Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/UFfZIJ52DqC-BQNNo-eN-JbEKrw.roa
File: UFfZIJ52DqC-BQNNo-eN-JbEKrw.roa (raw, json)
Hash identifier: +39ed2/bRbfI+JK0HNYT22/VNX6Mm7v8BUksKSUF8fM=
Subject key identifier: 50:57:D9:20:9E:76:0E:A0:BE:05:03:4D:A3:E7:8D:F8:96:C4:2A:BC
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03F15E88
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/UFfZIJ52DqC-BQNNo-eN-JbEKrw.roa
Signing time: Mon 03 Jan 2022 13:09:43 +0000
ROA not before: Mon 03 Jan 2022 13:09:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42535
IP address blocks: 85.92.124.0/22 maxlen: 22
45.80.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66150024 (0x3f15e88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 3 13:09:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5057d9209e760ea0be05034da3e78df896c42abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1d:a9:e3:a1:60:4d:a8:f9:49:e7:8a:32:28:
56:c4:32:85:ad:0f:7c:4c:9e:2e:d8:7f:39:b2:c8:
bf:9b:36:01:34:37:44:a8:92:57:16:e0:5f:45:8d:
a9:40:71:d7:93:71:71:3b:4d:f2:cd:2a:e9:00:c6:
9c:cb:00:a2:5b:7b:18:85:06:07:a7:6c:11:35:65:
44:93:df:96:ca:68:0f:b6:da:de:0e:b0:89:79:70:
c3:72:99:a5:52:78:de:c3:07:a8:f2:c0:27:e5:e0:
2e:d0:e3:7a:7e:14:29:e1:49:d2:2e:23:c3:05:12:
3c:fb:b4:8c:59:5a:7d:75:ed:bb:a9:a9:59:94:2a:
79:de:45:06:df:4a:bd:f2:58:a6:18:3b:0f:32:7a:
81:e5:8d:66:b0:68:98:8a:61:23:e1:56:07:01:06:
66:d3:5d:ad:94:2d:0d:7f:d5:42:04:88:f9:81:b1:
71:43:b7:fc:4d:32:66:94:f1:a5:ec:28:31:ae:6f:
c0:31:4e:8a:76:db:e1:73:df:39:80:95:e3:5c:46:
10:a3:be:b1:15:ca:41:98:7e:78:38:fd:5d:12:74:
e3:04:56:24:f7:59:df:2d:36:ba:8c:83:aa:ac:81:
e5:cb:ae:22:35:d0:fd:4b:3b:1b:c2:f4:d6:b8:88:
68:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:57:D9:20:9E:76:0E:A0:BE:05:03:4D:A3:E7:8D:F8:96:C4:2A:BC
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/UFfZIJ52DqC-BQNNo-eN-JbEKrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.80.0/22
85.92.124.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:4d:78:5e:eb:04:21:65:75:5c:4b:9e:bc:4c:76:25:1b:49:
3f:df:60:b1:4a:79:3e:1b:e8:23:16:c0:b2:7f:1a:58:6c:78:
d5:78:fc:5f:23:2e:84:8e:0f:c1:76:32:d9:9a:46:14:2b:e3:
fc:17:85:b0:23:22:ed:6f:3f:c0:70:aa:03:d3:9c:87:0f:dc:
9d:1f:00:ff:63:91:58:e2:3b:f8:c1:e4:e9:4e:fe:aa:2c:e3:
b9:dc:1f:a7:1f:b8:ea:4e:74:33:db:31:43:da:34:e7:2e:2e:
b5:35:06:ec:50:a5:1c:fa:f4:58:92:66:35:1f:1b:a6:a5:26:
6b:f5:eb:14:d3:c2:9b:18:04:fa:a1:09:bc:b3:88:49:a4:86:
61:8a:96:07:13:47:29:bc:93:42:f6:d5:a9:b4:9c:5f:6d:3e:
64:d6:86:75:4d:5f:0f:70:c9:f5:67:ea:e5:f5:67:a3:20:b9:
8b:57:cd:fe:7d:a3:a5:ac:3f:33:b2:d7:ca:d0:e1:6f:38:1d:
78:ea:28:67:21:5b:32:ba:f5:a3:7d:bb:13:62:85:0a:dd:a3:
8f:bd:45:aa:eb:34:30:34:53:2b:60:17:67:b2:2d:82:93:b3:
4e:0f:aa:f7:cd:d9:54:82:0c:52:2c:c4:f0:15:2b:ed:55:cc:
a9:88:c1:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org