Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3eHZo1SmADz47knu0dfkmOfJGIw.roa
File: 3eHZo1SmADz47knu0dfkmOfJGIw.roa (raw, json)
Hash identifier: 3A1ZRLiSbYmZNjn5aXd1gx4IIiKQALgYlaEQf4iMUF0=
Subject key identifier: DD:E1:D9:A3:54:A6:00:3C:F8:EE:49:EE:D1:D7:E4:98:E7:C9:18:8C
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01844265AB136F0609A4DCEA071B3CDA1C52
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3eHZo1SmADz47knu0dfkmOfJGIw.roa
Signing time: Fri 04 Nov 2022 11:27:49 +0000
ROA not before: Fri 04 Nov 2022 11:27:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209235
IP address blocks: 45.80.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:42:65:ab:13:6f:06:09:a4:dc:ea:07:1b:3c:da:1c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Nov 4 11:27:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dde1d9a354a6003cf8ee49eed1d7e498e7c9188c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:44:a8:b0:63:b3:1c:76:f8:a6:67:5a:28:19:
b8:69:c4:ca:c7:9a:7c:4b:99:80:8a:b0:de:e5:bc:
3a:7a:5a:b7:24:65:d7:a4:27:c7:1c:75:27:24:f6:
16:54:c7:5c:f6:b7:e5:56:28:2d:06:16:f2:7a:10:
f1:2e:e5:3a:b6:79:86:14:d5:50:20:ae:7e:93:74:
49:4a:d2:52:a9:5c:f0:67:4a:dc:a5:3d:93:00:44:
a6:14:a9:fb:4e:ab:bc:d3:10:2e:24:1c:50:e6:d9:
62:bc:cd:70:83:d0:3b:a9:dc:76:b7:25:62:f2:6c:
6d:b8:2a:c1:22:e5:90:c7:0b:71:2a:21:f7:f0:b4:
2a:f1:2c:b6:7a:83:65:2c:db:ca:62:ed:11:59:89:
e1:bb:f8:17:19:a5:da:ce:13:35:79:4b:05:fa:93:
73:eb:1a:4b:f0:c9:22:85:2b:a6:db:1f:31:11:62:
2e:14:d0:1a:49:e3:1e:b3:cb:34:df:8d:2a:c9:68:
c4:0c:84:52:20:84:42:7d:97:b0:0f:08:69:21:3a:
95:f3:73:4b:4c:1b:28:2d:e2:e0:d0:9b:93:ff:00:
11:8c:9b:64:d5:bb:07:4f:b1:ce:77:9b:11:45:a1:
ab:91:a6:27:f4:a0:99:14:ed:6c:52:bf:f1:16:7a:
9a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E1:D9:A3:54:A6:00:3C:F8:EE:49:EE:D1:D7:E4:98:E7:C9:18:8C
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3eHZo1SmADz47knu0dfkmOfJGIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.80.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:2d:4e:58:2f:c3:61:0f:11:13:dd:ef:a7:8e:87:f6:83:aa:
63:ab:90:ee:0e:d5:d6:f5:88:ac:3c:90:c8:5b:e5:ed:31:3a:
48:bf:fe:24:ab:bd:a0:52:1f:80:de:7d:cb:44:5d:ee:0b:9d:
a4:3f:5c:40:80:df:32:13:78:4c:6b:6d:da:75:66:c2:48:17:
d1:6c:e2:d9:0b:01:1f:7d:8f:33:6b:96:13:55:d2:d3:b1:9a:
a7:fb:95:bc:0b:35:4f:53:a0:bb:c7:c6:b8:ca:96:28:a9:3e:
49:d0:36:62:2e:bd:f2:35:f3:78:df:93:bd:a2:b7:e4:b3:02:
b0:18:2b:6b:3b:a8:21:c5:be:65:7e:da:16:bb:b5:d3:b7:4a:
c9:af:93:cc:90:44:00:88:ff:98:ce:1f:81:b9:6c:02:c0:9a:
d1:f2:66:f3:e4:59:ad:02:9e:86:bd:22:42:36:56:f2:34:45:
94:18:65:e6:8e:cf:2e:5c:6f:31:40:0f:78:d1:c6:13:19:5f:
b8:89:32:0b:f5:b8:3e:44:54:25:92:49:f6:b4:8d:c0:80:0b:
f9:f2:15:65:51:3b:b1:a2:82:0e:e5:d6:ad:e7:33:ea:85:ec:
44:59:5d:d0:92:de:20:96:25:14:15:a5:d3:81:99:be:32:88:
3e:e4:41:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org