Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/sNufL2j8d66Sei7XFcqBKjYgQK0.roa
File: sNufL2j8d66Sei7XFcqBKjYgQK0.roa (raw, json)
Hash identifier: sG4RuOe8iVWCBytLsrjyyXuMwF4AnX8+5Pxn1m0GIYc=
Subject key identifier: B0:DB:9F:2F:68:FC:77:AE:92:7A:2E:D7:15:CA:81:2A:36:20:40:AD
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 04993ECC
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/sNufL2j8d66Sei7XFcqBKjYgQK0.roa
Signing time: Sat 01 Jan 2022 15:04:28 +0000
ROA not before: Sat 01 Jan 2022 15:04:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44587
IP address blocks: 80.66.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77151948 (0x4993ecc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 1 15:04:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0db9f2f68fc77ae927a2ed715ca812a362040ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:75:a7:bb:17:a6:32:94:98:4b:eb:24:c0:6f:
a6:71:1c:44:1a:a3:aa:92:97:73:12:a8:b3:27:f6:
0a:da:51:67:d1:ee:53:49:58:e7:4b:a0:b5:0b:7d:
6a:c4:f0:f4:75:53:20:c6:92:23:df:c7:5d:a2:3d:
0c:da:e6:6a:c6:0b:2d:5d:18:60:97:28:27:f0:e2:
bf:78:cd:48:f7:ae:77:c2:bb:e1:b0:07:b4:a9:2f:
d6:85:60:45:d5:98:3e:c3:4c:24:83:f5:60:5f:a0:
b1:0b:70:2b:f6:e7:9d:31:af:af:e8:a9:80:93:68:
6c:07:d9:16:df:4c:ef:89:7d:0a:2a:f6:46:0f:ef:
6d:12:5a:d8:48:2e:cf:51:46:c7:aa:de:b7:b3:60:
d9:aa:a0:fa:3a:e9:2f:0f:93:3c:d7:4d:b7:c7:64:
b4:7e:07:9e:f0:2d:12:1d:2b:67:4a:65:b8:63:ce:
7a:6b:b0:29:45:2b:c4:6d:3f:43:7d:b2:46:5b:40:
8c:46:a1:81:dc:10:f3:f0:a4:0c:84:d2:1d:b0:ad:
75:21:d0:fc:e7:24:62:13:15:d9:6d:18:17:2d:de:
18:f2:7c:da:fb:68:69:c5:cc:a4:f6:f8:fe:40:2b:
f9:42:53:2c:7b:b6:1e:e3:1e:08:6c:f3:6c:2a:1d:
67:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DB:9F:2F:68:FC:77:AE:92:7A:2E:D7:15:CA:81:2A:36:20:40:AD
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/sNufL2j8d66Sei7XFcqBKjYgQK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.89.0/24
Signature Algorithm: sha256WithRSAEncryption
21:8d:87:74:bb:2b:79:ab:6b:61:94:61:3e:2c:e3:84:b4:90:
59:89:24:ce:a4:b5:cb:1c:cc:68:ad:1d:bc:ce:64:75:31:47:
41:06:70:00:fd:61:76:6b:80:dd:c4:9e:6c:dd:56:a7:d7:e4:
af:ca:c4:09:e0:28:ee:5c:8c:0b:bd:ae:de:14:eb:b3:dc:75:
49:b1:f8:59:12:dd:e2:37:5d:30:a8:35:ec:f3:39:58:46:21:
a3:91:28:7a:cf:f0:11:54:85:97:49:27:0f:4a:2c:c5:d3:f2:
ec:e8:45:be:2d:58:d1:4b:af:cd:cf:cc:38:3a:39:72:04:5b:
71:f3:25:5d:10:89:eb:2e:0a:68:9e:43:cb:8a:cf:dc:92:c7:
08:02:a3:6f:b7:55:6f:2a:06:ec:6b:80:bf:53:b7:bb:d4:bf:
1b:38:0e:76:00:7f:2d:fb:1e:f7:c9:a2:86:84:9f:6a:a6:b5:
c1:5c:a9:a3:ce:fc:04:1c:90:e4:91:4a:2b:39:9f:b3:7a:ff:
f3:26:30:1f:45:c9:ae:57:44:28:00:a3:26:1a:c0:9c:3b:65:
ce:07:aa:69:6d:eb:5b:6f:43:0f:19:6d:8c:97:e9:d3:2e:ae:
2a:17:e1:1d:37:a3:2e:8f:3e:67:0e:71:c7:2e:9c:4b:0c:8d:
cc:45:88:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:53 2023 by rpki-client on console-fra.rpki-client.org