Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c2d399-4ae9-4431-9161-58efa0bee084/1/yMzU82X522-WxsQnv4yGbTnSC9o.roa
File: yMzU82X522-WxsQnv4yGbTnSC9o.roa (raw, json)
Hash identifier: IzUN77PI1puGmugWQylab1BdoyxNpAPNNr39Oh5dhdo=
Subject key identifier: C8:CC:D4:F3:65:F9:DB:6F:96:C6:C4:27:BF:8C:86:6D:39:D2:0B:DA
Certificate issuer: /CN=12c603666719e979bef0921451a2ec264ed01209
Certificate serial: 082CDBAA
Authority key identifier: 12:C6:03:66:67:19:E9:79:BE:F0:92:14:51:A2:EC:26:4E:D0:12:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsYDZmcZ6Xm-8JIUUaLsJk7QEgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c2d399-4ae9-4431-9161-58efa0bee084/1/yMzU82X522-WxsQnv4yGbTnSC9o.roa
Signing time: Sat 01 Jan 2022 11:05:01 +0000
ROA not before: Sat 01 Jan 2022 11:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16296
IP address blocks: 80.241.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137157546 (0x82cdbaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c603666719e979bef0921451a2ec264ed01209
Validity
Not Before: Jan 1 11:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8ccd4f365f9db6f96c6c427bf8c866d39d20bda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:77:7d:6b:a8:40:6e:14:89:45:46:44:6e:59:
d1:61:d9:95:98:b4:3b:5d:6a:e0:2a:14:9b:33:83:
ad:f3:25:0d:8d:ef:44:ab:33:89:ae:55:12:d4:c9:
06:1b:d1:55:33:8b:0d:ca:88:08:52:91:15:3c:97:
1b:e5:9d:d1:d1:39:c3:21:e9:1d:fb:fb:7c:ec:7e:
2d:e8:7e:6b:94:a6:3d:fb:65:65:f0:e6:84:1e:67:
f9:f3:fc:d9:d9:6e:eb:c8:08:3d:90:d4:ad:05:5a:
ec:d9:57:ad:96:10:39:97:b0:53:f5:87:ab:8f:6e:
19:92:d0:5b:b9:f9:12:ea:a2:aa:42:dd:f0:c0:36:
2b:00:6b:f6:40:dc:78:79:01:79:04:02:0d:b1:de:
7e:ae:4f:30:2a:16:b2:85:75:1a:9b:1e:17:ab:fa:
68:f0:f8:72:e4:3c:bd:36:15:3d:1d:a4:ab:bc:85:
24:ac:85:64:11:4a:8e:8f:82:23:c2:c3:8e:27:ef:
5b:47:9a:90:3c:f2:32:a0:bc:e8:67:4f:b0:d5:58:
70:10:84:fa:29:d0:88:56:83:a7:30:e4:9e:a9:86:
8b:c8:86:bf:be:8c:29:24:60:83:db:52:59:ec:fc:
91:19:8d:3b:c7:4b:29:37:de:56:f5:fd:ab:ac:a4:
41:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:CC:D4:F3:65:F9:DB:6F:96:C6:C4:27:BF:8C:86:6D:39:D2:0B:DA
X509v3 Authority Key Identifier:
keyid:12:C6:03:66:67:19:E9:79:BE:F0:92:14:51:A2:EC:26:4E:D0:12:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsYDZmcZ6Xm-8JIUUaLsJk7QEgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c2d399-4ae9-4431-9161-58efa0bee084/1/yMzU82X522-WxsQnv4yGbTnSC9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c2d399-4ae9-4431-9161-58efa0bee084/1/EsYDZmcZ6Xm-8JIUUaLsJk7QEgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.241.128.0/21
Signature Algorithm: sha256WithRSAEncryption
5b:f9:e9:ac:0d:2e:64:3c:fc:8c:ea:1f:7a:59:f5:cc:ee:75:
14:74:01:ea:df:ca:7d:d9:66:bf:de:18:42:db:04:5c:7a:ad:
f5:f9:e3:46:b0:47:2d:67:85:6e:13:c5:d0:0f:bc:ea:11:30:
97:e3:ae:34:46:21:98:01:0b:65:a6:c3:91:f0:08:56:a3:42:
3b:f1:3e:75:f8:62:e6:54:60:b2:f4:59:f4:7c:06:c7:9b:34:
b8:b7:78:39:22:49:07:a9:f7:6a:05:0c:95:af:72:23:e6:72:
6a:f4:78:6b:13:3c:8f:9b:e8:ae:5f:51:90:f7:c1:8e:34:f7:
d9:63:f5:f0:9c:f0:7f:b0:e7:0e:de:a3:2e:dd:07:7a:ff:f9:
50:6a:a2:2b:a9:24:e4:d1:a9:15:2e:5a:d5:49:93:ee:86:29:
22:c5:52:91:59:77:cc:11:b5:15:d6:82:47:01:7b:c8:75:31:
77:cb:4e:54:ef:3f:91:e9:18:46:ff:cf:b5:be:ba:c3:af:56:
9c:61:5a:82:e6:51:b2:cf:71:ab:31:e3:3c:50:20:ad:66:e3:
94:95:52:e5:a9:67:2b:25:db:7c:d6:3a:1f:ba:c6:9a:5b:04:
b3:5d:bd:dd:56:cf:f6:f9:30:e9:8d:11:e6:af:70:7a:1c:7b:
19:ca:59:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-fra.rpki-client.org