Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/634172-bb37-4d82-88a2-942d2c6c5856/1/EQTCINseGR8IcSQNaZEQ-BoJPkM.roa
File: EQTCINseGR8IcSQNaZEQ-BoJPkM.roa (raw, json)
Hash identifier: JetSZuKYKpSwu8F2JWJm+QvrkMJaZ1zYi+eITea5DRc=
Subject key identifier: 11:04:C2:20:DB:1E:19:1F:08:71:24:0D:69:91:10:F8:1A:09:3E:43
Certificate issuer: /CN=95b980b81039581e0d2c37a51216cd79729b0c71
Certificate serial: 01857321C02DB41E00A1481371493A90EEA3
Authority key identifier: 95:B9:80:B8:10:39:58:1E:0D:2C:37:A5:12:16:CD:79:72:9B:0C:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbmAuBA5WB4NLDelEhbNeXKbDHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/634172-bb37-4d82-88a2-942d2c6c5856/1/EQTCINseGR8IcSQNaZEQ-BoJPkM.roa
Signing time: Mon 02 Jan 2023 15:37:49 +0000
ROA not before: Mon 02 Jan 2023 15:37:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21226
IP address blocks: 80.91.192.0/21 maxlen: 21
80.91.204.0/24 maxlen: 24
80.91.206.0/23 maxlen: 23
80.91.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:c0:2d:b4:1e:00:a1:48:13:71:49:3a:90:ee:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b980b81039581e0d2c37a51216cd79729b0c71
Validity
Not Before: Jan 2 15:37:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1104c220db1e191f0871240d699110f81a093e43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:52:05:53:fc:3d:75:3c:bd:06:dd:4b:f3:e2:
5b:fc:31:77:2d:fb:bc:1c:87:17:8d:8c:69:b9:9d:
c0:39:62:07:32:75:bf:64:9d:4b:d0:f7:ac:a2:8b:
6a:55:18:48:a2:c2:1e:57:67:15:a1:f2:59:db:71:
c5:7a:67:1b:60:3a:df:77:3e:e9:90:25:cb:c6:a0:
b0:53:c2:ae:74:7d:d9:bf:be:4c:d4:ec:eb:63:63:
38:bd:5f:bd:76:ea:04:c2:c1:17:61:34:27:fc:03:
a5:82:12:bb:a8:45:7d:2c:4e:ca:2c:04:a5:ad:f0:
ea:40:a2:f4:0b:bc:62:2f:06:e5:60:bb:70:89:ad:
7b:90:e1:31:4b:53:58:86:62:f1:38:35:f5:3d:80:
6f:2e:7f:dc:4e:fd:af:c7:ec:ff:e7:57:ed:d1:8d:
95:b5:ef:6e:97:88:b5:9d:b9:cc:ed:45:a1:e9:83:
8e:d0:44:49:1a:9b:83:fd:9c:e4:71:4a:6e:c3:4c:
2a:1a:06:8d:ba:09:be:4c:5f:c6:ad:16:fe:74:78:
17:45:47:17:74:75:95:0c:84:33:0e:e2:37:90:d9:
f6:0b:f1:29:4a:32:f7:6e:b0:2f:ac:6f:e1:50:16:
a8:5d:c9:09:62:e0:af:24:dc:f6:ec:46:66:8e:4f:
1e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:04:C2:20:DB:1E:19:1F:08:71:24:0D:69:91:10:F8:1A:09:3E:43
X509v3 Authority Key Identifier:
keyid:95:B9:80:B8:10:39:58:1E:0D:2C:37:A5:12:16:CD:79:72:9B:0C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbmAuBA5WB4NLDelEhbNeXKbDHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/634172-bb37-4d82-88a2-942d2c6c5856/1/EQTCINseGR8IcSQNaZEQ-BoJPkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/634172-bb37-4d82-88a2-942d2c6c5856/1/lbmAuBA5WB4NLDelEhbNeXKbDHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.192.0-80.91.204.255
80.91.206.0/23
Signature Algorithm: sha256WithRSAEncryption
27:1e:57:55:32:93:1d:0e:03:8a:a6:80:4c:d1:ea:cb:bb:c3:
48:55:63:bc:ed:e9:01:12:3a:02:35:04:57:c2:8c:8a:a8:31:
69:2a:aa:10:a0:36:2d:65:21:63:08:1f:28:3d:cf:3a:2f:67:
96:6d:29:a0:39:a2:a0:14:32:29:c4:13:7b:78:96:05:07:e2:
4f:76:57:10:fc:a4:7a:c3:ad:53:5d:2c:9e:3f:64:1e:1e:31:
4d:7a:bc:8c:a0:d6:3e:c4:b4:a0:3f:c1:0b:39:e6:44:37:8c:
ba:1f:a9:4b:29:d7:55:64:4e:f7:f2:51:45:98:55:15:a0:25:
6e:e9:b5:33:20:ca:c3:05:89:6c:24:42:24:50:fb:65:3e:e1:
80:2d:9a:7e:ee:d7:67:e8:0b:a1:28:d9:bf:3b:7c:b8:0e:2d:
8c:be:11:e3:2a:96:20:51:54:ee:78:ab:2d:24:06:28:53:90:
41:6a:bd:21:12:87:04:91:52:a5:23:68:01:99:9d:f9:db:3e:
a8:97:4e:8d:aa:f4:fe:ad:69:0c:73:5d:4f:b1:2b:37:75:0b:
04:b9:c5:1a:b1:b7:55:e2:77:a6:45:9f:0e:1e:0a:99:d2:f8:
a6:10:cc:ac:c1:3e:ab:27:c6:8a:7f:d7:e7:07:34:07:0a:b9:
35:87:70:8e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:44 2025 by rpki-client