:8d:e2:ee:56:0c:33:02:a9:1a:cc:aa:
80:35:6a:d3:e1:e5:42:a8:8d:76:fd:f5:76:f7:fd:
33:3c:44:bb:00:b9:19:d6:48:6b:ae:bc:f5:14:ff:
9f:aa:52:60:ff:d1:11:68:a1:25:81:74:3c:7f:fe:
f2:a8:ca:fe:d0:48:85:3f:88:e2:1d:e4:40:89:6b:
96:2f:9c:6e:ab:6c:69:89:07:e8:31:25:d3:c8:79:
8a:c1:9e:d0:6f:9f:4e:fe:c5:43:a5:80:5a:52:b0:
fe:f2:5e:8a:e0:74:ea:9e:f6:a0:47:e5:4d:48:db:
17:c6:6a:55:b2:c8:a9:a7:63:f5:94:3e:e8:b4:18:
32:04:59:b9:aa:f4:81:33:f6:b3:6b:9f:f0:da:46:
b8:cc:ce:ff:38:63:82:b2:f9:7f:62:36:2e:e2:b2:
33:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:84:23:11:E8:3C:08:60:A7:80:8B:25:A4:44:D3:4A:58:67:6B:9E
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/doQjEeg8CGCngIslpETTSlhna54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.72.0/24
87.251.69.0/24
Signature Algorithm: sha256WithRSAEncryption
28:f8:88:d2:a8:84:2b:08:38:2d:8c:24:af:f9:e8:3e:88:ad:
44:c1:0d:a4:6b:f3:f7:a4:10:5b:26:38:71:13:fa:b1:5c:7d:
58:78:81:99:a8:1a:36:33:c7:71:d8:6f:22:66:bb:cc:cc:82:
93:ce:3f:56:66:74:5a:aa:e5:57:3b:bc:1d:84:1a:c7:2a:e4:
5e:07:88:c6:d0:dc:d8:cc:a4:e9:8c:a1:38:19:fb:47:70:23:
c4:ca:6d:6c:65:7d:8e:be:7c:6c:07:f2:f5:c6:59:5f:b4:1b:
a0:c8:cb:79:9f:a4:f2:69:a2:32:d5:4a:21:f2:7c:70:d7:88:
ec:cb:d0:df:eb:c8:6c:44:be:73:1c:f6:b8:9f:31:88:a7:be:
4b:e3:89:4e:a7:f0:a1:e4:4e:6d:81:7c:06:3a:86:0a:3e:36:
3a:5b:b3:ac:b3:e9:d2:56:0f:f7:20:fa:fb:e8:e0:21:9a:0a:
5c:18:fa:ff:a6:62:71:4a:c6:04:4b:b1:73:03:a4:c4:5b:a9:
d0:0b:64:18:5e:8f:da:ac:f0:a2:9a:58:05:24:3b:32:13:ee:
09:c5:f7:67:e8:2d:a2:21:8d:2a:c9:d9:f6:bd:e7:f6:a9:93:
27:1e:ad:8f:fd:25:2c:4a:e8:5c:6f:46:ce:6e:1b:4e:a8:73:
09:ca:4a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:53 2023 by rpki-client on console-fra.rpki-client.org