Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/hfKmmdwKuzQDVIV-aLLkxRHfIKk.roa
File: hfKmmdwKuzQDVIV-aLLkxRHfIKk.roa (raw, json)
Hash identifier: ruTqhdaqgT3QjZ/DVNhalXONkbvECx2jTLA3mMnDD1E=
Subject key identifier: 85:F2:A6:99:DC:0A:BB:34:03:54:85:7E:68:B2:E4:C5:11:DF:20:A9
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 35A597EA
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/hfKmmdwKuzQDVIV-aLLkxRHfIKk.roa
Signing time: Sat 01 Jan 2022 08:54:57 +0000
ROA not before: Sat 01 Jan 2022 08:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57631
IP address blocks: 80.79.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900044778 (0x35a597ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85f2a699dc0abb340354857e68b2e4c511df20a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:00:1d:f3:81:25:2c:47:cc:ce:f3:50:ef:4a:
14:09:4b:39:27:39:a1:c3:ec:d7:a1:41:41:a4:91:
ef:cd:04:f3:34:df:f4:8e:6c:8e:4e:3a:76:50:40:
1f:10:c5:43:db:4a:bd:46:9c:80:6f:38:ca:bb:66:
fd:74:94:c8:c4:dc:9e:1f:c8:44:ef:d2:18:94:2b:
6a:ee:8a:2c:fe:75:d0:a0:02:25:79:be:2f:5f:77:
5c:72:e4:e4:a0:88:61:c7:de:eb:87:81:f5:46:bc:
ee:76:2c:57:57:91:58:37:bc:e8:96:b6:2f:f2:01:
71:15:06:cc:92:ee:a2:67:6c:b0:93:36:18:ae:0d:
93:c6:72:5e:f4:e2:ca:00:b2:7e:32:4b:8a:fe:af:
dc:61:24:c7:c9:84:36:52:7a:f0:e9:bf:c7:51:87:
69:22:64:3a:c1:e9:ef:10:79:05:1e:ab:42:88:c6:
4b:8b:27:dd:e3:a8:66:36:17:5b:5f:5d:b8:9d:45:
36:68:63:78:8e:09:25:65:c8:91:5b:79:81:65:6e:
60:22:56:eb:e2:96:bd:96:ed:63:f2:a7:62:d6:17:
53:96:b5:8b:c0:f3:42:e8:4f:cd:f6:fa:23:26:57:
78:cc:dd:e4:f4:70:07:f0:1a:b2:83:f4:04:49:eb:
8d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F2:A6:99:DC:0A:BB:34:03:54:85:7E:68:B2:E4:C5:11:DF:20:A9
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/hfKmmdwKuzQDVIV-aLLkxRHfIKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.79.254.0/23
Signature Algorithm: sha256WithRSAEncryption
63:bf:ea:8f:ec:1f:20:26:0c:fb:5f:1c:57:91:f0:78:43:36:
30:f9:74:35:ff:37:1e:e6:ca:11:55:b7:42:25:f7:a9:8a:9e:
d9:59:11:42:fd:87:f5:c5:7c:06:b5:a0:1a:4c:ef:67:c2:21:
af:3a:b8:eb:5a:06:81:82:0c:a8:14:f8:75:e5:00:a3:71:d0:
61:46:2d:13:c4:5a:da:39:9f:2f:c8:58:13:74:66:09:1f:c3:
ed:97:47:5a:55:79:f5:1b:a5:07:f5:37:aa:6c:d0:b1:70:8d:
d3:92:d6:0c:ee:11:a8:78:cf:14:a8:30:f1:01:e8:15:02:91:
6e:9e:ee:ba:9b:6e:34:30:93:33:1f:f1:4a:13:c1:74:70:8a:
51:43:0f:e7:9b:aa:34:95:ec:f7:b5:73:0c:11:03:3f:7f:8a:
57:5e:97:76:6c:ac:09:8a:d2:ce:80:6f:da:d3:c8:7b:c0:55:
cf:9e:2f:9c:b1:80:b4:06:2d:82:ff:12:1f:68:be:0f:51:56:
19:9c:a2:a4:8b:b0:8f:46:23:a9:e8:36:18:dd:dc:5a:6c:0e:
c6:d6:cd:64:49:77:8b:e5:5e:8e:d4:e7:bb:f5:26:de:60:7e:
6b:33:27:a1:2f:21:03:d6:21:87:e8:e4:31:4f:bb:a4:46:b5:
44:f1:5a:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:06 2024 by rpki-client on console-fra.rpki-client.org