Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/kkOq0aJnpkIYB8DznxWqD_7ZgtU.roa
File: kkOq0aJnpkIYB8DznxWqD_7ZgtU.roa (raw, json)
Hash identifier: lEwVatCwIc1iGO2iedHax3OIXeiV57MEyRsojl1xjWM=
Subject key identifier: 92:43:AA:D1:A2:67:A6:42:18:07:C0:F3:9F:15:AA:0F:FE:D9:82:D5
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 0621813B
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/kkOq0aJnpkIYB8DznxWqD_7ZgtU.roa
Signing time: Sat 11 Jun 2022 05:39:05 +0000
ROA not before: Sat 11 Jun 2022 05:39:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206728
IP address blocks: 87.251.66.0/24 maxlen: 24
80.66.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102859067 (0x621813b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jun 11 05:39:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9243aad1a267a6421807c0f39f15aa0ffed982d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:88:c0:ca:52:cd:c4:f5:ad:17:d0:35:6e:a9:
fb:1c:57:42:4e:02:1b:89:7a:e9:07:eb:b6:41:dd:
06:9f:98:4a:4f:33:39:0e:64:e1:86:2d:37:4a:f7:
08:a2:54:e6:72:ab:d5:66:97:e4:37:7a:d1:9e:69:
a4:e0:33:9f:95:87:f1:86:f4:94:51:5f:57:f9:cc:
ad:ad:c4:e7:b5:7c:40:8f:1e:73:d4:9e:13:b5:48:
db:39:6d:45:e1:e1:99:eb:34:23:3f:48:d0:52:61:
03:2b:89:de:12:4d:f3:d8:87:72:5d:e9:80:60:57:
3f:4f:58:47:89:ff:ea:7d:83:ef:6e:c9:d7:eb:15:
80:7b:e5:25:49:8b:3c:47:eb:ec:25:ee:3c:aa:47:
57:b5:ca:01:51:27:a0:c0:4b:76:b6:82:ce:21:24:
89:6d:90:eb:72:d5:e1:c7:ff:b4:5e:eb:a6:fc:7c:
fd:7c:8f:a7:38:33:b6:8d:14:0d:db:55:0b:6a:b1:
42:f3:ee:35:37:65:43:8e:34:cb:2e:a2:35:c8:02:
cf:b7:73:95:0b:6b:b0:ab:9f:9f:9b:6d:f5:86:30:
4e:0b:c0:cc:b5:08:c1:37:7c:fa:d3:1b:7e:1e:36:
a2:2e:df:a3:c3:fb:00:9a:ae:f4:eb:d0:d9:64:9d:
e8:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:43:AA:D1:A2:67:A6:42:18:07:C0:F3:9F:15:AA:0F:FE:D9:82:D5
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/kkOq0aJnpkIYB8DznxWqD_7ZgtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.70.0/24
87.251.66.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:4f:38:af:a2:35:ee:79:e9:30:e6:f5:9e:65:ab:b9:5b:2c:
c5:61:77:fd:98:ec:a1:bd:0a:90:2f:e4:98:d2:09:ba:32:0b:
b8:e5:d1:7f:2d:45:28:f9:99:81:1f:27:14:82:1d:08:cc:88:
9d:8c:e8:3a:04:27:4c:6e:ea:4e:63:61:a8:e0:af:a9:de:29:
fb:b8:22:ca:b5:75:82:0c:e6:30:ff:03:73:c7:54:f1:67:30:
ba:38:a7:11:6b:70:cb:d7:e8:c3:1f:7b:6d:b3:b4:80:73:26:
74:84:c5:47:c2:e5:3d:1b:3e:b1:d2:14:e0:fa:a8:5c:6d:dc:
57:64:0f:be:ba:eb:3f:3d:0c:33:9b:ca:55:d3:29:cb:32:1a:
7b:29:39:52:22:05:aa:07:39:7a:ec:b4:ba:c1:b6:37:09:57:
16:3e:3f:aa:6c:23:1b:e8:68:7e:c2:3f:bb:5c:d7:c0:87:1e:
fe:aa:46:fe:4d:87:17:7f:7d:01:71:7f:f5:b9:30:96:d3:25:
b4:26:53:39:11:b4:5b:b6:fe:75:d4:5b:0d:ca:6f:08:62:76:
09:9d:01:e2:8c:87:63:a2:03:2b:21:d9:cd:a7:4a:06:03:11:
3f:2d:b6:99:08:ff:6f:7b:45:d7:bf:35:55:2f:27:5b:af:a0:
7e:3a:5f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:36 2023 by rpki-client on console-ams.rpki-client.org