Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/k0NsNDo7foDluCrMa2XLt319ClM.roa
File: k0NsNDo7foDluCrMa2XLt319ClM.roa (raw, json)
Hash identifier: Wmf06XWW17baBXbVB3KjgFCsafKIO2QCtXJDBZ3tcFw=
Subject key identifier: 93:43:6C:34:3A:3B:7E:80:E5:B8:2A:CC:6B:65:CB:B7:7D:7D:0A:53
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 062ECA1F
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/k0NsNDo7foDluCrMa2XLt319ClM.roa
Signing time: Wed 15 Jun 2022 09:22:44 +0000
ROA not before: Wed 15 Jun 2022 09:22:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35029
IP address blocks: 80.66.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103729695 (0x62eca1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jun 15 09:22:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93436c343a3b7e80e5b82acc6b65cbb77d7d0a53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f8:ba:0b:91:63:4d:82:37:5d:c8:80:8f:d3:
be:f2:e3:10:ad:7d:3d:f5:e9:bc:f7:85:93:c4:2b:
dd:8f:be:5f:76:4d:92:d7:17:b0:1d:65:2c:b6:71:
80:11:5a:9a:89:04:0e:3e:57:c6:cf:63:14:fc:1d:
77:0f:f6:53:07:80:6b:b7:ce:4f:78:d9:b5:19:77:
7a:a3:1b:96:d8:d0:2d:0b:4f:a9:f0:5a:75:27:63:
c5:b0:43:8d:9d:a4:8c:e1:12:57:d9:e2:72:2a:3f:
ae:b0:5e:c0:09:f5:c2:7c:c8:72:04:5c:99:9c:5c:
81:95:46:f1:de:be:92:79:d8:71:3c:86:dc:2a:90:
18:48:b6:cb:7d:dd:61:39:82:7b:b7:53:0a:8a:c7:
77:18:f1:b6:dc:6d:ea:f3:43:ec:c7:32:a0:99:ea:
a5:12:8d:18:03:cd:20:cd:62:11:e3:0a:13:df:34:
de:fd:5c:60:95:5b:ce:3b:7b:bd:13:ad:37:46:4a:
88:b3:7a:65:7f:0a:fa:57:21:c0:aa:e8:0e:57:25:
fb:b3:a2:3d:03:ca:50:56:ee:33:0e:4b:7f:09:6b:
ed:12:77:cd:0e:23:08:82:4d:c2:b2:d8:d9:02:9d:
00:c6:68:46:b9:bd:65:e3:df:31:9b:99:60:5e:95:
8a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:43:6C:34:3A:3B:7E:80:E5:B8:2A:CC:6B:65:CB:B7:7D:7D:0A:53
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/k0NsNDo7foDluCrMa2XLt319ClM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.75.0/24
Signature Algorithm: sha256WithRSAEncryption
37:1d:b5:72:80:2c:ad:ac:be:a3:8e:a9:7d:8e:8c:62:2d:93:
77:8c:ea:0f:9e:c0:74:c9:36:9c:54:ec:a4:2d:4f:1e:ec:62:
83:bd:4e:0c:34:e5:c1:8c:c1:c7:c6:46:0f:e8:a2:63:7b:c0:
d0:37:67:12:d3:41:de:80:19:28:f4:f7:fb:12:32:46:9e:cb:
ae:73:fc:28:63:b3:30:54:ac:a4:aa:6d:be:14:3f:45:80:2a:
84:6e:a4:0c:56:29:b1:60:75:59:46:67:68:55:49:da:73:ff:
88:50:e1:16:66:de:d8:b8:4c:12:9d:c6:0a:7c:1b:bc:45:78:
a7:08:7e:13:69:58:b4:8d:96:f9:87:b5:c5:aa:df:bb:ae:a9:
a1:c1:35:14:92:2c:c6:ce:8f:eb:5b:48:05:6e:d1:f0:34:ad:
15:a8:0f:76:fc:6c:21:94:32:8d:35:e1:ac:73:aa:e7:2a:7b:
aa:4b:de:19:6c:66:95:59:e4:a0:79:34:20:3b:f3:18:a9:83:
fc:d7:dc:51:6a:85:14:12:22:68:c3:a8:8b:b2:b7:7e:bc:bc:
31:69:b5:a2:d0:6a:49:be:88:a0:8e:af:0b:02:bc:7b:dc:31:
2f:1d:02:2b:e3:a0:b6:0c:c2:17:0c:e4:d7:fc:74:95:e4:b2:
97:1d:92:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:36 2023 by rpki-client on console-ams.rpki-client.org