Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/169a3b-6a73-49ec-affa-ed0a7aba8cb2/1/2aenTyxsDrbHooaeLUpzX2buxVA.roa
File: 2aenTyxsDrbHooaeLUpzX2buxVA.roa (raw, json)
Hash identifier: S6jrySmprAQt9W2/N8K4Pa35IqIzI+NywDG+bJyu3H8=
Subject key identifier: D9:A7:A7:4F:2C:6C:0E:B6:C7:A2:86:9E:2D:4A:73:5F:66:EE:C5:50
Certificate issuer: /CN=4aefb99d2a06ee99dea9566f16bf226db3e56c92
Certificate serial: 19A25F9F
Authority key identifier: 4A:EF:B9:9D:2A:06:EE:99:DE:A9:56:6F:16:BF:22:6D:B3:E5:6C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su-5nSoG7pneqVZvFr8ibbPlbJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/169a3b-6a73-49ec-affa-ed0a7aba8cb2/1/2aenTyxsDrbHooaeLUpzX2buxVA.roa
Signing time: Sat 01 Jan 2022 15:06:04 +0000
ROA not before: Sat 01 Jan 2022 15:06:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20953
IP address blocks: 80.79.192.0/20 maxlen: 20
2a02:1d8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430071711 (0x19a25f9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aefb99d2a06ee99dea9566f16bf226db3e56c92
Validity
Not Before: Jan 1 15:06:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9a7a74f2c6c0eb6c7a2869e2d4a735f66eec550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d8:07:89:6d:86:73:9a:67:b0:af:5b:8e:fb:
6a:b8:2b:c3:51:48:d4:2c:87:df:c4:65:5d:45:03:
26:e2:bb:2b:2c:1e:10:7f:ce:b4:e9:40:c7:34:03:
f1:af:c4:b1:90:6c:2b:6c:21:69:10:38:af:7e:52:
f9:20:00:6c:f7:89:07:8b:6b:5b:2f:f5:ce:1f:22:
e3:bb:16:93:87:2a:26:02:df:bb:93:bc:6d:68:a8:
db:24:59:74:66:2a:e3:41:2d:1e:41:50:d3:7e:4e:
c0:69:d1:2a:41:62:57:2a:eb:49:fd:bd:25:6e:d0:
e5:73:05:d9:98:16:13:35:bc:3b:fb:bb:7f:11:90:
1d:c4:3e:d7:8e:91:40:da:4d:eb:8a:32:fb:cb:d7:
26:72:f1:6b:5c:f0:3c:d7:b8:ec:61:47:2f:60:fd:
bf:b9:dd:9f:bc:ca:a1:ab:f4:27:9c:87:e0:21:5f:
2b:88:ed:1d:5c:c9:3d:28:08:07:62:52:39:59:89:
de:f8:d4:6f:49:2a:01:0a:83:d2:2b:71:48:0e:ec:
c8:95:f8:92:5e:d7:44:67:14:e7:25:c1:34:16:d5:
b2:32:7b:e0:cb:0d:e1:56:ae:06:c7:0f:31:6c:c4:
76:16:51:65:4f:ba:58:15:ab:4a:a6:7e:58:8e:0d:
c8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A7:A7:4F:2C:6C:0E:B6:C7:A2:86:9E:2D:4A:73:5F:66:EE:C5:50
X509v3 Authority Key Identifier:
keyid:4A:EF:B9:9D:2A:06:EE:99:DE:A9:56:6F:16:BF:22:6D:B3:E5:6C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-5nSoG7pneqVZvFr8ibbPlbJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/169a3b-6a73-49ec-affa-ed0a7aba8cb2/1/2aenTyxsDrbHooaeLUpzX2buxVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/169a3b-6a73-49ec-affa-ed0a7aba8cb2/1/Su-5nSoG7pneqVZvFr8ibbPlbJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.79.192.0/20
IPv6:
2a02:1d8::/32
Signature Algorithm: sha256WithRSAEncryption
8c:42:dc:8d:2d:67:2d:34:cf:e3:e7:ed:87:98:3f:6f:46:9b:
af:54:34:9c:3d:a0:42:93:c1:6e:d0:fa:b1:c8:b4:11:2f:ca:
3c:30:b6:1d:c7:cc:ed:3e:4a:f7:75:16:c8:d4:b3:b1:f5:2d:
05:84:5b:3b:42:74:3a:a8:8b:12:cc:72:69:4e:51:26:72:e3:
b4:20:80:fe:4a:80:85:be:d3:78:68:42:d3:41:f5:b8:4e:bc:
f8:04:f0:1b:50:ff:1b:2a:8b:8c:9f:82:d1:ca:3f:c4:0e:6e:
92:d3:0c:32:79:f4:ff:ed:b8:b0:15:aa:82:fd:e3:a5:7c:b9:
ed:f1:7f:4c:59:75:35:55:98:0c:92:58:4e:5f:e3:15:6e:da:
9b:34:ea:31:67:55:08:e6:ed:a2:e8:ba:62:12:9b:8e:5c:0a:
00:52:7b:35:8b:24:cf:ac:c7:ca:fc:88:4e:17:ab:8a:dc:79:
52:df:64:2e:07:9d:f7:14:f5:f9:56:a9:35:3d:84:c8:65:e4:
35:b5:3c:40:98:5e:b1:57:31:84:15:0c:9b:ed:69:d2:52:13:
de:a0:99:5d:f2:fb:93:cb:68:ed:81:0d:ea:87:a9:7f:03:12:
4d:70:ad:17:5f:99:4f:da:e4:a2:4b:21:1c:de:dc:da:af:27:
2d:29:2b:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:33 2023 by rpki-client on console-ams.rpki-client.org