Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/tA1Wa4Vj09uhYblYxhalK9k4vvk.roa
File: tA1Wa4Vj09uhYblYxhalK9k4vvk.roa (raw, json)
Hash identifier: dMGivOmCe+xIogenR7ZJVknXEjrPDvSbwK0Rj703kj8=
Subject key identifier: B4:0D:56:6B:85:63:D3:DB:A1:61:B9:58:C6:16:A5:2B:D9:38:BE:F9
Certificate issuer: /CN=dbe0ca7c1e0e8a1c7ad02d0bb828b41188ae5243
Certificate serial: 0184971043920FC1C4A1B7A36DACFBB4CBEA
Authority key identifier: DB:E0:CA:7C:1E:0E:8A:1C:7A:D0:2D:0B:B8:28:B4:11:88:AE:52:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-DKfB4Oihx60C0LuCi0EYiuUkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/tA1Wa4Vj09uhYblYxhalK9k4vvk.roa
Signing time: Sun 20 Nov 2022 22:02:16 +0000
ROA not before: Sun 20 Nov 2022 22:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34026
IP address blocks: 80.93.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:97:10:43:92:0f:c1:c4:a1:b7:a3:6d:ac:fb:b4:cb:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe0ca7c1e0e8a1c7ad02d0bb828b41188ae5243
Validity
Not Before: Nov 20 22:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b40d566b8563d3dba161b958c616a52bd938bef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e6:a1:97:5f:59:19:2f:56:8f:88:76:9c:8e:
ce:70:18:b2:d1:84:c8:83:9e:c6:e1:39:79:5c:3b:
4a:58:20:06:59:da:73:4c:c9:a0:22:e4:2d:d0:0a:
72:7d:15:30:ec:d8:ae:18:5c:78:b8:26:dc:80:98:
4a:d5:df:68:93:b2:e4:59:43:62:96:75:18:22:88:
7e:05:8d:32:ad:b8:4c:0b:2e:6c:70:4e:90:cf:35:
fc:b8:61:0d:b7:8a:41:50:42:bf:b2:d1:f0:07:2c:
00:a9:5c:38:5a:ae:7a:76:b2:59:ff:53:ce:a6:38:
8e:86:3f:98:15:f9:e5:fe:e4:5c:9a:1f:f2:7e:c0:
35:8c:9b:0d:90:b4:8c:93:5b:c9:fc:0b:9e:0f:83:
c2:d2:9a:f0:c9:ba:8a:d4:bb:3f:a4:e5:f3:fd:a2:
71:91:c6:2d:e0:cc:b6:c7:6f:d4:b3:b0:78:d7:f1:
48:93:03:6c:40:51:67:ff:28:00:2a:79:42:2b:a7:
08:86:d0:2f:3e:0b:f7:3a:3b:01:fd:a8:0e:79:10:
f9:ee:69:92:a2:d3:9b:c4:3e:0c:e1:45:f4:b7:bf:
11:d6:03:20:48:88:7c:55:21:4f:a2:c8:14:6b:1c:
70:a5:60:5d:4b:66:17:bf:08:23:64:c7:3a:09:a3:
77:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0D:56:6B:85:63:D3:DB:A1:61:B9:58:C6:16:A5:2B:D9:38:BE:F9
X509v3 Authority Key Identifier:
keyid:DB:E0:CA:7C:1E:0E:8A:1C:7A:D0:2D:0B:B8:28:B4:11:88:AE:52:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-DKfB4Oihx60C0LuCi0EYiuUkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/tA1Wa4Vj09uhYblYxhalK9k4vvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f3c8e8-c5bc-4211-a9ac-4f9112ede968/1/2-DKfB4Oihx60C0LuCi0EYiuUkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.170.0/24
Signature Algorithm: sha256WithRSAEncryption
60:94:d2:ab:dc:23:03:ba:c7:81:26:c7:4d:ac:a9:c1:c1:25:
af:ef:47:96:7b:53:ab:dd:13:0c:97:63:de:11:79:1d:fa:59:
9a:92:9d:7e:e5:a2:90:c8:8d:a8:32:58:1d:72:d4:cb:4c:91:
48:98:e3:72:20:ac:f4:df:3f:e9:e7:d3:38:91:a3:6c:22:a2:
e0:47:68:94:7d:f2:87:82:40:27:97:b3:a2:c1:af:59:99:fc:
c4:96:a0:6e:80:7e:35:d3:47:cb:d6:fe:4c:fc:fd:09:5c:ad:
36:87:c4:6d:4c:71:73:2b:26:b0:be:e0:d4:d0:2c:0c:c7:9a:
a1:c3:a3:72:a5:88:70:b8:0e:c3:11:8a:32:6d:16:b5:0d:09:
42:ac:c5:0f:7b:d0:6c:65:31:5e:38:57:cd:7f:61:d2:e8:5d:
e7:55:c1:9e:60:90:cc:7d:08:4a:8f:01:8b:47:f7:d8:d2:ca:
a0:eb:c2:bd:34:5f:9e:52:2d:9d:23:18:82:d1:7f:99:48:f1:
56:a4:f9:f4:4d:26:1e:b5:fc:00:fd:06:3c:d8:70:6b:9c:10:
f2:0c:6c:02:23:7c:f5:44:08:3d:ed:9d:11:97:69:47:c5:5b:
db:49:6e:17:d6:ef:9b:18:6a:30:0b:ae:6c:f1:bc:95:8d:1f:
e6:2d:c0:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:32 2025 by rpki-client