Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/pKNSRoR7o5cjVwkEmMrKSjZF9eg.roa
File: pKNSRoR7o5cjVwkEmMrKSjZF9eg.roa (raw, json)
Hash identifier: rQgJf4elp8nq1tYxeD1N4rVRlwKEkHvqG8/9ZSySvGU=
Subject key identifier: A4:A3:52:46:84:7B:A3:97:23:57:09:04:98:CA:CA:4A:36:45:F5:E8
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 049C69C9
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/pKNSRoR7o5cjVwkEmMrKSjZF9eg.roa
Signing time: Sat 01 Jan 2022 15:04:29 +0000
ROA not before: Sat 01 Jan 2022 15:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206980
IP address blocks: 80.66.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77359561 (0x49c69c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 1 15:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4a35246847ba3972357090498caca4a3645f5e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fa:ee:32:4f:c4:81:aa:a3:1b:db:5f:05:d4:
d2:e0:7b:bb:3c:fc:3c:84:f0:8d:42:24:b3:84:f5:
48:49:b3:6e:48:85:85:63:f6:04:5d:63:86:32:f1:
8d:0b:55:a0:bb:2f:79:77:7e:b8:10:74:c3:fc:5e:
89:4f:11:64:77:fc:56:ce:7a:60:91:9c:24:f4:43:
6a:53:fe:98:31:de:5c:66:6f:8f:f6:63:27:e5:66:
6a:c2:59:ab:19:36:05:49:d4:b0:d3:a8:14:10:27:
f9:d1:4b:18:62:2a:de:25:10:4a:cf:04:2a:d5:df:
f1:f7:c4:b9:90:2b:f5:45:e6:1d:a2:70:89:c5:0a:
34:28:4a:f6:dc:34:07:57:7a:2b:b9:cb:e8:28:0e:
23:05:8b:09:65:9e:9b:49:e5:31:59:8b:f7:c5:34:
b0:e1:8a:f8:ad:6f:47:99:07:ab:75:ad:10:31:0b:
39:e5:73:23:56:4d:9c:2e:f0:30:c5:dd:21:59:9b:
5d:59:97:e5:a1:2f:b6:1a:0a:c1:9a:e9:8b:82:c2:
51:cf:ff:9c:78:be:cf:63:19:0f:d4:96:6b:e5:37:
d8:6c:b5:e7:38:69:31:11:63:7e:93:3e:ba:55:83:
30:c5:d7:6c:9d:6d:0f:9f:e0:80:92:aa:fd:a2:4c:
56:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A3:52:46:84:7B:A3:97:23:57:09:04:98:CA:CA:4A:36:45:F5:E8
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/pKNSRoR7o5cjVwkEmMrKSjZF9eg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.71.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:2b:bb:c9:a3:6b:26:a2:06:3a:02:aa:38:68:54:15:9a:02:
1e:71:ed:a9:ee:73:49:d6:b4:05:30:65:69:18:18:bf:b2:93:
13:55:44:1a:9d:6b:86:10:dc:6b:98:24:f6:10:08:09:1d:a7:
83:ba:43:29:34:c4:86:52:52:ed:24:da:ad:ba:44:cf:d0:e1:
23:de:ec:a5:9d:60:9f:19:8c:30:64:de:0c:55:2a:d3:56:90:
60:f8:1a:c7:2b:e1:0e:c7:11:6e:84:76:98:e9:73:4c:65:6b:
58:e6:c5:a4:08:a9:b1:9d:f0:23:1d:29:47:d5:78:c2:bf:f2:
c3:69:1d:cc:20:ae:10:94:93:4a:64:82:a5:ad:0a:2d:44:3c:
7e:38:65:2f:61:d5:71:a2:16:86:53:29:b5:da:53:a4:bb:e1:
9f:1a:52:c5:d8:ef:0b:c5:fd:6f:e4:01:dd:40:04:cd:81:dd:
1e:ad:39:dc:20:8c:f9:1b:f6:c8:96:ef:6c:8a:66:c7:55:49:
a9:bc:e6:f9:fb:27:3d:8d:d2:49:51:54:e6:29:2f:09:e0:39:
00:b2:c3:86:e8:48:db:ca:9d:ff:91:1a:ed:43:6a:9f:c7:f0:
2a:15:00:43:a6:bf:29:7a:29:da:41:8c:fe:53:31:9d:c0:b6:
68:9a:a4:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:36 2023 by rpki-client on console-ams.rpki-client.org