Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/yfGI8hPV_MtU-R7BC66J2lZ1pEM.roa
File: yfGI8hPV_MtU-R7BC66J2lZ1pEM.roa (raw, json)
Hash identifier: xAaGLb9lwye1vFyRcHarP9JevKx0HwDGUWiyRkygFO8=
Subject key identifier: C9:F1:88:F2:13:D5:FC:CB:54:F9:1E:C1:0B:AE:89:DA:56:75:A4:43
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 0580DDCF
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/yfGI8hPV_MtU-R7BC66J2lZ1pEM.roa
Signing time: Mon 04 Apr 2022 05:40:22 +0000
ROA not before: Mon 04 Apr 2022 05:40:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209559
IP address blocks: 80.66.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92331471 (0x580ddcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Apr 4 05:40:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9f188f213d5fccb54f91ec10bae89da5675a443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5a:d1:a3:23:99:54:c3:59:3e:e9:52:b5:52:
55:55:d1:5d:9a:d2:b4:90:a0:eb:19:a1:a0:ca:76:
f2:b5:50:f7:65:11:ff:17:fb:be:19:41:97:1c:76:
50:5d:57:50:8b:e0:cf:6b:6b:10:03:b5:71:4e:f3:
84:8d:b4:37:d6:74:1a:06:65:cf:2a:b7:79:b1:d8:
7e:7f:63:63:9e:65:18:94:17:c8:cb:54:ed:53:3a:
15:e5:85:b2:0c:77:32:31:ac:bb:db:75:3b:40:a1:
5a:1b:70:bb:98:6d:19:d2:ce:ee:b1:e9:26:68:af:
8c:84:6f:6b:e3:ef:af:7b:cd:15:9c:10:2c:e3:63:
93:59:60:90:7e:fb:18:b3:bd:11:c5:27:c4:ec:80:
18:ad:13:f4:16:62:c8:fa:77:39:43:07:dd:d0:e0:
95:23:f9:a1:11:e7:ec:63:68:3b:b0:3d:53:a9:86:
cc:d8:1b:1d:2c:2c:88:9a:b0:90:0b:9d:cd:77:1a:
f6:cb:9e:8f:ae:c0:47:61:dc:ad:6b:3a:35:40:d1:
00:79:89:32:d7:d7:3d:fa:a2:94:28:ad:0d:ad:00:
5b:c7:8a:ad:2c:82:14:40:f1:6c:74:9d:90:d8:25:
7d:a4:5a:d0:57:94:10:6b:e0:87:da:69:da:71:4d:
52:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F1:88:F2:13:D5:FC:CB:54:F9:1E:C1:0B:AE:89:DA:56:75:A4:43
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/yfGI8hPV_MtU-R7BC66J2lZ1pEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.83.0/24
Signature Algorithm: sha256WithRSAEncryption
76:3a:b7:f7:cb:bc:08:28:1d:2b:6d:4d:2e:d8:e6:a5:77:91:
a8:6c:3c:96:a2:1f:99:f6:54:58:d2:63:ed:9c:25:a8:e8:01:
88:8b:d3:46:bc:51:27:12:65:6c:a5:09:f8:cf:f8:c1:cb:b3:
3a:70:f8:9a:fc:3b:2d:a9:ac:99:cb:ce:fc:1d:48:6f:c7:cb:
d7:db:8b:07:f2:d2:ea:be:f4:09:46:a7:44:c3:5c:23:bd:c1:
d6:2d:ed:10:7f:e2:23:18:82:b4:72:10:4c:12:10:e7:fe:f9:
95:15:d1:2c:1c:81:3a:b6:93:06:79:fe:a2:26:44:8d:55:8e:
09:80:ff:9b:bd:72:81:dc:75:d9:4f:75:23:d7:12:a0:24:bd:
06:73:00:92:90:3c:20:e8:ec:ec:0c:65:b7:ee:42:2b:6d:57:
a4:c9:46:e3:93:1b:95:84:b0:16:8d:33:0a:28:85:08:7a:41:
55:0e:69:f4:73:66:31:11:4f:92:43:09:a0:50:35:c1:ec:16:
77:74:3a:58:1c:4a:2f:7b:4b:6f:23:ca:9a:f5:c0:c4:86:c8:
3f:8c:27:ed:89:c6:cb:57:93:e1:24:0c:78:10:60:c8:82:32:
0e:93:d0:86:0b:70:d7:a5:89:b9:73:ce:9f:6f:28:6b:90:19:
04:5c:00:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:38 2024 by rpki-client on console-fra.rpki-client.org