Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/hQdtYJ9u8VMj3BqIffppqyLcrek.roa
File: hQdtYJ9u8VMj3BqIffppqyLcrek.roa (raw, json)
Hash identifier: 5sRsGm+ZMQq2T8HNlXvEhmIWvNWq0N4A5fMaCDwlYA0=
Subject key identifier: 85:07:6D:60:9F:6E:F1:53:23:DC:1A:88:7D:FA:69:AB:22:DC:AD:E9
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 35A78206
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/hQdtYJ9u8VMj3BqIffppqyLcrek.roa
Signing time: Sat 01 Jan 2022 08:54:59 +0000
ROA not before: Sat 01 Jan 2022 08:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202935
IP address blocks: 80.73.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900170246 (0x35a78206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85076d609f6ef15323dc1a887dfa69ab22dcade9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7b:03:8f:76:9d:a8:44:90:9d:d8:d6:71:da:
43:b2:b1:45:50:f3:19:43:22:dc:a3:01:cf:59:46:
69:2e:92:ca:35:db:57:d4:bc:23:56:a0:e6:dd:5b:
a6:44:2d:bc:34:32:eb:15:23:f5:a9:02:9f:8c:8a:
b1:49:7c:29:7a:63:4b:b9:83:17:84:f3:0d:09:3d:
68:4f:ec:46:c7:e4:19:e3:20:d6:08:46:f6:80:5a:
be:50:ae:4b:90:d9:d5:27:23:bc:31:0e:82:32:58:
37:26:67:b1:74:47:96:33:a9:7a:6f:30:bd:0f:b5:
ad:39:77:84:1f:2c:3b:b4:ad:11:20:b5:ad:06:73:
65:98:ce:f4:97:9d:d0:c6:1c:14:84:e6:eb:0d:78:
e7:06:ad:b5:bb:11:4f:ff:3d:9c:df:34:66:c7:f8:
78:7d:b5:b7:f5:59:61:1b:6c:4a:f1:cf:45:9e:63:
cd:1c:ec:06:4f:19:bc:fa:70:ba:e1:16:32:3b:c0:
6c:76:93:4c:e9:71:d0:c7:37:13:f8:d1:b2:27:fa:
3c:76:d7:43:b7:fa:ab:43:03:89:c2:af:0e:7f:22:
90:69:fe:f9:18:dc:6b:57:a8:41:b8:b6:12:74:78:
b5:91:06:77:4f:e3:b3:4c:37:3c:2d:66:f6:1b:18:
e7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:07:6D:60:9F:6E:F1:53:23:DC:1A:88:7D:FA:69:AB:22:DC:AD:E9
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/hQdtYJ9u8VMj3BqIffppqyLcrek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.193.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:c3:76:7f:16:a1:44:01:bd:c8:4a:bb:54:e9:01:44:c8:e7:
e9:d8:0d:36:8b:b6:76:04:f2:e8:6d:a1:53:b1:4f:c4:8d:ba:
94:9a:c8:c9:50:ba:ae:5c:84:a5:bb:59:2e:f2:df:1f:d9:7e:
3b:4c:5b:90:44:13:cd:60:ab:7c:98:94:cf:d0:1b:f1:4c:1a:
37:09:83:6c:82:d9:0e:7d:1e:c2:dc:c8:83:b5:0e:6c:48:93:
77:41:60:82:f0:8d:e1:e4:d1:a0:4d:13:03:c7:3b:56:bf:51:
60:3a:b0:22:9e:95:24:e6:16:30:1c:9a:4f:b3:9b:18:ea:b9:
31:c8:73:c8:3c:7e:e3:6d:12:87:83:2f:e1:3f:6f:dd:51:c8:
6d:e3:73:85:64:a6:f0:8a:4a:2d:ca:ac:d6:ee:5d:8c:a8:c8:
81:ff:ab:ef:be:dc:ab:57:d1:11:3a:bd:ed:60:66:2f:4e:0c:
ac:ec:e1:9d:91:05:04:8a:94:c0:31:b3:b2:76:b1:0f:da:b2:
ce:71:77:39:71:f8:a0:24:00:5c:51:5f:8c:fc:ff:e0:30:83:
37:e8:c0:a0:a5:70:09:d3:c1:51:56:37:9b:e0:cb:b7:6e:12:
bd:14:05:1b:e6:6f:d5:71:ca:fb:a2:e8:20:b6:9c:f1:21:c7:
e1:01:15:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:23 2025 by rpki-client